Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

CVEs (717)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-29646 1Totolink 1A3100r Firmware Nov 21, 2024 May 18, 2022 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An access control issue in TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 allows attackers to obtain sensitive information via a crafted web request.
CVE-2021-43066 1Fortinet 1Forticlient Nov 21, 2024 May 11, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A external control of file name or path in Fortinet FortiClientWindows version 7.0.2 and below, version 6.4.6 and below, version 6.2.9 and below, version 6.0.10 and below allows attacker to escalate privilege via the MSI...Show more A external control of file name or path in Fortinet FortiClientWindows version 7.0.2 and below, version 6.4.6 and below, version 6.2.9 and below, version 6.0.10 and below allows attacker to escalate privilege via the MSI installer.Show less
CVE-2022-24823 3Netapp NettyOracle 5Active Iq Unified Manager Financial Services Crime And Compliance Management StudioNetty+2 more Nov 21, 2024 May 6, 2022 N/A· v4 5.5 MEDIUM· v3 1.9 LOW· v2 Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multip...Show more Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are used local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. This only impacts applications running on Java version 6 and lower. Additionally, this vulnerability impacts code running on Unix-like systems, and very old versions of Mac OSX and Windows as they all share the system temporary directory between all users. Version 4.1.77.Final contains a patch for this vulnerability. As a workaround, specify one's own `java.io.tmpdir` when starting the JVM or use DefaultHttpDataFactory.setBaseDir(...) to set the directory to something that is only readable by the current user.Show less
CVE-2022-24900 1Piano Led Visualizer Project 1Piano Led Visualizer Nov 21, 2024 Apr 29, 2022 N/A· v4 8.6 HIGH· v3 5.0 MEDIUM· v2 Piano LED Visualizer is software that allows LED lights to light up as a person plays a piano connected to a computer. Version 1.3 and prior are vulnerable to a path traversal attack. The `os.path.join` call is unsafe fo...Show more Piano LED Visualizer is software that allows LED lights to light up as a person plays a piano connected to a computer. Version 1.3 and prior are vulnerable to a path traversal attack. The `os.path.join` call is unsafe for use with untrusted input. When the `os.path.join` call encounters an absolute path, it ignores all the parameters it has encountered till that point and starts working with the new absolute path. Since the "malicious" parameter represents an absolute path, the result of `os.path.join` ignores the static directory completely. Hence, untrusted input is passed via the `os.path.join` call to `flask.send_file` can lead to path traversal attacks. A patch with a fix is available on the `master` branch of the GitHub repository. This can also be fixed by preventing flow of untrusted data to the vulnerable `send_file` function. In case the application logic necessiates this behaviour, one can either use the `flask.safe_join` to join untrusted paths or replace `flask.send_file` calls with `flask.send_from_directory` calls.Show less
CVE-2022-29820 1Jetbrains 1Pycharm Nov 21, 2024 Apr 28, 2022 N/A· v4 3.5 LOW· v3 3.3 LOW· v2 In JetBrains PyCharm before 2022.1 exposure of the debugger port to the internal network was possible
CVE-2022-27331 1Zammad 1Zammad Nov 21, 2024 Apr 27, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An access control issue in Zammad v5.0.3 broadcasts administrative configuration changes to all users who have an active application instance, including settings that should only be visible to authenticated users.
CVE-2022-1385 1Mattermost 1Mattermost Server Nov 21, 2024 Apr 19, 2022 N/A· v4 4.6 MEDIUM· v3 5.8 MEDIUM· v2 Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace and access informati...Show more Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace and access information from the public teams and channels.Show less
CVE-2022-27817 1Waycrate 1Swhkd Nov 21, 2024 Apr 14, 2022 N/A· v4 4.4 MEDIUM· v3 3.6 LOW· v2 SWHKD 1.1.5 consumes the keyboard events of unintended users. This could potentially cause an information leak, but is usually a denial of functionality.
CVE-2022-24411 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to eleva...Show more Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. This could potentially allow users to circumvent PowerScale Compliance Mode guarantees.Show less
CVE-2022-23163 1Dell 1Emc Powerscale Onefs Nov 21, 2024 Apr 12, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Dell PowerScale OneFS, 8.2,x, 9.1.0.x, 9.2.1.x, and 9.3.0.x contain a denial of service vulnerability. A local malicious user could potentially exploit this vulnerability, leading to denial of service/data unavailability...Show more Dell PowerScale OneFS, 8.2,x, 9.1.0.x, 9.2.1.x, and 9.3.0.x contain a denial of service vulnerability. A local malicious user could potentially exploit this vulnerability, leading to denial of service/data unavailability.Show less
CVE-2021-42255 1Blueplanet Works 1Appguard Nov 21, 2024 Apr 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 AppGuard Enterprise before 6.7.100.1 creates a Temporary File in a Directory with Insecure Permissions. Local users can gain SYSTEM privileges because a repair operation relies on the %TEMP% directory of an unprivileged...Show more AppGuard Enterprise before 6.7.100.1 creates a Temporary File in a Directory with Insecure Permissions. Local users can gain SYSTEM privileges because a repair operation relies on the %TEMP% directory of an unprivileged user.Show less
CVE-2022-27822 1Google 1Android Nov 21, 2024 Apr 11, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission.
CVE-2022-27576 1Google 1Android Nov 21, 2024 Apr 11, 2022 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 Information exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app information without permission
CVE-2022-22515 1Codesys 18Control For Beaglebone Sl Control For Beckhoff Cx9020Control For Empc A/imx6 Sl+15 more Nov 21, 2024 Apr 7, 2022 N/A· v4 8.1 HIGH· v3 4.9 MEDIUM· v2 A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order to read and modify the configuration file(s) of the affected products.
CVE-2022-27818 1Waycrate 1Swhkd Nov 21, 2024 Apr 7, 2022 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. There can be an information leak or denial of service.
CVE-2022-26850 1Apache 1Nifi Nov 21, 2024 Apr 6, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system te...Show more When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. On most platforms, the operating system temporary directory has global read permissions. NiFi immediately moved the temporary file to the final configuration directory, which significantly limited the window of opportunity for access. NiFi 1.16.0 includes updates to replace the Login Identity Providers configuration without writing a file to the operating system temporary directory.Show less
CVE-2022-21947 1Suse 1Rancher Desktop Nov 21, 2024 Apr 1, 2022 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 A Exposure of Resource to Wrong Sphere vulnerability in Rancher Desktop of SUSE allows attackers in the local network to connect to the Dashboard API (steve) to carry out arbitrary actions. This issue affects: SUSE Ranch...Show more A Exposure of Resource to Wrong Sphere vulnerability in Rancher Desktop of SUSE allows attackers in the local network to connect to the Dashboard API (steve) to carry out arbitrary actions. This issue affects: SUSE Rancher Desktop versions prior to V.Show less
CVE-2022-27772 1Vmware 1Spring Boot Nov 21, 2024 Mar 30, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDi...Show more spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. This vulnerability impacted the org.springframework.boot.web.server.AbstractConfigurableWebServerFactory.createTempDir method. NOTE: This vulnerability only affects products and/or versions that are no longer supported by the maintainerShow less
CVE-2021-39777 1Google 1Android Nov 21, 2024 Mar 30, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 In Telephony, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to local information disclosure with no additional execution p...Show more In Telephony, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12LAndroid ID: A-194743207Show less
CVE-2021-22572 1Google 1Data Transfer Project Nov 21, 2024 Mar 29, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world readable permissions....Show more On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world readable permissions. Any sensitive information written to theses files is visible to all other local users on unix-like systems. We recommend upgrading past commit https://github.com/google/data-transfer-project/pull/969Show less

Previous 1...192021...36 Next