CWE-668
717 CVEs • Abstraction: Class
Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.
CVEs (717)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of validation of the Java Version setting means that an unintended executable path can be set. The result is that high-privileged users can trigger code ex...Show more |
3Debian IntelNetapp5Debian Linux Fas/aff BiosHci Compute Node Bios+2 moreNov 21, 2024 Jun 9, 2021 N/A· v4 6.5 MEDIUM· v3 2.1 LOW· v2 Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. |
1Sap 1Mobile Sdk Certificate Provider Nov 21, 2024 Jun 9, 2021 N/A· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is requir...Show more |
An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended to update past 0.6.3 or git commit https://github.com/google/asylo/commit/a47ef55...Show more |
An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. It is recommended to update past 0.6.2 or git commit https://github.com/google/asylo/commit/53ed5d8fd8118ced1466e509606...Show more |
3Netapp OracleVmware32Commerce Guided Search Communications Brm Elastic Charging EngineCommunications Cloud Native Core Binding Support Function+29 moreNov 21, 2024 May 27, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to a privilege escalation: by (re)creating the temporary storage directory, a locally authenticat...Show more |
pleaseedit in please before 0.4 uses predictable temporary filenames in /tmp and the target directory. This allows a local attacker to gain full root privileges by staging a symlink attack. |
Mounting /proc filesystem via chroot command silently mounts it in read-write mode. The user could bypass the chroot environment and gain write access to files, he would never have otherwise. |
1Versa Networks 1Versa Operating System Nov 21, 2024 May 26, 2021 N/A· v4 8.8 HIGH· v3 6.5 MEDIUM· v2 In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or execution of newly created f...Show more |
1Weidmueller 4Iot Gw30 4g Eu Firmware Iot Gw30 FirmwareUc20 Wl2000 Ac Firmware+1 moreNov 21, 2024 May 13, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In Weidmüller u-controls and IoT-Gateways in versions up to 1.12.1 a network port intended only for device-internal usage is accidentally accessible via external network interfaces. By exploiting this vulnerability the d...Show more |
Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible because a local temporary file had Insecure Permissions. |
1Openapi Generator 1Openapi Generator Nov 21, 2024 May 10, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 OpenAPI Generator allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. Using `File.createTempFile` in JDK will result in creating...Show more |
1Openapi Generator 1Openapi Generator Nov 21, 2024 May 10, 2021 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 Openapi generator is a java tool which allows generation of API client libraries (SDK generation), server stubs, documentation and configuration automatically given an OpenAPI Spec. openapi-generator-online creates insec...Show more |
1Cisco 1Wide Area Application Services Nov 21, 2024 May 6, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A vulnerability in Cisco Wide Area Application Services (WAAS) Software could allow an authenticated, local attacker to gain access to sensitive information on an affected device. The vulnerability is due to improper inp...Show more |
Overly relaxed configuration of frontend resources server in Vaadin Designer versions 4.3.0 through 4.6.3 allows remote attackers to access project sources via crafted HTTP request. |
Vulnerability in OSGi integration in com.vaadin:flow-server versions 1.2.0 through 2.4.7 (Vaadin 12.0.0 through 14.4.9), and 6.0.0 through 6.0.1 (Vaadin 19.0.0) allows attacker to access application classes and resources...Show more |
Insecure configuration of default ObjectMapper in com.vaadin:flow-server versions 3.0.0 through 3.0.5 (Vaadin 15.0.0 through 15.0.4) may expose sensitive data if the application also uses e.g. @RestController |
2Eclipse Oracle3Communications Cloud Native Core Policy Communications Cloud Native Core Unified Data RepositoryJerseyNov 21, 2024 Apr 22, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains a local information disclosure vulnerability. This is due to the use of the File.createTempFile which creates a file inside of the system temporary d...Show more |
An attacker can place a crafted JSON config file into the project folder pointing to a custom executable. VScode-bazel allows the workspace path to lint *.bzl files to be set via this config file. As such the attacker is...Show more |
A Creation of Temporary File With Insecure Permissions vulnerability in hawk2 of SUSE Linux Enterprise High Availability 12-SP3, SUSE Linux Enterprise High Availability 12-SP5, SUSE Linux Enterprise High Availability 15-...Show more |