Exposure of Resource to Wrong Sphere

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

CVEs (717)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-10805 1Sideralis 1Valib.js Nov 21, 2024 Feb 28, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 valib through 2.0.0 allows Internal Property Tampering. A maliciously crafted JavaScript object can bypass several inspection functions provided by valib. Valib uses a built-in function (hasOwnProperty) from the unsafe u...Show more valib through 2.0.0 allows Internal Property Tampering. A maliciously crafted JavaScript object can bypass several inspection functions provided by valib. Valib uses a built-in function (hasOwnProperty) from the unsafe user-input to examine an object. It is possible for a crafted payload to overwrite this function to manipulate the inspection results to bypass security checks.Show less
CVE-2019-10790 1Taffydb 1Taffy Nov 21, 2024 Feb 17, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 taffydb npm module, vulnerable in all versions up to and including 2.7.3, allows attackers to forge adding additional properties into user-input processed by taffy which can allow access to any data items in the DB. taff...Show more taffydb npm module, vulnerable in all versions up to and including 2.7.3, allows attackers to forge adding additional properties into user-input processed by taffy which can allow access to any data items in the DB. taffy sets an internal index for each data item in its DB. However, it is found that the internal index can be forged by adding additional properties into user-input. If index is found in the query, taffyDB will ignore other query conditions and directly return the indexed data item. Moreover, the internal index is in an easily-guessable format (e.g., T000002R000001). As such, attackers can use this vulnerability to access any data items in the DB.Show less
CVE-2020-8449 5Canonical DebianFedoraproject+2 more 5Debian Linux FedoraLeap+2 more Nov 21, 2024 Feb 4, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in Squid before 4.10. Due to incorrect input validation, it can interpret crafted HTTP requests in unexpected ways to access server resources prohibited by earlier security filters.
CVE-2020-8121 1Nextcloud 1Nextcloud Server Nov 21, 2024 Feb 4, 2020 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 A bug in Nextcloud Server 14.0.4 could expose more data in reshared link shares than intended by the sharer.
CVE-2020-7912 1Jetbrains 1Youtrack Nov 21, 2024 Jan 30, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In JetBrains YouTrack before 2019.2.59309, SMTP/Jabber settings could be accessed using backups.
CVE-2019-4633 1Ibm 1Security Secret Server Nov 21, 2024 Jan 28, 2020 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 IBM Security Secret Server 10.7 could allow an attacker to obtain sensitive information due to an overly permissive CORS policy. IBM X-Force ID: 170007.
CVE-2019-10781 1Schema Inspector Project 1Schema Inspector Nov 21, 2024 Jan 22, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.
CVE-2019-3682 1Suse 1Caas Platform Nov 21, 2024 Jan 17, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 The docker-kubic package in SUSE CaaS Platform 3.0 before 17.09.1_ce-7.6.1 provided access to an insecure API locally on the Kubernetes master node.
CVE-2019-20149 1Kind Of Project 1Kind Of Nov 21, 2024 Dec 30, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': {'name':'Symbol'}. Hence, a crafted payload can overwri...Show more ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': {'name':'Symbol'}. Hence, a crafted payload can overwrite this builtin attribute to manipulate the type detection result.Show less
CVE-2012-5639 3Apache DebianLibreoffice 3Debian Linux LibreofficeOpenoffice Nov 21, 2024 Dec 20, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 LibreOffice and OpenOffice automatically open embedded content
CVE-2019-8779 1Apple 2Ipados Iphone Os Nov 21, 2024 Dec 18, 2019 N/A· v4 10.0 CRITICAL· v3 7.5 HIGH· v2 A logic issue applied the incorrect restrictions. This issue was addressed by updating the logic to apply the correct restrictions. This issue is fixed in iOS 13.1.1 and iPadOS 13.1.1. Third party app extensions may not...Show more A logic issue applied the incorrect restrictions. This issue was addressed by updating the logic to apply the correct restrictions. This issue is fixed in iOS 13.1.1 and iPadOS 13.1.1. Third party app extensions may not receive the correct sandbox restrictions.Show less
CVE-2014-2387 3Debian OpensusePen Project 3Debian Linux OpensusePen Nov 21, 2024 Dec 13, 2019 N/A· v4 4.4 MEDIUM· v3 4.6 MEDIUM· v2 Pen 0.18.0 has Insecure Temporary File Creation vulnerabilities
CVE-2019-13927 1Siemens 16Pxa30 W0 Firmware Pxa30 W1 FirmwarePxa30 W2 Firmware+13 more Nov 21, 2024 Dec 12, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 A vulnerability has been identified in Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D with Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 (All firmware versions < V6.00.320), Desigo PX...Show more A vulnerability has been identified in Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D with Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 (All firmware versions < V6.00.320), Desigo PX automation controllers PXC00-U, PXC64-U, PXC128-U with Desigo PX Web modules PXA30-W0, PXA30-W1, PXA30-W2 (All firmware versions < V6.00.320), Desigo PX automation controllers PXC22.1-E.D, PXC36-E.D, PXC36.1-E.D with activated web server (All firmware versions < V6.00.320). The device contains a vulnerability that could allow an attacker to cause a denial of service condition on the device's web server by sending a specially crafted HTTP message to the web server port (tcp/80). The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device's web service. While the device itself stays operational, the web server responds with HTTP status code 404 (Not found) to any further request. A reboot is required to recover the web interface. At the time of advisory publication no public exploitation of this security vulnerability was known.Show less
CVE-2013-2183 1Monkey Project 1Monkey Nov 21, 2024 Dec 10, 2019 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 Monkey HTTP Daemon has local security bypass
CVE-2013-0163 1Redhat 1Openshift Nov 21, 2024 Dec 5, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 OpenShift haproxy cartridge: predictable /tmp in set-proxy connection hook which could facilitate DoS
CVE-2019-15689 1Kaspersky 4Kaspersky Internet Security Secure ConnectionSecurity Cloud+1 more Nov 21, 2024 Dec 2, 2019 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Kaspersky Secure Connection, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Security Cloud prior to version 2020 patch E have bug that allows a local user to execute arbitrary code via execution comprom...Show more Kaspersky Secure Connection, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Security Cloud prior to version 2020 patch E have bug that allows a local user to execute arbitrary code via execution compromised file placed by an attacker with administrator rights. No privilege escalation. Possible whitelisting bypass some of the security productsShow less
CVE-2019-19015 1Titanhq 1Webtitan Nov 21, 2024 Dec 2, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An issue was discovered in TitanHQ WebTitan before 5.18. The proxy service (which is typically exposed to all users) allows connections to the internal PostgreSQL database of the appliance. By connecting to the database...Show more An issue was discovered in TitanHQ WebTitan before 5.18. The proxy service (which is typically exposed to all users) allows connections to the internal PostgreSQL database of the appliance. By connecting to the database through the proxy (without password authentication), an attacker is able to fully control the appliance database. Through this, several different paths exist to gain further access, or execute code.Show less
CVE-2019-16387 1Pega 1Pega Platform Nov 21, 2024 Nov 26, 2019 N/A· v4 8.1 HIGH· v3 5.5 MEDIUM· v2 PEGA Platform 8.3.0 is vulnerable to a direct prweb/sso/random_token/!STANDARD?pyActivity=Data-Admin-DB-Name.DBSchema_ListDatabases request while using a low-privilege account. (This can perform actions and retrieve data...Show more PEGA Platform 8.3.0 is vulnerable to a direct prweb/sso/random_token/!STANDARD?pyActivity=Data-Admin-DB-Name.DBSchema_ListDatabases request while using a low-privilege account. (This can perform actions and retrieve data that only an administrator should have access to.) NOTE: The vendor states that this vulnerability was discovered using an administrator account and they are normal administrator functions. Therefore, the claim that the CVE was done with a low privilege account is incorrectShow less
CVE-2019-16241 1Alcatelmobile 1Cingular Flip 2 Firmware Nov 21, 2024 Nov 26, 2019 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 On TCL Alcatel Cingular Flip 2 B9HUAH1 devices, PIN authentication can be bypassed by creating a special file within the /data/local/tmp/ directory. The System application that implements the lock screen checks for the e...Show more On TCL Alcatel Cingular Flip 2 B9HUAH1 devices, PIN authentication can be bypassed by creating a special file within the /data/local/tmp/ directory. The System application that implements the lock screen checks for the existence of a specific file and disables PIN authentication if it exists. This file would typically be created via Android Debug Bridge (adb) over USB.Show less
CVE-2019-16541 1Jenkins 1Jira Nov 21, 2024 Nov 21, 2019 N/A· v4 9.9 CRITICAL· v3 6.5 MEDIUM· v2 Jenkins JIRA Plugin 3.0.10 and earlier does not declare the correct (folder) scope for per-folder Jira site definitions, allowing users to select and use credentials with System scope.

Previous 1...303132...36 Next