CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 10 of 23
- CVE-2021-41065HIGHCVSS 7.3EG 7.32021-12-14
An issue was discovered in Listary through 6. An attacker can create a \\.\pipe\Listary.listaryService named pipe and wait for a privileged user to open a session on the Listary installed host. Listary will automatically access the named p…
- CVE-2021-41088HIGHCVSS 8.0EG 8.02021-09-23
Elvish is a programming language and interactive shell, combined into one package. In versions prior to 0.14.0 Elvish's web UI backend (started by `elvish -web`) hosts an endpoint that allows executing the code sent from the web UI. The ba…
- CVE-2021-41094MEDIUMCVSS 4.2EG 4.22021-10-04
Wire is an open source secure messenger. Users of Wire by Bund may bypass the mandatory encryption at rest feature by simply disabling their device passcode. Upon launching, the app will attempt to enable encryption at rest by generating e…
- CVE-2021-41140MEDIUMCVSS 5.3EG 5.32021-10-19
Discourse-reactions is a plugin for the Discourse platform that allows user to add their reactions to the post. In affected versions reactions given by user to secure topics and private messages are visible. This issue is patched in versio…
- CVE-2021-41329MEDIUMCVSS 6.5EG 6.52021-09-27
Datalust Seq before 2021.2.6259 allows users (with view filters applied to their accounts) to see query results not constrained by their view filter. This information exposure, caused by an internal cache key collision, occurs when the use…
- CVE-2021-41590MEDIUMCVSS 5.3EG 5.32021-10-27
In Gradle Enterprise through 2021.3, probing of the server-side network environment can occur via an SMTP configuration test. The installation configuration user interface available to administrators allows testing the configured SMTP serv…
- CVE-2021-41790HIGHCVSS 8.8EG 8.82021-10-21
An issue was discovered in Hyland org.alfresco:alfresco-content-services through 7.0.1.2. Script Action execution allows executing scripts uploaded outside of the Data Dictionary. This could allow a logged-in attacker to execute arbitrary …
- CVE-2021-4180MEDIUMCVSS 4.3EG 4.32022-03-23
An information exposure flaw in openstack-tripleo-heat-templates allows an external user to discover the internal IP or hostname. An attacker could exploit this by checking the www_authenticate_uri parameter (which is visible to all end us…
- CVE-2021-41847HIGHCVSS 8.8EG 8.82021-10-01
An issue was discovered in 3xLogic Infinias Access Control through 6.7.10708.0, affecting physical security. Users with login credentials assigned to a specific zone can send modified HTTP GET and POST requests, allowing them to view user …
- CVE-2021-41988HIGHCVSS 7.8EG 7.82023-01-26
Qlik NPrinting Designer through 21.14.3.0 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-41989HIGHCVSS 7.8EG 7.82023-01-26
Qlik QlikView through 12.60.20100.0 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-42001HIGHCVSS 8.0EG 9.82022-04-30
PingID Desktop prior to 1.7.3 has a misconfiguration in the encryption libraries which can lead to sensitive data exposure. An attacker capable of exploiting this vulnerability may be able to successfully complete an MFA challenge via OTP.
- CVE-2021-42067MEDIUMCVSS 4.3EG 4.32022-01-14
In SAP NetWeaver AS for ABAP and ABAP Platform - versions 701, 702, 711, 730, 731, 740, 750, 751, 752, 753, 754, 755, 756, 786, an attacker authenticated as a regular user can use the S/4 Hana dashboard to reveal systems and services which…
- CVE-2021-42087MEDIUMCVSS 4.9EG 4.92021-10-07
An issue was discovered in Zammad before 4.1.1. An admin can discover the application secret via the API.
- CVE-2021-42116MEDIUMCVSS 4.3EG 4.32021-11-30
Incorrect Access Control in Web Applications operating on Business-DNA Solutions GmbH’s TopEase® Platform Version <= 7.1.27 allows an authenticated remote attacker to view the Shape Editor and Settings, which are functionality for highe…
- CVE-2021-42254HIGHCVSS 7.8EG 7.82021-11-19
BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-42255HIGHCVSS 7.8EG 7.82022-04-12
AppGuard Enterprise before 6.7.100.1 creates a Temporary File in a Directory with Insecure Permissions. Local users can gain SYSTEM privileges because a repair operation relies on the %TEMP% directory of an unprivileged user.
- CVE-2021-42301LOWCVSS 3.3EG 4.62021-11-10
Azure RTOS Information Disclosure Vulnerability
- CVE-2021-42306HIGHCVSS 8.1EG 6.52021-11-24
An information disclosure vulnerability manifests when a user or an application uploads unprotected private key data as part of an authentication certificate keyCredential on an Azure AD Application or Service Principal (which is not re…
- CVE-2021-42323LOWCVSS 3.3EG 3.32021-11-10
Azure RTOS Information Disclosure Vulnerability
- CVE-2021-42536HIGHCVSS 8.0EG 8.02021-10-22
The affected product is vulnerable to a disclosure of peer username and password by allowing all users access to read global variables.
- CVE-2021-42640CRITICALCVSS 9.1EG 9.12022-02-02
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to reassign drivers for any printer.
- CVE-2021-42641HIGHCVSS 7.5EG 7.52022-02-02
PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to disclose the username and email address of all users.
- CVE-2021-42712HIGHCVSS 7.8EG 7.82022-02-15
Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-42713HIGHCVSS 7.8EG 7.82022-02-15
Splashtop Remote Client (Personal Edition) through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-42714HIGHCVSS 7.8EG 7.82022-02-15
Splashtop Remote Client (Business Edition) through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions.
- CVE-2021-42748MEDIUMCVSS 5.3EG 5.32022-01-10
In Beaver Builder through 2.5.0.3, attackers can bypass the visibility controls protection mechanism via the REST API.
- CVE-2021-42749MEDIUMCVSS 5.3EG 5.32022-01-10
In Beaver Themer, attackers can bypass conditional logic controls (for hiding content) when viewing the post archives. Exploitation requires that a Themer layout is applied to the archives, and that the post excerpt field is not set.
- CVE-2021-43039MEDIUMCVSS 6.5EG 6.52021-12-06
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The Samba file sharing service allowed anonymous read/write access.
- CVE-2021-43043MEDIUMCVSS 6.5EG 6.52021-12-06
An issue was discovered in Kaseya Unitrends Backup Appliance before 10.5.5. The apache user could read arbitrary files such as /etc/shadow by abusing an insecure Sudo rule.
- CVE-2021-43066HIGHCVSS 8.4EG 7.82022-05-11
A external control of file name or path in Fortinet FortiClientWindows version 7.0.2 and below, version 6.4.6 and below, version 6.2.9 and below, version 6.0.10 and below allows attacker to escalate privilege via the MSI installer.
- CVE-2021-43129MEDIUMCVSS 6.5EG 6.52022-04-19
A bypass exists for Desire2Learn/D2L Brightspace’s “Disable Right Click” option in the quizzing feature, which allows a quiz-taker to access print and copy functionality via the browser’s right click menu even when “Disable Right…
- CVE-2021-43196HIGHCVSS 7.5EG 7.52021-11-09
In JetBrains TeamCity before 2021.1, information disclosure via the Docker Registry connection dialog is possible.
- CVE-2021-43216MEDIUMCVSS 6.5EG 6.52021-12-15
Microsoft Local Security Authority (LSA) Server Information Disclosure Vulnerability
- CVE-2021-43222HIGHCVSS 7.5EG 7.52021-12-15
Microsoft Message Queuing Information Disclosure Vulnerability
- CVE-2021-43224MEDIUMCVSS 5.5EG 5.52021-12-15
Windows Common Log File System Driver Information Disclosure Vulnerability
- CVE-2021-43227MEDIUMCVSS 5.5EG 5.52021-12-15
Storage Spaces Controller Information Disclosure Vulnerability
- CVE-2021-43235MEDIUMCVSS 5.5EG 5.52021-12-15
Storage Spaces Controller Information Disclosure Vulnerability
- CVE-2021-43536MEDIUMCVSS 6.5EG 6.52021-12-08
Under certain circumstances, asynchronous functions could have caused a navigation to fail but expose the target URL. This vulnerability affects Thunderbird < 91.4.0, Firefox ESR < 91.4.0, and Firefox < 95.
- CVE-2021-43560MEDIUMCVSS 5.3EG 5.32021-11-22
A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. Insufficient capability checks made it possible to fetch other users' calendar action events.
- CVE-2021-43674CRITICALCVSS 9.8EG 9.82021-12-03
ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
- CVE-2021-43888HIGHCVSS 7.5EG 7.52021-12-15
Microsoft Defender for IoT Information Disclosure Vulnerability
- CVE-2021-43893HIGHCVSS 7.5EG 7.52021-12-15
Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability
- CVE-2021-43955MEDIUMCVSS 4.3EG 4.32022-03-16
The /rest-service-fecru/server-v1 resource in Fisheye and Crucible before version 4.8.9 allowed authenticated remote attackers to obtain information about installation directories via information disclosure vulnerability.
- CVE-2021-44049HIGHCVSS 7.8EG 7.82022-01-15
CyberArk Endpoint Privilege Manager (EPM) through 11.5.3.328 before 2021-12-20 allows a local user to gain elevated privileges via a Trojan horse Procmon64.exe in the user's Temp directory.
- CVE-2021-44225MEDIUMCVSS 5.4EG 5.42021-11-26
In Keepalived through 2.2.4, the D-Bus policy does not sufficiently restrict the message destination, allowing any user to inspect and manipulate any property. This leads to access-control bypass in some situations in which an unrelated D-…
- CVE-2021-44522HIGHCVSS 7.5EG 7.52021-12-14
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All version…
- CVE-2021-44523CRITICALCVSS 9.1EG 9.12021-12-14
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All version…
- CVE-2021-44524CRITICALCVSS 9.8EG 9.82021-12-14
A vulnerability has been identified in SiPass integrated V2.76 (All versions), SiPass integrated V2.80 (All versions), SiPass integrated V2.85 (All versions), Siveillance Identity V1.5 (All versions), Siveillance Identity V1.6 (All version…
- CVE-2021-44525CRITICALCVSS 9.8EG 9.82021-12-20
Zoho ManageEngine PAM360 before build 5303 allows attackers to modify a few aspects of application state because of a filter bypass in which authentication is not required.
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →