CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 13 of 23
- CVE-2022-23252MEDIUMCVSS 5.5EG 5.52022-02-09
Microsoft Office Information Disclosure Vulnerability
- CVE-2022-23254MEDIUMCVSS 4.9EG 4.92022-02-09
Microsoft Power BI Information Disclosure Vulnerability
- CVE-2022-23317HIGHCVSS 7.5EG 7.52022-02-15
CobaltStrike <=4.5 HTTP(S) listener does not determine whether the request URL begins with "/", and attackers can obtain relevant information by specifying the URL.
- CVE-2022-23331HIGHCVSS 8.8EG 8.82022-02-08
In DataEase v1.6.1, an authenticated user can gain unauthorized access to all user information and can change the administrator password.
- CVE-2022-23345HIGHCVSS 7.5EG 7.52022-03-21
BigAnt Software BigAnt Server v5.6.06 was discovered to contain incorrect access control.
- CVE-2022-23690MEDIUMCVSS 5.3EG 5.32022-09-06
A vulnerability in the web-based management interface of AOS-CX could allow a remote unauthenticated attacker to fingerprint the exact version AOS-CX running on the switch. This allows an attacker to retrieve information which could be use…
- CVE-2022-2370MEDIUMCVSS 6.5EG 6.52022-08-01
The YaySMTP WordPress plugin before 2.2.1 does not have capability check before displaying the Mailer Credentials in JS code for the settings, allowing any authenticated users, such as subscriber to retrieve them
- CVE-2022-23825MEDIUMCVSS 6.5EG 6.52022-07-14
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.
- CVE-2022-23835HIGHCVSS 8.1EG 8.12022-02-25
The Visual Voice Mail (VVM) application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READ_SMS permission, and reads an IMAP credentialing message that is (by design…
- CVE-2022-23856MEDIUMCVSS 5.3EG 5.32022-01-24
An issue was discovered in Saviynt Enterprise Identity Cloud (EIC) 5.5 SP2.x. An attacker can enumerate users by changing the id parameter, such as for the ECM/maintenance/forgotpasswordstep1 URI.
- CVE-2022-23950HIGHCVSS 7.5EG 7.52022-09-21
In Keylime before 6.3.0, Revocation Notifier uses a fixed /tmp path for UNIX domain socket which can allow unprivileged users a method to prohibit keylime operations.
- CVE-2022-2403MEDIUMCVSS 6.5EG 6.52022-09-01
A credentials leak was found in the OpenShift Container Platform. The private key for the external cluster certificate was stored incorrectly in the oauth-serving-cert ConfigMaps, and accessible to any authenticated OpenShift user or servi…
- CVE-2022-24032MEDIUMCVSS 5.3EG 5.32022-01-30
Adenza AxiomSL ControllerView through 10.8.1 is vulnerable to user enumeration. An attacker can identify valid usernames on the platform because a failed login attempt produces a different error message when the username is valid.
- CVE-2022-24074CRITICALCVSS 9.8EG 9.82022-03-17
Whale Bridge, a default extension in Whale browser before 3.12.129.18, allowed to receive any SendMessage request from the content script itself that could lead to controlling Whale Bridge if the rendering process compromises.
- CVE-2022-2408MEDIUMCVSS 4.3EG 4.32022-07-14
The Guest account feature in Mattermost version 6.7.0 and earlier fails to properly restrict the permissions, which allows a guest user to fetch a list of all public channels in the team, in spite of not being part of those channels.
- CVE-2022-24139HIGHCVSS 7.8EG 7.82022-07-06
In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can create a named pipe with the same name as one of ASCService's named pipes. ASCService first tries to connect before trying to create the named p…
- CVE-2022-24309MEDIUMCVSS 6.8EG 8.12022-03-08
A vulnerability has been identified in Mendix Runtime V7 (All versions < V7.23.29), Mendix Runtime V8 (All versions < V8.18.16), Mendix Runtime V9 (All versions < V9.13 only with Runtime Custom Setting *DataStorage.UseNewQueryHandler* set …
- CVE-2022-24336MEDIUMCVSS 5.3EG 5.32022-02-25
In JetBrains TeamCity before 2021.2.1, an unauthenticated attacker can cancel running builds via an XML-RPC request to the TeamCity server.
- CVE-2022-24411HIGHCVSS 7.8EG 7.82022-04-12
Dell PowerScale OneFS 8.2.2 and above contain an elevation of privilege vulnerability. A local attacker with ISI_PRIV_LOGIN_SSH and/or ISI_PRIV_LOGIN_CONSOLE could potentially exploit this vulnerability, leading to elevation of privilege. …
- CVE-2022-24446MEDIUMCVSS 4.3EG 4.32022-03-01
An issue was discovered in Zoho ManageEngine Key Manager Plus 6.1.6. A user, with the level Operator, can see all SSH servers (and user information) even if no SSH server or user is associated to the operator.
- CVE-2022-24503MEDIUMCVSS 5.4EG 5.32022-03-09
Remote Desktop Protocol Client Information Disclosure Vulnerability
- CVE-2022-24522MEDIUMCVSS 6.5EG 6.52022-03-09
Skype Extension for Chrome Information Disclosure Vulnerability
- CVE-2022-24742MEDIUMCVSS 5.0EG 5.02022-03-14
Sylius is an open source eCommerce platform. Prior to versions 1.9.10, 1.10.11, and 1.11.2, any other user can view the data if browser tab remains unclosed after log out. The issue is fixed in versions 1.9.10, 1.10.11, and 1.11.2. A worka…
- CVE-2022-24747MEDIUMCVSS 6.3EG 6.32022-03-09
Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. Affected versions of shopware do no properly set sensitive HTTP headers to be non-cacheable. If there is an HTTP cache between the s…
- CVE-2022-2479MEDIUMCVSS 4.3EG 4.32022-07-28
Insufficient validation of untrusted input in File in Google Chrome on Android prior to 103.0.5060.134 allowed an attacker who convinced a user to install a malicious app to obtain potentially sensitive information from internal file direc…
- CVE-2022-24823MEDIUMCVSS 5.5EG 5.52022-05-06
Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are us…
- CVE-2022-24900CRITICALCVSS 9.9EG 9.92022-04-29
Piano LED Visualizer is software that allows LED lights to light up as a person plays a piano connected to a computer. Version 1.3 and prior are vulnerable to a path traversal attack. The `os.path.join` call is unsafe for use with untruste…
- CVE-2022-24913MEDIUMCVSS 5.5EG 5.52023-01-12
Versions of the package com.fasterxml.util:java-merge-sort before 1.1.0 are vulnerable to Insecure Temporary File in the StdTempFileProvider() function in StdTempFileProvider.java, which uses the permissive File.createTempFile() function, …
- CVE-2022-24975HIGHCVSS 7.5EG 7.52022-02-11
The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted content, aka the "GitBleed" issue. This could present a security risk if information-disclosure auditing processes rely on a clone operation wit…
- CVE-2022-24986HIGHCVSS 7.8EG 7.82022-02-26
KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. Thus, someone watching it be created the first time could potentially intercept the file the following time, enabling t…
- CVE-2022-25010CRITICALCVSS 9.1EG 9.12022-03-01
The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system.
- CVE-2022-25041MEDIUMCVSS 4.3EG 4.32022-03-23
OpenEMR v6.0.0 was discovered to contain an incorrect access control issue.
- CVE-2022-25165HIGHCVSS 7.0EG 6.52022-04-14
An issue was discovered in Amazon AWS VPN Client 2.0.0. A TOCTOU race condition exists during the validation of VPN configuration files. This allows parameters outside of the AWS VPN Client allow list to be injected into the configuration …
- CVE-2022-25236CRITICALCVSS 9.8EG 9.82022-02-16
xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs.
- CVE-2022-25318MEDIUMCVSS 4.3EG 4.32022-02-18
An issue was discovered in Cerebrate through 1.4. An incorrect sharing group ACL allowed an unprivileged user to edit and modify sharing groups.
- CVE-2022-25357MEDIUMCVSS 5.3EG 5.32022-07-17
Pexip Infinity 27.x before 27.2 has Improper Access Control. An attacker can sometimes join a conference (call join) if it has a lock but not a PIN.
- CVE-2022-25375MEDIUMCVSS 5.5EG 5.52022-02-20
An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memor…
- CVE-2022-25481HIGHCVSS 7.5EG 7.52022-03-21
ThinkPHP Framework v5.0.24 was discovered to be configured without the PATHINFO parameter. This allows attackers to access all system environment parameters from index.php. NOTE: this is disputed by a third party because system environment…
- CVE-2022-25643CRITICALCVSS 9.8EG 9.82022-02-24
seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket pathname.
- CVE-2022-25650MEDIUMCVSS 6.5EG 6.52022-04-12
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), Mendix Applications using Mendix 8 (All versions < V8.18.14), Mendix Applications using Mendix 9 (All versions < V9.12.0), Mendix Applicat…
- CVE-2022-25755HIGHCVSS 7.5EG 7.52022-04-12
A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCAL…
- CVE-2022-25986MEDIUMCVSS 4.3EG 4.32022-08-18
Browse restriction bypass vulnerability in Scheduler of Cybozu Office 10.0.0 to 10.8.5 allows a remote authenticated attacker to obtain the data of Scheduler.
- CVE-2022-26090MEDIUMCVSS 5.3EG 3.32022-04-11
Improper access control vulnerability in SamsungContacts prior to SMR Apr-2022 Release 1 allows that attackers can access contact information without permission.
- CVE-2022-2610MEDIUMCVSS 6.5EG 6.52022-08-12
Insufficient policy enforcement in Background Fetch in Google Chrome prior to 104.0.5112.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- CVE-2022-26121LOWCVSS 3.7EG 5.32022-10-10
An exposure of resource to wrong sphere vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an unauthenticated an…
- CVE-2022-26159MEDIUMCVSS 5.3EG 9.02022-02-28
The auto-completion plugin in Ametys CMS before 4.5.0 allows a remote unauthenticated attacker to read documents such as plugins/web/service/search/auto-completion/<domain>/en.xml (and similar pathnames for other languages), which contain …
- CVE-2022-26267HIGHCVSS 7.5EG 7.52022-03-18
Piwigo v12.2.0 was discovered to contain an information leak via the action parameter in /admin/maintenance_actions.php.
- CVE-2022-26317MEDIUMCVSS 6.5EG 6.52022-03-08
A vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.29). When returning the result of a completed Microflow execution call the affected framework does not correctly verify, if the request was ini…
- CVE-2022-26329LOWCVSS 1.8EG 5.32023-01-26
File existence disclosure vulnerability in NetIQ Identity Manager plugin prior to version 4.8.5 allows attacker to determine whether a file exists on the filesystem. This issue affects: Micro Focus NetIQ Identity Manager NetIQ Identity Man…
- CVE-2022-26330MEDIUMCVSS 6.5EG 7.52022-08-31
Potential vulnerabilities have been identified in Micro Focus ArcSight Logger. The vulnerabilities could be remotely exploited resulting in Information Disclosure, or Self Cross-Site Scripting (XSS). This issue affects: Micro Focus ArcSigh…
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →