CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 17 of 23
- CVE-2022-40768MEDIUMCVSS 5.5EG 5.52022-09-18
drivers/scsi/stex.c in the Linux kernel through 5.19.9 allows local users to obtain sensitive information from kernel memory because stex_queuecommand_lck lacks a memset for the PASSTHRU_CMD case.
- CVE-2022-40816MEDIUMCVSS 6.5EG 6.52022-09-27
Zammad 5.2.1 is vulnerable to Incorrect Access Control. Zammad's asset handling mechanism has logic to ensure that customer users are not able to see personal information of other users. This logic was not effective when used through a web…
- CVE-2022-41874LOWCVSS 2.6EG 2.62022-11-10
Tauri is a framework for building binaries for all major desktop platforms. In versions prior to 1.0.7 and 1.1.2, Tauri is vulnerable to an Incorrectly-Resolved Name. Due to incorrect escaping of special characters in paths selected via th…
- CVE-2022-41946MEDIUMCVSS 4.7EG 4.72022-11-23
pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either `PreparedStatement.setText(int, InputStream)` or `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file if the Inpu…
- CVE-2022-41954LOWCVSS 3.3EG 3.32022-11-25
MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems (not Windows or macos), MPXJ's use of `File.createTempFile(..)` results in temporary files being cr…
- CVE-2022-41971MEDIUMCVSS 4.8EG 4.82022-12-01
Nextcould Talk android is a video and audio conferencing app for Nextcloud. Prior to versions 12.2.8, 13.0.10, 14.0.6, and 15.0.0, guests can continue to receive video streams from a call after being removed from a conversation. An attacke…
- CVE-2022-4224HIGHCVSS 8.8EG 8.82023-03-23
In multiple products of CODESYS v3 in multiple versions a remote low privileged user could utilize this vulnerability to read and modify system files and OS resources or DoS the device.
- CVE-2022-42442LOWCVSS 3.3EG 3.32022-11-03
IBM Robotic Process Automation for Cloud Pak 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to exposure of the first tenant owner e-mail address to users with access to the container platform. IBM X-Force ID: 238214.
- CVE-2022-42766MEDIUMCVSS 5.5EG 5.52022-12-06
In wlan driver, there is a possible missing permission check, This could lead to local information disclosure.
- CVE-2022-42782MEDIUMCVSS 5.5EG 5.52022-12-06
In wlan driver, there is a possible missing permission check, This could lead to local information disclosure.
- CVE-2022-42843MEDIUMCVSS 5.5EG 5.52022-12-15
This issue was addressed with improved data protection. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, watchOS 9.2. A user may be able to view sensitive user information.
- CVE-2022-42953HIGHCVSS 7.5EG 7.52022-12-25
Certain ZKTeco products (ZEM500-510-560-760, ZEM600-800, ZEM720, ZMM) allow access to sensitive information via direct requests for the form/DataApp?style=1 and form/DataApp?style=0 URLs. The affected versions may be before 8.88 (ZEM500-51…
- CVE-2022-4366HIGHCVSS 7.5EG 7.52022-12-08
Missing Authorization in GitHub repository lirantal/daloradius prior to master branch.
- CVE-2022-43684CRITICALCVSS 9.9EG 9.92023-06-13
ServiceNow has released patches and an upgrade that address an Access Control List (ACL) bypass issue in ServiceNow Core functionality. Additional Details This issue is present in the following supported ServiceNow releases: * Q…
- CVE-2022-4390CRITICALCVSS 10.0EG 10.02022-12-09
A network misconfiguration is present in versions prior to 1.0.9.90 of the NETGEAR RAX30 AX2400 series of routers. IPv6 is enabled for the WAN interface by default on these devices. While there are firewall restrictions in place that defin…
- CVE-2022-43901MEDIUMCVSS 5.7EG 5.52022-12-01
IBM WebSphere Automation for IBM Cloud Pak for Watson AIOps 1.4.3 could disclose sensitive information. An authenticated local attacker could exploit this vulnerability to possibly gain information to other IBM WebSphere Automation for IB…
- CVE-2022-44310HIGHCVSS 7.5EG 7.52023-02-24
In Development IL ecdh before 0.2.0, an attacker can send an invalid point (not on the curve) as the public key, and obtain the derived shared secret.
- CVE-2022-44549HIGHCVSS 7.5EG 7.52022-11-09
The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party apps to access the geofencing APIs without authorization, affecting user confidentiality.
- CVE-2022-45414HIGHCVSS 8.1EG 8.12022-12-22
If a Thunderbird user quoted from an HTML email, for example by replying to the email, and the email contained either a VIDEO tag with the POSTER attribute or an OBJECT tag with a DATA attribute, a network request to the referenced remote …
- CVE-2022-45438MEDIUMCVSS 5.3EG 5.32023-01-16
When explicitly enabling the feature flag DASHBOARD_CACHE (disabled by default), the system allowed for an unauthenticated user to access dashboard configuration metadata using a REST API Get endpoint. This issue affects Apache Superset v…
- CVE-2022-45895MEDIUMCVSS 6.5EG 6.52022-12-25
Planet eStream before 6.72.10.07 discloses sensitive information, related to the ON cookie (findable in HTML source code for Default.aspx in some situations) and the WhoAmI endpoint (e.g., path disclosure).
- CVE-2022-45935MEDIUMCVSS 5.5EG 5.52023-01-06
Usage of temporary files with insecure permissions by the Apache James server allows an attacker with local access to access private user data in transit. Vulnerable components includes the SMTP stack and IMAP APPEND command. This issue…
- CVE-2022-46257MEDIUMCVSS 4.3EG 4.32023-03-07
An information disclosure vulnerability was identified in GitHub Enterprise Server that allowed private repositories to be added to a GitHub Actions runner group via the API by a user who did not have access to those repositories, resultin…
- CVE-2022-46338MEDIUMCVSS 6.5EG 6.52022-11-30
g810-led 0.4.2, a LED configuration tool for Logitech Gx10 keyboards, contained a udev rule to make supported device nodes world-readable and writable, allowing any process on the system to read traffic from keyboards, including sensitive …
- CVE-2022-46756HIGHCVSS 8.2EG 6.72023-02-01
Dell VxRail, versions prior to 7.0.410, contain a Container Escape Vulnerability. A local high-privileged attacker could potentially exploit this vulnerability, leading to the execution of arbitrary OS commands on the container's underlyi…
- CVE-2022-46901HIGHCVSS 7.5EG 7.52023-07-25
An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is an Access Control Violation for Database Operations. The Vocera Report Console contains a websocket interface that allows for the unauthenticated ex…
- CVE-2022-47338HIGHCVSS 7.1EG 7.12023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
- CVE-2022-47717HIGHCVSS 7.5EG 7.52023-02-01
Last Yard 22.09.8-1 is vulnerable to Cross-origin resource sharing (CORS).
- CVE-2022-47952LOWCVSS 3.3EG 3.32023-01-01
lxc-user-nic in lxc through 5.0.1 is installed setuid root, and may allow local users to infer whether any file exists, even within a protected directory tree, because "Failed to open" often indicates that a file does not exist, whereas "d…
- CVE-2022-48067MEDIUMCVSS 5.5EG 5.52023-01-27
An information disclosure vulnerability in Totolink A830R V4.1.2cu.5182 allows attackers to obtain the root password via a brute-force attack.
- CVE-2022-4817LOWCVSS 3.1EG 7.82022-12-28
A vulnerability was found in centic9 jgit-cookbook. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to insecure temporary file. The attack can be initiated remotely. The name of the patc…
- CVE-2022-48198CRITICALCVSS 9.8EG 9.82023-01-01
The ntpd_driver component before 1.3.0 and 2.x before 2.2.0 for Robot Operating System (ROS) allows attackers, who control the source code of a different node in the same ROS application, to change a robot's behavior. This occurs because a…
- CVE-2022-48757HIGHCVSS 7.1EG 7.12024-06-20
In the Linux kernel, the following vulnerability has been resolved: net: fix information leakage in /proc/net/ptype In one net namespace, after creating a packet socket without binding it to a device, users in other net namespaces can ob…
- CVE-2022-4903MEDIUMCVSS 5.0EG 5.02023-02-10
A vulnerability was found in CodenameOne 7.0.70. It has been classified as problematic. Affected is an unknown function. The manipulation leads to use of implicit intent for sensitive communication. It is possible to launch the attack remo…
- CVE-2022-49509HIGHCVSS 7.1EG 7.12025-02-26
In the Linux kernel, the following vulnerability has been resolved: media: i2c: max9286: fix kernel oops when removing module When removing the max9286 module we get a kernel oops: Unable to handle kernel paging request at virtual addre…
- CVE-2023-0481LOWCVSS 3.3EG 3.32023-02-24
In RestEasy Reactive implementation of Quarkus the insecure File.createTempFile() is used in the FileBodyHandler class which creates temp files with insecure permissions that could be read by a local user.
- CVE-2023-0485MEDIUMCVSS 6.5EG 6.52023-05-03
An issue has been discovered in GitLab affecting all versions starting from 13.11 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. It was possible that a project member demoted …
- CVE-2023-1401MEDIUMCVSS 5.0EG 5.02023-07-26
An issue has been discovered in GitLab DAST scanner affecting all versions starting from 3.0.29 before 4.0.5, in which the DAST scanner leak cross site cookies on redirect during authorization.
- CVE-2023-1402MEDIUMCVSS 4.3EG 4.32023-03-23
The course participation report required additional checks to prevent roles being displayed which the user did not have access to view.
- CVE-2023-1562LOWCVSS 3.5EG 4.32023-03-22
Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins/focalboard/api/v2/users API call, allowing an attacker to learn the full name of a board owner.
- CVE-2023-1775MEDIUMCVSS 4.3EG 4.32023-03-31
When running in a High Availability configuration, Mattermost fails to sanitize some of the user_updated and post_deleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently con…
- CVE-2023-1777MEDIUMCVSS 6.5EG 6.52023-03-31
Mattermost allows an attacker to request a preview of an existing message when creating a new message via the createPost API call, disclosing the contents of the linked message.
- CVE-2023-1825LOWCVSS 3.1EG 3.12023-06-07
An issue has been discovered in GitLab EE affecting all versions starting from 15.7 before 15.10.8, all versions starting from 15.11 before 15.11.7, all versions starting from 16.0 before 16.0.2. It was possible to disclose issue notes to …
- CVE-2023-20061MEDIUMCVSS 6.5EG 6.52023-03-03
Multiple vulnerabilities in Cisco Unified Intelligence Center could allow an authenticated, remote attacker to collect sensitive information or perform a server-side request forgery (SSRF) attack on an affected system. Cisco plans to relea…
- CVE-2023-2025MEDIUMCVSS 5.0EG 5.02023-05-18
OpenBlue Enterprise Manager Data Collector versions prior to 3.2.5.75 may expose sensitive information to an unauthorized user under certain circumstances.
- CVE-2023-2062MEDIUMCVSS 6.2EG 6.22023-06-02
Missing Password Field Masking vulnerability in Mitsubishi Electric Corporation EtherNet/IP configuration tools SW1DNN-EIPCT-BD and SW1DNN-EIPCTFX5-BD allows a remote unauthenticated attacker to know the password for MELSEC iQ-R Series Eth…
- CVE-2023-2069MEDIUMCVSS 6.4EG 6.42023-05-03
An issue has been discovered in GitLab affecting all versions starting from 10.0 before 12.9.8, all versions starting from 12.10 before 12.10.7, all versions starting from 13.0 before 13.0.1. A user with the role of developer could use the…
- CVE-2023-21438LOWCVSS 2.1EG 2.42023-02-09
Improper logic in HomeScreen prior to SMR Feb-2023 Release 1 allows physical attacker to access App preview protected by Secure Folder.
- CVE-2023-21445MEDIUMCVSS 5.5EG 7.82023-02-09
Improper access control vulnerability in MyFiles prior to versions 12.2.09 in Android R(11), 13.1.03.501 in Android S(12) and 14.1.00.422 in Android T(13) allows local attacker to write file with MyFiles privilege via implicit intent.
- CVE-2023-21447MEDIUMCVSS 4.0EG 3.32023-02-09
Improper access control vulnerabilities in Samsung Cloud prior to version 5.3.0.32 allows local attackers to access information with Samsung Cloud's privilege via implicit intent.
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →