CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 21 of 23
- CVE-2023-5545MEDIUMCVSS 5.3EG 3.32023-11-09
H5P metadata automatically populated the author with the user's username, which could be sensitive information.
- CVE-2023-5751HIGHCVSS 7.8EG 7.82024-06-04
A local attacker with low privileges can read and modify any users files and cause a DoS in the working directory of the affected products due to exposure of resource to wrong sphere.
- CVE-2023-6096HIGHCVSS 7.4EG 7.42024-04-26
Vladimir Kononovich, a Security Researcher has found a flaw that using a inappropriate encryption logic on the DVR. firmware encryption is broken and allows to decrypt. The manufacturer has released patch firmware for the flaw, please ref…
- CVE-2023-6955MEDIUMCVSS 6.6EG 6.62024-01-12
A missing authorization check vulnerability exists in GitLab Remote Development affecting all versions prior to 16.5.6, 16.6 prior to 16.6.4 and 16.7 prior to 16.7.2. This condition allows an attacker to create a workspace in one group tha…
- CVE-2023-7014MEDIUMCVSS 5.3EG 5.32024-02-05
The Author Box, Guest Author and Co-Authors for Your Posts – Molongui plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.7.4 via the 'ma_debu' parameter. This makes it possible fo…
- CVE-2023-7204HIGHCVSS 7.5EG 7.52024-01-29
The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides
- CVE-2024-0443MEDIUMCVSS 5.5EG 5.52024-01-12
A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to a cgroup blkio memory leakage problem. When a cgroup is being destroyed, cgroup_rstat_flush() is only called at css_release_work_fn(), whi…
- CVE-2024-13484HIGHCVSS 8.2EG 8.22025-01-28
A flaw was found in openshift-gitops-operator-container. The openshift.io/cluster-monitoring label is applied to all namespaces that deploy an ArgoCD CR instance, allowing the namespace to create a rogue PrometheusRule. This issue can have…
- CVE-2024-20692MEDIUMCVSS 5.7EG 5.72024-01-09
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
- CVE-2024-20694MEDIUMCVSS 5.5EG 5.52024-01-09
Windows CoreMessaging Information Disclosure Vulnerability
- CVE-2024-21597MEDIUMCVSS 5.3EG 5.32024-01-12
An Exposure of Resource to Wrong Sphere vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to bypass the intended access restrictions. In an Abs…
- CVE-2024-21605MEDIUMCVSS 6.5EG 6.52024-04-12
An Exposure of Resource to Wrong Sphere vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX 300 Series allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). Specific valid l…
- CVE-2024-21626HIGHCVSS 8.6EG 8.62024-01-31
runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process (from runc e…
- CVE-2024-21813HIGHCVSS 7.9EG 7.92024-05-16
Exposure of resource to wrong sphere in some Intel(R) DTT software installers may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-22281HIGHCVSS 7.5EG 7.52024-08-20
** UNSUPPORTED WHEN ASSIGNED ** The Apache Helix Front (UI) component contained a hard-coded secret, allowing an attacker to spoof sessions by generating their own fake cookies. This issue affects Apache Helix Front (UI): all versions. A…
- CVE-2024-22333LOWCVSS 3.3EG 4.02024-06-13
IBM Maximo Asset Management 7.6.1.3 and IBM Maximo Application Suite 8.10 and 8.11 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 279973.
- CVE-2024-24562MEDIUMCVSS 5.4EG 5.42024-03-14
vantage6-UI is the official user interface for the vantage6 server. In affected versions a number of security headers are not set. This issue has been addressed in commit `68dfa6614` which is expected to be included in future releases. Use…
- CVE-2024-24985HIGHCVSS 7.2EG 7.22024-11-13
Exposure of resource to wrong sphere in some Intel(R) processors with Intel(R) ACTM may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2024-25153CRITICALCVSS 9.8EG 9.82024-03-13
A directory traversal within the ‘ftpservlet’ of the FileCatalyst Workflow Web Portal allows files to be uploaded outside of the intended ‘uploadtemp’ directory with a specially crafted POST request. In situations where a file is s…
- CVE-2024-29905HIGHCVSS 8.1EG 8.12024-04-09
DIRAC is an interware, meaning a software framework for distributed computing. Prior to version 8.0.41, during the proxy generation process (e.g., when using `dirac-proxy-init`), it is possible for unauthorized users on the same machine to…
- CVE-2024-3019HIGHCVSS 8.8EG 8.82024-03-28
A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue can only be exploited when pmproxy is run…
- CVE-2024-32473MEDIUMCVSS 4.7EG 4.72024-04-18
Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes. In 26.0.0, IPv6 is not disabled on network interfaces, including those belonging…
- CVE-2024-35183MEDIUMCVSS 4.4EG 4.42024-05-15
wolfictl is a command line tool for working with Wolfi. A git authentication issue in versions prior to 0.16.10 allows a local user’s GitHub token to be sent to remote servers other than `github.com`. Most git-dependent functionality in …
- CVE-2024-35199HIGHCVSS 8.2EG 8.22024-07-19
TorchServe is a flexible and easy-to-use tool for serving and scaling PyTorch models in production. In affected versions the two gRPC ports 7070 and 7071, are not bound to [localhost](http://localhost/) by default, so when TorchServe is la…
- CVE-2024-36032HIGHCVSS 7.1EG 7.12024-05-30
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix info leak when fetching fw build id Add the missing sanity checks and move the 255-byte build-id buffer off the stack to avoid leaking stack data thr…
- CVE-2024-36033HIGHCVSS 7.1EG 7.12024-05-30
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: fix info leak when fetching board id Add the missing sanity check when fetching the board id to avoid leaking slab data when later requesting the firmwar…
- CVE-2024-38112HIGHCVSS 7.5EG 9.0⚠ KEV2024-07-09
Windows MSHTML Platform Spoofing Vulnerability
- CVE-2024-38368CRITICALCVSS 9.3EG 9.32024-07-01
trunk.cocoapods.org is the authentication server for the CoacoaPods dependency manager. A vulnerability affected older pods which migrated from the pre-2014 pull request workflow to trunk. If the pods had never been claimed then it was sti…
- CVE-2024-39499HIGHCVSS 7.1EG 7.12024-07-12
In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in event_deliver() Coverity spotted that event_msg is controlled by user-space, event_msg->event_data.event is passed…
- CVE-2024-39553MEDIUMCVSS 6.5EG 6.52024-07-11
An Exposure of Resource to Wrong Sphere vulnerability in the sampling service of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send arbitrary data to the device, which leads msvcsd process to crash …
- CVE-2024-40725MEDIUMCVSS 5.3EG 5.32024-07-18
A partial fix for CVE-2024-39884 in the core of Apache HTTP Server 2.4.61 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requeste…
- CVE-2024-42350LOWCVSS 3.0EG 3.02024-08-05
Biscuit is an authorization token with decentralized verification, offline attenuation and strong security policy enforcement based on a logic language. Third-party blocks can be generated without transferring the whole token to the third-…
- CVE-2024-43704HIGHCVSS 8.4EG 8.42024-11-18
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain access to the graphics buffers of a parent process.
- CVE-2024-43881HIGHCVSS 7.1EG 7.12024-08-21
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: change DMA direction while mapping reinjected packets For fragmented packets, ath12k reassembles each fragment as a normal packet and then reinjects it int…
- CVE-2024-51754LOWCVSS 2.2EG 2.22024-11-06
Twig is a template language for PHP. In a sandbox, an attacker can call `__toString()` on an object even if the `__toString()` method is not allowed by the security policy when the object is part of an array or an argument list (arguments …
- CVE-2024-51755LOWCVSS 2.2EG 2.22024-11-06
Twig is a template language for PHP. In a sandbox, an attacker can access attributes of Array-like objects as they were not checked by the security policy. They are now checked via the property policy and the `__isset()` method is now call…
- CVE-2024-52543MEDIUMCVSS 6.5EG 6.52024-12-25
Dell NativeEdge, version(s) 2.1.0.0, contain(s) a Creation of Temporary File With Insecure Permissions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information disclos…
- CVE-2024-5313MEDIUMCVSS 6.5EG 6.52024-06-12
CWE-668: Exposure of the Resource Wrong Sphere vulnerability exists that exposes a SSH interface over the product network interface. This does not allow to directly exploit the product or make any unintended operation as the SSH interface …
- CVE-2024-5660CRITICALCVSS 9.8EG 9.82024-12-10
Use of Hardware Page Aggregation (HPA) and Stage-1 and/or Stage-2 translation on Cortex-A77, Cortex-A78, Cortex-A78C, Cortex-A78AE, Cortex-A710, Cortex-X1, Cortex-X1C, Cortex-X2, Cortex-X3, Cortex-X4, Cortex-X925, Neoverse V1, Neoverse V2,…
- CVE-2024-57838HIGHCVSS 7.1EG 7.12025-01-11
In the Linux kernel, the following vulnerability has been resolved: s390/entry: Mark IRQ entries to fix stack depot warnings The stack depot filters out everything outside of the top interrupt context as an uninteresting or irrelevant pa…
- CVE-2025-12351MEDIUMCVSS 6.8EG 6.82025-10-27
Honeywell S35 Series Cameras contains an authorization bypass Vulnerability through User controller key. An attacker could potentially exploit this vulnerability, leading to Privilege Escalation to admin privileged functionalities . Honeyw…
- CVE-2025-15114CRITICALCVSS 9.8EG 9.82025-12-30
Ksenia Security lares (legacy model) Home Automation version 1.6 contains a critical security flaw that exposes the alarm system PIN in the 'basisInfo' XML file after authentication. Attackers can retrieve the PIN from the server response …
- CVE-2025-15653MEDIUMCVSS 6.8EG 6.82026-06-02
Dräger Zeus Infinity Empowered (Zeus IE) and Zeus RS C500 anesthesia workstations contain a local security vulnerability that allows unauthorized individuals with physical access to compromise software integrity via USB interface manipula…
- CVE-2025-21608MEDIUMCVSS 5.3EG 5.32025-02-18
Meshtastic is an open source mesh networking solution. In affected firmware versions crafted packets over MQTT are able to appear as a DM in client to a node even though they were not decoded with PKC. This issue has been addressed in vers…
- CVE-2025-22069HIGHCVSS 7.8EG 7.82025-04-16
In the Linux kernel, the following vulnerability has been resolved: riscv: fgraph: Fix stack layout to match __arch_ftrace_regs argument of ftrace_return_to_handler Naresh Kamboju reported a "Bad frame pointer" kernel warning while runni…
- CVE-2025-23205MEDIUMCVSS 6.9EG 6.92025-01-17
nbgrader is a system for assigning and grading notebooks. Enabling frame-ancestors: 'self' grants any JupyterHub user the ability to extract formgrader content by sending malicious links to users with access to formgrader, at least when us…
- CVE-2025-25176CRITICALCVSS 9.1EG 9.12026-01-13
Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from applications running in the non-secure environment of a platform.
- CVE-2025-2857CRITICALCVSS 10.0EG 10.02025-03-27
Following the recent Chrome sandbox escape (CVE-2025-2783), various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, l…
- CVE-2025-32428CRITICALCVSS 9.0EG 9.02025-04-15
Jupyter Remote Desktop Proxy allows you to run a Linux Desktop on a JupyterHub. jupyter-remote-desktop-proxy was meant to rely on UNIX sockets readable only by the current user since version 3.0.0, but when used with TigerVNC, the VNC serv…
- CVE-2025-32783MEDIUMCVSS 4.7EG 4.72025-04-16
XWiki Platform is a generic wiki platform. A vulnerability in versions from 5.0 to 16.7.1 affects users with Message Stream enabled and a wiki configured as closed from selecting "Prevent unregistered users to view pages" in the Administra…
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →