CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 7 of 23
- CVE-2021-26341MEDIUMCVSS 6.5EG 6.52022-03-11
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
- CVE-2021-26343MEDIUMCVSS 5.5EG 5.52023-01-11
Insufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to disclose the contents of sensitive memory which may result in information disclosure.
- CVE-2021-26361MEDIUMCVSS 5.5EG 5.52022-05-12
A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an attacker to exfiltrate arbitrary memory from the ASP stage 2 bootloader potentially leading to information disclosure.
- CVE-2021-26363MEDIUMCVSS 4.4EG 4.42022-05-12
A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenced area, potentially leading to data exposure.
- CVE-2021-26366HIGHCVSS 7.1EG 7.12022-05-12
An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
- CVE-2021-26585MEDIUMCVSS 5.5EG 5.52021-06-24
A potential vulnerability has been identified in HPE OneView Global Dashboard release 2.31 which could lead to a local disclosure of privileged information. HPE has provided an update to OneView Global Dashboard. The issue is resolved in 2…
- CVE-2021-27001MEDIUMCVSS 5.5EG 5.52021-10-19
Clustered Data ONTAP versions 9.x prior to 9.5P18, 9.6P16, 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow an authenticated privileged local attacker to arbitrarily modify Compliance-mode WORM data prior to t…
- CVE-2021-27043HIGHCVSS 7.8EG 5.52021-06-25
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in t…
- CVE-2021-27236CRITICALCVSS 9.8EG 9.82021-02-16
An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. getfile.asp allows Unauthenticated Local File Inclusion, which can be leveraged to achieve Remote Code Execution.
- CVE-2021-27424MEDIUMCVSS 5.3EG 5.32022-03-23
GE UR firmware versions prior to version 8.1x shares MODBUS memory map as part of the communications guide. GE was made aware a “Last-key pressed” MODBUS register can be used to gain unauthorized information.
- CVE-2021-27621MEDIUMCVSS 4.9EG 4.92021-06-09
Information Disclosure vulnerability in UserAdmin application in SAP NetWeaver Application Server for Java, versions - 7.11,7.20,7.30,7.31,7.40 and 7.50 allows attackers to access restricted information by entering malicious server name.
- CVE-2021-27637MEDIUMCVSS 4.6EG 4.62021-06-09
Under certain conditions SAP Enable Now (SAP Workforce Performance Builder - Manager), versions - 1.0, 10 allows an attacker to access information which would otherwise be restricted leading to information disclosure.
- CVE-2021-27769MEDIUMCVSS 5.3EG 5.32022-05-12
Information leakage occurs when a website reveals information that could aid an attacker to further exploit the system. This information may or may not be sensitive and does not automatically mean a breach is likely to occur. Overall, any …
- CVE-2021-27770MEDIUMCVSS 6.8EG 8.82022-05-12
The vulnerability was discovered within the “FaviconService”. The service takes a base64-encoded URL which is then requested by the webserver. We assume this service is used by the “meetings”-function where users can specify an ext…
- CVE-2021-28168MEDIUMCVSS 6.2EG 6.22021-04-22
Eclipse Jersey 2.28 to 2.33 and Eclipse Jersey 3.0.0 to 3.0.1 contains a local information disclosure vulnerability. This is due to the use of the File.createTempFile which creates a file inside of the system temporary directory with the p…
- CVE-2021-28488MEDIUMCVSS 6.5EG 6.52022-03-10
Ericsson Network Manager (ENM) before 21.2 has incorrect access-control behavior (that only affects the level of access available to persons who were already granted a highly privileged role). Users in the same AMOS authorization group can…
- CVE-2021-28568MEDIUMCVSS 5.8EG 6.52021-09-08
Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability to achieve privilege escalation in the …
- CVE-2021-28597MEDIUMCVSS 5.5EG 5.52021-06-28
Adobe Photoshop Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions against the installer to perform high priv…
- CVE-2021-28623MEDIUMCVSS 5.5EG 5.52021-06-28
Adobe Premiere Elements version 5.2 (and earlier) is affected by an insecure temporary file creation vulnerability. An unauthenticated attacker could leverage this vulnerability to call functions against the installer to perform high privi…
- CVE-2021-28633MEDIUMCVSS 6.1EG 6.12021-08-24
Adobe Creative Cloud Desktop Application (installer) version 2.4 (and earlier) is affected by an Insecure temporary file creation vulnerability. An attacker could leverage this vulnerability to cause arbitrary file overwriting in the conte…
- CVE-2021-29115MEDIUMCVSS 5.3EG 5.32021-12-07
An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. This issue may reveal field names, but n…
- CVE-2021-29280MEDIUMCVSS 6.4EG 6.42021-08-19
In TP-Link Wireless N Router WR840N an ARP poisoning attack can cause buffer overflow
- CVE-2021-29701MEDIUMCVSS 4.3EG 4.32022-01-11
IBM Engineering Workflow Management 7.0, 7.0.1, and 7.0.2 as well as IBM Rational Team Concert 6.0.6 and 6.0.6.1 could allow an authneticated attacker to obtain sensitive information from build definitions that could aid in further attacks…
- CVE-2021-29715CRITICALCVSS 9.1EG 9.12021-08-26
IBM API Connect 5.0.0.0 through 5.0.8.11 could alllow a remote user to obtain sensitive information or conduct denial of serivce attacks due to open ports. IBM X-Force ID: 201018.
- CVE-2021-29716MEDIUMCVSS 6.5EG 6.52021-12-03
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to reas of the application that privileged user should only be allowed to view. IBM X-Force ID: 201087.
- CVE-2021-29719MEDIUMCVSS 5.3EG 5.32021-12-03
IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client side vulnerabilties due to a web response specifying an incorrect content type. IBM X-Force ID: 201091
- CVE-2021-29768MEDIUMCVSS 6.5EG 6.52022-06-24
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a low level user to obtain sensitive information from the details of the 'Cloud Storage' page for which they should not have access. IBM X-Force ID: 202682.
- CVE-2021-29867MEDIUMCVSS 5.4EG 5.42021-12-03
IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter notebook that they should not have access to. IBM X-Force ID: 206212.
- CVE-2021-29873HIGHCVSS 8.1EG 8.12021-10-21
IBM Flash System 900 could allow an authenticated attacker to obtain sensitive information and cause a denial of service due to a restricted shell escape vulnerability. IBM X-Force ID: 206229.
- CVE-2021-29880MEDIUMCVSS 6.5EG 6.52021-08-13
IBM QRadar SIEM 7.4.3 GA - 7.4.3 Fix Pack 1 when using domains or multi-tenancy could be vulnerable to information disclosure between tenants by routing SIEM data to the incorrect domain. IBM X-Force ID: 206979.
- CVE-2021-29958MEDIUMCVSS 4.3EG 4.32021-06-24
When a download was initiated, the client did not check whether it was in normal or private browsing mode, which led to private mode cookies being shared in normal browsing mode. This vulnerability affects Firefox for iOS < 34.
- CVE-2021-30153MEDIUMCVSS 4.3EG 4.32023-04-15
An issue was discovered in the VisualEditor extension in MediaWiki before 1.31.13, and 1.32.x through 1.35.x before 1.35.2. . When using VisualEditor to edit a MediaWiki user page belonging to an existing, but hidden, user, VisualEditor wi…
- CVE-2021-30190CRITICALCVSS 9.8EG 9.82021-05-25
CODESYS V2 Web-Server before 1.1.9.20 has Improper Access Control.
- CVE-2021-30276CRITICALCVSS 9.3EG 7.82022-01-03
Improper access control while doing XPU re-configuration dynamically can lead to unauthorized access to a secure resource in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wired …
- CVE-2021-30284HIGHCVSS 7.5EG 9.12021-11-12
Possible information exposure and denial of service due to NAS not dropping messages when integrity check fails in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon…
- CVE-2021-30314MEDIUMCVSS 6.2EG 5.52022-01-13
Lack of validation for third party application accessing the service can lead to information disclosure in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile,…
- CVE-2021-30345MEDIUMCVSS 6.5EG 5.52022-06-14
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
- CVE-2021-30346MEDIUMCVSS 6.5EG 5.52022-06-14
RPM secure Stream can access any secure resource due to improper SMMU configuration in Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
- CVE-2021-30615MEDIUMCVSS 6.5EG 6.52021-09-03
Chromium: CVE-2021-30615 Cross-origin data leak in Navigation
- CVE-2021-30630MEDIUMCVSS 4.3EG 4.32021-10-08
Inappropriate implementation in Blink in Google Chrome prior to 93.0.4577.82 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.
- CVE-2021-30656MEDIUMCVSS 5.5EG 5.52021-09-08
An access issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A malicious application may be able to determine kernel memory layout.
- CVE-2021-30673MEDIUMCVSS 5.5EG 5.52021-09-08
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina. A malicious application may be able to access a user's call history.
- CVE-2021-30709MEDIUMCVSS 5.5EG 5.52021-09-08
This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted USD file may disclose …
- CVE-2021-30798HIGHCVSS 7.5EG 7.52021-09-08
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6. A malicious application may be able to bypass certain Privacy preferences.
- CVE-2021-30803LOWCVSS 3.3EG 3.32021-09-08
A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.5. A malicious application may be able to access a user’s recent Contacts.
- CVE-2021-30815LOWCVSS 2.4EG 2.42021-10-19
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to view contacts from the lock screen.
- CVE-2021-30816LOWCVSS 2.4EG 2.42021-10-28
The issue was addressed with improved permissions logic. This issue is fixed in iOS 15 and iPadOS 15. An attacker with physical access to a device may be able to see private contact information.
- CVE-2021-30828MEDIUMCVSS 5.5EG 5.52021-10-19
This issue was addressed with improved checks. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A local user may be able to read arbitrary files as root.
- CVE-2021-30850MEDIUMCVSS 5.5EG 5.52021-10-19
An access issue was addressed with improved access restrictions. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6, tvOS 15. A user may gain access to protected parts of the file system.
- CVE-2021-30921MEDIUMCVSS 5.5EG 5.52021-08-24
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.5 and iPadOS 14.5. A user's password may be visible onscreen.
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →