CWE-668— Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.— MITRE CWE catalog
1,109 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 8 of 23
- CVE-2021-31154HIGHCVSS 7.8EG 7.82021-05-27
pleaseedit in please before 0.4 uses predictable temporary filenames in /tmp and the target directory. This allows a local attacker to gain full root privileges by staging a symlink attack.
- CVE-2021-31407HIGHCVSS 8.6EG 8.62021-04-23
Vulnerability in OSGi integration in com.vaadin:flow-server versions 1.2.0 through 2.4.7 (Vaadin 12.0.0 through 14.4.9), and 6.0.0 through 6.0.1 (Vaadin 19.0.0) allows attacker to access application classes and resources on the server via …
- CVE-2021-31410HIGHCVSS 8.6EG 8.62021-04-23
Overly relaxed configuration of frontend resources server in Vaadin Designer versions 4.3.0 through 4.6.3 allows remote attackers to access project sources via crafted HTTP request.
- CVE-2021-31547MEDIUMCVSS 4.3EG 4.32021-04-22
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. Its AbuseFilterCheckMatch API reveals suppressed edits and usernames to unprivileged users through the iteration of crafted AbuseFilter rules.
- CVE-2021-31548MEDIUMCVSS 6.5EG 6.52021-04-22
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. A MediaWiki user who is partially blocked or was unsuccessfully blocked could bypass AbuseFilter and have their edits completed.
- CVE-2021-31552MEDIUMCVSS 5.4EG 5.42021-04-22
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It incorrectly executed certain rules related to blocking accounts after account creation. Such rules would allow for user accounts to be created while bloc…
- CVE-2021-31554MEDIUMCVSS 5.4EG 5.42021-04-22
An issue was discovered in the AbuseFilter extension for MediaWiki through 1.35.2. It improperly handled account blocks for certain automatically created MediaWiki user accounts, thus allowing nefarious users to remain unblocked.
- CVE-2021-31810MEDIUMCVSS 5.8EG 5.82021-07-13
An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A malicious FTP server can use the PASV response to trick Net::FTP into connecting back to a given IP address and port. This potentially makes curl …
- CVE-2021-31814MEDIUMCVSS 6.1EG 6.12022-02-10
In Stormshield 1.1.0, and 2.1.0 through 2.9.0, an attacker can block a client from accessing the VPN and can obtain sensitive information through the SN VPN SSL Client.
- CVE-2021-32760MEDIUMCVSS 5.0EG 5.02021-07-19
containerd is a container runtime. A bug was found in containerd versions prior to 1.4.8 and 1.5.4 where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host��…
- CVE-2021-32788MEDIUMCVSS 4.3EG 4.32021-07-27
Discourse is an open source discussion platform. In versions prior to 2.7.7 there are two bugs which led to the post creator of a whisper post being revealed to non-staff users. 1: Staff users that creates a whisper post in a personal mess…
- CVE-2021-33079MEDIUMCVSS 4.1EG 4.42022-09-20
Protection mechanism failure in firmware for some Intel(R) SSD DC Products may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2021-33081HIGHCVSS 7.9EG 4.42022-09-20
Protection mechanism failure in firmware for some Intel(R) SSD DC Products may allow a privileged user to potentially enable information disclosure via local access.
- CVE-2021-33096MEDIUMCVSS 5.5EG 5.52022-02-09
Improper isolation of shared resources in network on chip for the Intel(R) 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access.
- CVE-2021-33259MEDIUMCVSS 5.3EG 5.32021-10-31
Several web interfaces in D-Link DIR-868LW 1.12b have no authentication requirements for access, allowing for attackers to obtain users' DNS query history.
- CVE-2021-33669HIGHCVSS 7.8EG 7.82021-06-09
Under certain conditions, SAP Mobile SDK Certificate Provider allows a local unprivileged attacker to exploit an insecure temporary file storage. For a successful exploitation user interaction from another user is required and could lead t…
- CVE-2021-33677HIGHCVSS 7.5EG 7.52021-07-14
SAP NetWeaver ABAP Server and ABAP Platform, versions - 700, 702, 730, 731, 804, 740, 750, 784, expose functions to external which can lead to information disclosure.
- CVE-2021-3380MEDIUMCVSS 6.5EG 6.52021-11-10
Insecure direct object reference (IDOR) vulnerability in ICREM H8 SSRMS allows attackers to disclose sensitive information via the Print Invoice Functionality.
- CVE-2021-34075MEDIUMCVSS 5.9EG 5.92021-06-30
In Artica Pandora FMS <=754 in the File Manager component, there is sensitive information exposed on the client side which attackers can access.
- CVE-2021-34424HIGHCVSS 7.5EG 7.52021-11-24
A vulnerability was discovered in the Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings…
- CVE-2021-34539HIGHCVSS 7.2EG 7.22021-06-10
An issue was discovered in CubeCoders AMP before 2.1.1.8. A lack of validation of the Java Version setting means that an unintended executable path can be set. The result is that high-privileged users can trigger code execution.
- CVE-2021-34723MEDIUMCVSS 6.7EG 6.72021-09-23
A vulnerability in a specific CLI command that is run on Cisco IOS XE SD-WAN Software could allow an authenticated, local attacker to overwrite arbitrary files in the configuration database of an affected device. This vulnerability is due …
- CVE-2021-34761MEDIUMCVSS 4.4EG 6.02021-10-27
A vulnerability in Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to overwrite or append arbitrary data to system files using root-level privileges. The attacker must have administrative credenti…
- CVE-2021-34824HIGHCVSS 8.8EG 8.82021-06-29
Istio (1.8.x, 1.9.0-1.9.5 and 1.10.0-1.10.1) contains a remotely exploitable vulnerability where credentials specified in the Gateway and DestinationRule credentialName field can be accessed from different namespaces.
- CVE-2021-35092MEDIUMCVSS 6.7EG 6.72022-06-14
Processing DCB/AVB algorithm with an invalid queue index from IOCTL request could lead to arbitrary address modification in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, S…
- CVE-2021-35197HIGHCVSS 7.5EG 7.52021-07-02
In MediaWiki before 1.31.15, 1.32.x through 1.35.x before 1.35.3, and 1.36.x before 1.36.1, bots have certain unintended API access. When a bot account has a "sitewide block" applied, it is able to still "purge" pages through the MediaWiki…
- CVE-2021-35211CRITICALCVSS 9.0EG 10.0⚠ KEV2021-07-14
Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Ser…
- CVE-2021-35219MEDIUMCVSS 6.0EG 4.92021-08-31
ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability using ImportAlert function within the Alerts Settings page.
- CVE-2021-35299HIGHCVSS 7.5EG 7.52021-06-28
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive information via email connection configuration probing.
- CVE-2021-35301MEDIUMCVSS 5.3EG 5.32021-06-28
Incorrect Access Control in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information via the Ticket Article detail view.
- CVE-2021-35302MEDIUMCVSS 5.3EG 5.32021-06-28
Incorrect Access Control for linked Tickets in Zammad 1.0.x up to 4.0.0 allows remote attackers to obtain sensitive information.
- CVE-2021-3554CRITICALCVSS 9.0EG 10.02021-11-24
Improper Access Control vulnerability in the patchesUpdate API as implemented in Bitdefender Endpoint Security Tools for Linux as a relay role allows an attacker to manipulate the remote address used for pulling patches. This issue affects…
- CVE-2021-35958CRITICALCVSS 9.1EG 9.12021-06-30
TensorFlow through 2.5.0 allows attackers to overwrite arbitrary files via a crafted archive when tf.keras.utils.get_file is used with extract=True. NOTE: the vendor's position is that tf.keras.utils.get_file is not intended for untrusted …
- CVE-2021-36002MEDIUMCVSS 5.0EG 7.32021-09-01
Adobe Captivate version 11.5.5 (and earlier) is affected by an Creation of Temporary File In Directory With Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. The attacker must…
- CVE-2021-36192MEDIUMCVSS 5.2EG 3.82021-11-03
An exposure of sensitive information to an unauthorized actor [CWE-200] vulnerability in FortiManager 7.0.1 and below, 6.4.6 and below, 6.2.x, 6.0.x, 5.6.0 may allow a FortiGate user to see scripts from other ADOMS.
- CVE-2021-36198HIGHCVSS 8.3EG 8.32021-12-06
Successful exploitation of this vulnerability could allow an unauthorized user to access sensitive data.
- CVE-2021-36319LOWCVSS 3.3EG 3.32021-11-20
Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. A low privileged authenticated malicious user can gain access to SNMP authentication failure messages.
- CVE-2021-36710HIGHCVSS 8.8EG 8.82022-06-08
ToaruOS 1.99.2 is affected by incorrect access control via the kernel. Improper MMU management and having a low GDT address allows it to be mapped in userland. A call gate can then be written to escalate to CPL 0.
- CVE-2021-36723MEDIUMCVSS 6.1EG 7.52021-12-29
Emuse - eServices / eNvoice Exposure Of Private Personal Information due to lack of identification mechanisms and predictable IDs an attacker can scrape all the files on the service.
- CVE-2021-36791MEDIUMCVSS 5.3EG 5.32021-08-13
The dated_news (aka Dated News) extension through 5.1.1 for TYPO3 allows Information Disclosure of application registration data.
- CVE-2021-36917MEDIUMCVSS 6.5EG 7.52021-11-24
WordPress Hide My WP plugin (versions <= 6.2.3) can be deactivated by any unauthenticated user. It is possible to retrieve a reset token which can then be used to deactivate the plugin.
- CVE-2021-3709MEDIUMCVSS 6.5EG 5.52021-10-01
Function check_attachment_for_errors() in file data/general-hooks/ubuntu.py could be tricked into exposing private data via a constructed crash file. This issue affects: apport 2.14.1 versions prior to 2.14.1-0ubuntu3.29+esm8; 2.20.1 versi…
- CVE-2021-37112MEDIUMCVSS 5.3EG 5.32022-01-03
Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak.
- CVE-2021-37133HIGHCVSS 7.5EG 7.52022-01-03
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2021-37326MEDIUMCVSS 5.3EG 5.32021-08-15
NetSarang Xshell 7 before Build 0077 includes unintended code strings in paste operations.
- CVE-2021-37601HIGHCVSS 7.5EG 7.52021-07-30
muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information (list of admins, members, owners, and banned entities of a Multi-User chat room) in some common configurations.
- CVE-2021-37704MEDIUMCVSS 5.4EG 5.42021-08-12
PhpFastCache is a high-performance backend cache system (packagist package phpfastcache/phpfastcache). In versions before 6.1.5, 7.1.2, and 8.0.7 the `phpinfo()` can be exposed if the `/vendor` is not protected from public access. This is …
- CVE-2021-37734MEDIUMCVSS 6.5EG 6.52021-10-12
A remote unauthorized read access to files vulnerability was discovered in Aruba Instant version(s): 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.19 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8…
- CVE-2021-37965MEDIUMCVSS 4.3EG 4.32021-10-08
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to leak cross-origin data via a crafted HTML page.
- CVE-2021-37967MEDIUMCVSS 4.3EG 4.32021-10-08
Inappropriate implementation in Background Fetch API in Google Chrome prior to 94.0.4606.54 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page.
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →