CWE-610
Externally Controlled Reference to a Resource in Another Sphere
The product uses an externally controlled name or reference that resolves to a resource that is outside of the intended control sphere.
220 vulnerabilities with CWE-610
CVE-2022-24241
HIGH
ACEweb Online Portal 3.5.065 - Path Traversal
CVSS 7.5
CVE-2022-20789
MEDIUM
Cisco Unified Communications Manager - Privilege Escalation
CVSS 4.9
CVE-2022-24854
HIGH
Metabase - SQL Injection
CVSS 8.0
CVE-2021-27406
HIGH
PerFact OpenVPN-Client <1.4.1.0 - Privilege Escalation
CVSS 8.8
CVE-2021-3779
MEDIUM
ruby-mysql <2.10.0 - Info Disclosure
CVSS 6.5
CVE-2021-39787
HIGH
Android -12L - Privilege Escalation
CVSS 7.8
CVE-2021-39765
MEDIUM
Google Android - Information Disclosure
CVSS 5.5
CVE-2021-39707
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-39703
HIGH
Android <12 - Privilege Escalation
CVSS 7.8
CVE-2021-39668
HIGH
Android -11/12 - Privilege Escalation
CVSS 7.8
CVE-2021-39663
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-39626
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-1035
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-3845
HIGH
ws-scrcpy - Path Traversal
CVSS 7.5
CVE-2021-43844
HIGH
MSEdgeRedirect <0.5.0.1 - RCE
CVSS 8.8
CVE-2021-1003
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-44041
CRITICAL
UiPath Assistant 21.4.4 - Code Injection
CVSS 9.8
CVE-2021-43794
MEDIUM
Discourse - Info Disclosure
CVSS 5.3
CVE-2021-43685
CRITICAL
libretime hv3.0.0-alpha.10 - Path Traversal
CVSS 9.8
CVE-2021-41244
CRITICAL
Grafana - Privilege Escalation
CVSS 9.1
CVE-2021-0708
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-25740
LOW
Kubernetes - SSRF
CVSS 3.1
CVE-2021-0593
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-0591
HIGH
Android - Privilege Escalation
CVSS 7.3
CVE-2021-32578
HIGH
Acronis True Image - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities
220