CWE-610
Externally Controlled Reference to a Resource in Another Sphere
The product uses an externally controlled name or reference that resolves to a resource that is outside of the intended control sphere.
220 vulnerabilities with CWE-610
CVE-2021-32576
HIGH
Acronis True Image - Privilege Escalation
CVSS 7.8
CVE-2021-32783
HIGH
Contour <1.17.1 - DoS
CVSS 8.5
CVE-2021-32773
MEDIUM
Racket <8.2 - Code Injection
CVSS 6.1
CVE-2021-0599
MEDIUM
Android - Info Disclosure
CVSS 5.5
CVE-2021-26920
MEDIUM
Druid - Privilege Escalation
CVSS 6.5
CVE-2021-29965
MEDIUM
Firefox < 89 - CSRF
CVSS 5.3
CVE-2021-0608
HIGH
Android - Privilege Escalation
CVSS 7.8
CVE-2021-0550
HIGH
Android <11 - Privilege Escalation
CVSS 7.8
CVE-2021-0536
HIGH
WiFiInstaller - Privilege Escalation
CVSS 7.8
CVE-2021-1306
MEDIUM
Cisco EPN Manager, ISE, Prime Infrastructure - Path Traversal
CVSS 4.4
CVE-2021-27648
CRITICAL
Synology Antivirus Essential <1.4.8-2801 - Privilege Escalation
CVSS 9.0
CVE-2021-30245
HIGH
Apache OpenOffice <4.1.8 - Code Injection
CVSS 8.8
CVE-2021-27183
HIGH
Altn Mdaemon < 20.0.4 - Remote Code Execution
CVSS 7.2
CVE-2021-26711
MEDIUM
Redwood Report2Web 4.3.4.5 - XSS
CVSS 5.3
CVE-2020-36772
MEDIUM
CloudLinux CageFS <7.0.8.2 - Info Disclosure
CVSS 4.4
CVE-2020-8561
MEDIUM
Kubernetes - SSRF
CVSS 4.1
CVE-2020-21363
MEDIUM
Maccms 10 - Path Traversal
CVSS 6.5
CVE-2020-23171
MEDIUM
Nim-lang - Path Traversal
CVSS 5.5
CVE-2020-25161
HIGH
WebAccess/SCADA <9.0 - Code Injection
CVSS 8.8
CVE-2020-6105
HIGH
F2fs-Tools F2fs.Fsck <1.13 - RCE
CVSS 7.8
CVE-2020-0345
HIGH
Android <11 - Privilege Escalation
CVSS 7.8
CVE-2020-0267
HIGH
Android <11 - Privilege Escalation
CVSS 7.8
CVE-2020-8226
MEDIUM
phpBB < v3.2.10, < v3.3.1 - SSRF
CVSS 5.8
CVE-2020-5412
MEDIUM
Spring Cloud Netflix <2.2.4-2.1.6 - SSRF
CVSS 6.5
CVE-2020-8553
MEDIUM
Kubernetes ingress-nginx <0.28.0 - Privilege Escalation
CVSS 5.9
Details
Vulnerabilities
220