Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-668

CWE-668

Exposure of Resource to Wrong Sphere

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

719 vulnerabilities with CWE-668

CVE-2022-30732 MEDIUM

Samsung Account <13.2.00.6 - Info Disclosure

CVE-2022-30728 LOW

ScanPool <SMR Jun-2022 Release 1 - Info Disclosure

CVE-2022-30714 LOW

SemIWCMonitor <SMR Jun-2022 Release 1 - Info Disclosure

CVE-2022-28794 LOW

Android - Sensitive Information Exposure via Low-Battery Dumpstate Log

CVE-2022-26869 CRITICAL

Dell PowerStore <2.1.0 - Open Redirect

CVE-2022-1467 HIGH

AVEVA InTouch Access Anywhere and Plant SCADA Access Anywhere - Context Escape via Windows Language Bar Overlay

CVE-2022-28924 MEDIUM

UniverSIS-Students <1.5.0 - Info Disclosure

CVE-2022-29646 MEDIUM

TOTOLINK A3100R V4.1.2cu.5050_B20200504 and V4.1.2cu.5247_B20211129 - Sensitive Information Exposure

CVE-2022-24823 MEDIUM

Netty < 4.1.77 - Local Information Disclosure via Temporary File Permissions

CVE-2022-24900 CRITICAL

Piano LED Visualizer < 1.3 - Path Traversal via os.path.join

CVE-2022-29820 LOW

JetBrains PyCharm < 2022.1 - Debugger Port Exposure to Internal Network

CVE-2022-27331 MEDIUM

Zammad < 5.1.0 - Unauthenticated Exposure of Administrative Configuration

CVE-2022-1385 LOW

Mattermost < 6.5.0 - Unauthenticated Exposure of Resource to Wrong Sphere via Email Invitation

CVE-2022-27817 MEDIUM

swhkd 1.1.5 - Exposure of Keyboard Events to Wrong Sphere

CVE-2022-24411 HIGH

Dell PowerScale OneFS 8.2.2+ - Privilege Escalation

CVE-2022-23163 MEDIUM

Dell PowerScale OneFS 8.2.x-9.3.0.x - Denial of Service via Insecure Temporary File Permissions

CVE-2022-27822 MEDIUM

Android - Information Exposure via RIL Property Setting

CVE-2022-27576 LOW

Google Android - Information Disclosure

CVE-2022-22515 HIGH

CODESYS Control Runtime System < 4.5.0.0 - Authenticated Configuration File Read and Write

CVE-2022-27818 CRITICAL

swhkd < 1.2.0 - Exposure of Resource to Wrong Sphere via /tmp/swhkd.sock

CVE-2022-26850 MEDIUM

Apache NiFi <1.16.0 - Info Disclosure

CVE-2022-21947 HIGH

SUSE Rancher Desktop <V. - Info Disclosure

CVE-2022-27772 HIGH

Spring Boot < 2.2.11 - Temporary Directory Hijacking in AbstractConfigurableWebServerFactory

CVE-2022-28160 MEDIUM

Jenkins Tests Selector Plugin < 1.3.3 - Arbitrary File Read via Item/Configure Permission

CVE-2022-0315 HIGH

horovod < 0.24.0 - Insecure Temporary File

Previous Page 15 of 29 Next

Details

Vulnerabilities 719

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy