Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-668

CWE-668

Exposure of Resource to Wrong Sphere

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

719 vulnerabilities with CWE-668

CVE-2025-38670 HIGH

Linux Kernel - Unprotected User Data Exposure via Stack Mismatch in cpu_switch_to() and call_on_irq_stack()

CVE-2025-9074 CRITICAL

Docker Desktop - Privilege Escalation

CVE-2025-38521 HIGH

Linux Kernel - Denial of Service via GPU Hard Reset Sequence

CVE-2025-55077 HIGH

Tyler Technologies ERP Pro 9 SaaS - Command Injection

CVE-2025-54126 MEDIUM

WebAssembly Micro Runtime < 2.4.0 - Unintended Network Exposure via IPv4 Address Pool Configuration

CVE-2025-8107 MEDIUM

OceanBase <Oracle Mode - Privilege Escalation

CVE-2025-34119 HIGH

EasyCafe Server <2.2.14 - Info Disclosure

CVE-2025-6788 MEDIUM

EcoStruxure Power Monitoring Expert and Advanced Reporting Module - Exposure of TGML Diagram Resources to Wrong Sphere

CVE-2025-34064 CRITICAL

OneLogin AD Connector - Info Disclosure

CVE-2025-46707 MEDIUM

Imaginationtech DDK - Privilege Escalation via Guest VM

CVE-2025-49574 MEDIUM

Quarkus < 3.24.1, < 3.20.2, < 3.15.6 - Data Leak via Duplicated Context

CVE-2025-37966 MEDIUM

Linux Kernel 6.13-6.14.7 - Denial of Service via PR_SET_TAGGED_ADDR_CTRL

CVE-2025-3651 CRITICAL

Work Desktop for Mac <10.8.2.33 - RCE

CVE-2025-32783 MEDIUM

XWiki 5.0-16.7.1 - Unintended Message Exposure via Message Stream Feature

CVE-2025-22069 HIGH

Linux Kernel 6.14-6.14.2 - Exposure of Resource to Wrong Sphere via ftrace_return_to_handler

CVE-2025-32428 CRITICAL

jupyter-remote-desktop-proxy 3.0.0 - Exposure of VNC Server to Wrong Sphere via TigerVNC

CVE-2025-2857 CRITICAL

Firefox < 136.0.4, 115.21.1, 128.8.1-128.*, 136.0.4-136.* - Sandbox Escape via IPC Handle Mismanagement

CVE-2025-21608 MEDIUM

meshtastic_firmware 2.5.0-2.5.18 - Unauthenticated Message Spoofing via MQTT

CVE-2025-23205 MEDIUM

nbgrader 0.9.4 - Exposure of Sensitive Data via Frame Ancestors Misconfiguration

CVE-2024-13484 HIGH

openshift-gitops-operator-container - Info Disclosure

CVE-2024-57838 HIGH

Linux Kernel - Stack Depot Exhaustion via Missing IRQ Entry Marking

CVE-2024-52543 MEDIUM

Dell NativeEdge < 2.2.0.0 - Information Disclosure via Insecure Temporary File Permissions

CVE-2024-5660 CRITICAL

ARM Cortex and Neoverse Firmware - Unprotected Memory Access via Hardware Page Aggregation

CVE-2024-43704 HIGH

Imagination Technologies Graphics DDK 1.13 RTM-24.2 - Unauthorized GPU Buffer Access

CVE-2024-24985 HIGH

Intel(R) processor - Privilege Escalation

Previous Page 3 of 29 Next

Details

Vulnerabilities 719

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy