Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-668

CWE-668

Exposure of Resource to Wrong Sphere

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

719 vulnerabilities with CWE-668

CVE-2023-38830 HIGH

PHPJabbers Yacht Listing Script <1.0 - Info Disclosure

CVE-2023-39214 HIGH

Zoom Client SDK <5.15.5 - Info Disclosure

CVE-2023-38955 HIGH

ZKTeco BioAccess IVS <3.3.1 - Info Disclosure

CVE-2023-33368 MEDIUM

Control ID IDSecure <4.7.26.0 - Info Disclosure

CVE-2023-3670 HIGH

CODESYS Development System 3.5.9.0-3.5.17.0 and Scripting 4.0.0.0-4.1.0.0 - Unsafe Directory Permissions

CVE-2023-39155 MEDIUM

Jenkins Chef Identity Plugin <2.0.3 - Info Disclosure

CVE-2023-34189 MEDIUM

Apache InLong <1.7.0 - Privilege Escalation

CVE-2023-37645 MEDIUM

eyoucms v1.6.3 - Information Disclosure via /custom_model_path/recruit.filelist.txt

CVE-2023-3299 LOW

HashiCorp Nomad 1.2.11-1.5.6 and 1.4.10 - Sensitive Information Exposure in ACL Policy Block

CVE-2023-32760 HIGH

Archer < 6.12.0.6 - Authenticated Sensitive Information Exposure via Data Feed API

CVE-2023-32759 HIGH

Archer < 6.12.0.6 - Authenticated Sensitive Information Exposure via Crafted URL

CVE-2023-37599 HIGH

Issabel PBX 4.0.0-6 - Sensitive Information Exposure via Modules Directory

CVE-2023-34119 HIGH

Zoom Rooms for Windows <5.15.0 - Privilege Escalation

CVE-2023-31818 HIGH

Marukyu Line <13.4.1 - Info Disclosure

CVE-2023-30960 MEDIUM

Foundry Job-Tracker <4.645.0 - Info Disclosure

CVE-2023-3270 HIGH

SICK ICR890-4 Firmware < 2.5.0 - Unauthenticated Exposure of Sensitive Information

CVE-2023-35696 HIGH

SICK ICR890-4 Firmware < 2.5.0 - Unauthenticated Sensitive Information Exposure via HTTP Endpoints

CVE-2023-3456 MEDIUM

Huawei EMUI and HarmonyOS - Kernel Raw Address Leakage in Hang Detector Module

CVE-2023-3455 CRITICAL

Huawei EMUI and HarmonyOS - Exposure of Sensitive Information via Key Management Vulnerability

CVE-2023-32613 HIGH

WL-WN531AX2 Firmware < 2023526 - Unauthenticated Exposure of Resource to Wrong Sphere

CVE-2023-32394 LOW

iPadOS < 16.5 - Unprotected Contact Information Exposure via Lock Screen

CVE-2023-35151 HIGH

XWiki 7.3-milestone-1-14.4.8 - Unauthenticated Exposure of Obfuscated Passwords via REST Endpoint

CVE-2023-34467 HIGH

XWiki Platform <14.4.8-15.0-rc-1 - Info Disclosure

CVE-2023-2820 MEDIUM

Proofpoint Threat Response <5.10.0 - Info Disclosure

CVE-2023-32019 MEDIUM

Windows Kernel - Information Disclosure via KTM Registry Transactions

Previous Page 8 of 29 Next

Details

Vulnerabilities 719

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy