Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-669

CWE-669

Incorrect Resource Transfer Between Spheres

Parent: CWE-664 - Improper Control of a Resource Through its Lifetime

The product does not properly transfer a resource/behavior to another sphere, or improperly imports a resource/behavior from another sphere, in a manner that provides unintended control over that resource.

96 vulnerabilities with CWE-669

CVE-2020-15257 MEDIUM

containerd <1.3.9 and <1.4.3 - Privilege Escalation

CVE-2020-10778 MEDIUM

Red Hat CloudForms <5 - Info Disclosure

CVE-2020-15892 CRITICAL

D-Link DAP-1520 Firmware < 1.10b04 - Stack-Based Buffer Overflow via Login Request Parameters

CVE-2020-1048 HIGH

Microsoft Spooler Local Privilege Elevation Vulnerability

CVE-2020-5188 MEDIUM

Dnnsoftware Dotnetnuke < 9.4.4 - Unrestricted File Upload

CVE-2020-6862 MEDIUM

ZTE F6x2W Firmware V6.0.10P2T2 and V6.0.10P2T5 - Unauthenticated Information Disclosure via CAPTCHA Bypass

CVE-2019-13025 CRITICAL

Compal CH7465LG CH7465LG-NCIP-6.12.18.24-5p8-NOSH - OS Command Injection via Backend API Endpoint

CVE-2019-10753 MEDIUM

Eclipse WTP/CDT/Groovy <3.9.6/<9.4.4/<3.0.1 - Info Disclosure

CVE-2019-13266 HIGH

TP-Link Archer C3200 V1 & Archer C2 V1 - Info Disclosure

CVE-2019-13263 HIGH

D-link DIR-825AC G1 - Info Disclosure

CVE-2019-1020011 HIGH

SmokeDetector - Unauthenticated Unauthorized Deployment

CVE-2019-11770 HIGH

Eclipse Buildship <3.1.1 - Info Disclosure

CVE-2019-11875 HIGH

Blueprism Robotic Process Automation - Missing Authorization

CVE-2019-10248 HIGH

Eclipse Vorto <0.11 - Info Disclosure

CVE-2019-0042 MEDIUM

Juniper Identity Management Service < 1.1.4 - Firewall Bypass and DoS via Incorrect Resource Transfer

CVE-2018-17791 HIGH

Newgen OmniFlow iBPS 7.0 - Info Disclosure

CVE-2017-14013 MEDIUM

ProMinent MultiFLEX M10a - Privilege Escalation

CVE-2016-5062 CRITICAL

aternity < 9.0 - Unauthenticated Remote Code Execution via MBeans Registration

CVE-2012-2979 HIGH

FreeBSD NSD < 3.2.13 - Denial of Service via Child Server Process Crash

Opera Browser - Cookie Leakage via Insecure Channel

Microsoft Exchange Server and Windows - Denial of Service via Malformed BDAT Request

Previous Page 4 of 4

Details

Vulnerabilities 96

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy