CWE-668— Exposure of Resource to Wrong Sphere
1,097 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-668page 1 of 22
- CVE-2001-0892NONECVSS 0.0EG 0.02001-11-13
Acme Thttpd Secure Webserver before 2.22, with the chroot option enabled, allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
- CVE-2001-0893NONECVSS 0.0EG 0.02001-11-13
Acme mini_httpd before 1.16 allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /.
- CVE-2004-1489NONECVSS 0.0EG 0.02004-12-31
Opera 7.54 and earlier does not properly limit an applet's access to internal Java packages from Sun, which allows remote attackers to gain sensitive information, such as user names and the installation directory.
- CVE-2005-2351MEDIUMCVSS 5.5EG 5.52019-11-01
Mutt before 1.5.20 patch 7 allows an attacker to cause a denial of service via a series of requests to mutt temporary files.
- CVE-2007-3915CRITICALCVSS 9.1EG 9.12019-11-07
Mondo 2.24 has insecure handling of temporary files.
- CVE-2008-2544MEDIUMCVSS 5.5EG 5.52021-05-27
Mounting /proc filesystem via chroot command silently mounts it in read-write mode. The user could bypass the chroot environment and gain write access to files, he would never have otherwise.
- CVE-2008-7291CRITICALCVSS 9.8EG 9.82019-11-08
gri before 2.12.18 generates temporary files in an insecure way.
- CVE-2009-5042CRITICALCVSS 9.1EG 9.12019-10-31
python-docutils allows insecure usage of temporary files
- CVE-2011-1258NONECVSS 0.0EG 0.02011-06-16
Microsoft Internet Explorer 6 through 8 does not properly restrict web script, which allows user-assisted remote attackers to obtain sensitive information from a different (1) domain or (2) zone via vectors involving a drag-and-drop operat…
- CVE-2011-1960NONECVSS 0.0EG 0.02011-08-10
Microsoft Internet Explorer 6 through 9 does not properly implement JavaScript event handlers, which allows remote attackers to access content from a different (1) domain or (2) zone via unspecified script code, aka "Event Handlers Informa…
- CVE-2012-1846NONECVSS 0.0EG 0.02012-03-22
Google Chrome 17.0.963.66 and earlier allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a sandboxed process, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2012. NOTE: the prim…
- CVE-2012-5639MEDIUMCVSS 6.5EG 6.52019-12-20
LibreOffice and OpenOffice automatically open embedded content
- CVE-2013-0163MEDIUMCVSS 5.5EG 5.52019-12-05
OpenShift haproxy cartridge: predictable /tmp in set-proxy connection hook which could facilitate DoS
- CVE-2013-2183HIGHCVSS 7.1EG 7.12019-12-10
Monkey HTTP Daemon has local security bypass
- CVE-2013-4253HIGHCVSS 7.5EG 7.52022-10-19
The deployment script in the unsupported "OpenShift Extras" set of add-on scripts, in Red Hat Openshift 1, installs a default public key in the root user's authorized_keys file.
- CVE-2013-4280MEDIUMCVSS 5.5EG 5.52019-11-04
Insecure temporary file vulnerability in RedHat vsdm 4.9.6.
- CVE-2013-4374HIGHCVSS 7.1EG 7.12019-11-04
An insecurity temporary file vulnerability exists in RHQ Mongo DB Drift Server through 2013-09-25 when unpacking zipped files.
- CVE-2013-4480NONECVSS 0.0EG 0.02013-11-18
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
- CVE-2013-4561CRITICALCVSS 9.1EG 9.12022-06-30
In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. This may lead to loss of confidentiality and integrity.
- CVE-2014-0023HIGHCVSS 7.8EG 7.82019-11-15
OpenShift: Install script has temporary file creation vulnerability which can result in arbitrary code execution
- CVE-2014-2387MEDIUMCVSS 4.4EG 4.42019-12-13
Pen 0.18.0 has Insecure Temporary File Creation vulnerabilities
- CVE-2015-10004HIGHCVSS 7.5EG 7.52022-12-27
Token validation methods are susceptible to a timing side-channel during HMAC comparison. With a large enough number of requests over a low latency connection, an attacker may use this to determine the expected HMAC.
- CVE-2015-9550HIGHCVSS 7.5EG 7.52020-11-24
An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. By sending a specific hel,xasf packet to the WAN interface, it is possible to open the web management interface on the …
- CVE-2016-10840HIGHCVSS 8.8EG 8.82019-08-01
cPanel before 11.54.0.4 allows arbitrary code execution during locale duplication (SEC-72).
- CVE-2016-11006MEDIUMCVSS 5.3EG 5.32019-09-20
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes.
- CVE-2016-11007MEDIUMCVSS 5.3EG 5.32019-09-20
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval.
- CVE-2016-11008MEDIUMCVSS 5.3EG 5.32019-09-20
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates.
- CVE-2016-11009MEDIUMCVSS 5.3EG 5.32019-09-20
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates.
- CVE-2016-11010MEDIUMCVSS 5.3EG 5.32019-09-20
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates.
- CVE-2017-0367HIGHCVSS 8.8EG 8.82018-04-13
Mediawiki before 1.28.1 / 1.27.2 contains an unsafe use of temporary directory, where having LocalisationCache directory default to system tmp directory is insecure.
- CVE-2017-12576HIGHCVSS 7.2EG 7.22018-08-24
An issue was discovered on the PLANEX CS-QR20 1.30. A hidden and undocumented management page allows an attacker to execute arbitrary code on the device when the user is authenticated. The management page was used for debugging purposes, o…
- CVE-2017-15393HIGHCVSS 8.8EG 8.82018-02-07
Insufficient Policy Enforcement in Devtools remote debugging in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to obtain access to remote debugging functionality via a crafted HTML page, aka a Referer leak.
- CVE-2017-16593MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing auth…
- CVE-2017-16597CRITICALCVSS 9.8EG 9.82018-01-23
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Authentication is not required to exploit this vulnerability. The specific flaw exis…
- CVE-2017-16598HIGHCVSS 8.8EG 8.82018-01-23
This vulnerability allows remote attackers to execute code by overwriting arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerabili…
- CVE-2017-16599MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing auth…
- CVE-2017-16600MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to overwrite files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authenticat…
- CVE-2017-16601MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing a…
- CVE-2017-16603HIGHCVSS 8.8EG 8.82018-01-23
This vulnerability allows remote attackers to execute code by creating arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability,…
- CVE-2017-16604MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing a…
- CVE-2017-16605MEDIUMCVSS 6.5EG 6.52018-01-23
This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing a…
- CVE-2017-16606HIGHCVSS 8.8EG 8.82018-01-23
This vulnerability allows remote attackers to execute code by creating arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability,…
- CVE-2017-16610CRITICALCVSS 9.8EG 9.82018-01-23
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within upload_save_do.js…
- CVE-2017-18073HIGHCVSS 7.5EG 7.52018-04-11
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 820, SD 820A, SD 835, the HLOS can gain access to unauthorized …
- CVE-2017-18129CRITICALCVSS 9.8EG 9.82018-04-11
In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security dom…
- CVE-2018-10361HIGHCVSS 7.8EG 7.82018-04-25
An issue was discovered in KTextEditor 5.34.0 through 5.45.0. Insecure handling of temporary files in the KTextEditor's kauth_ktexteditor_helper service (as utilized in the Kate text editor) can allow other unprivileged users on the local …
- CVE-2018-15591HIGHCVSS 7.8EG 7.82018-10-15
An issue was discovered in Ivanti Workspace Control before 10.3.10.0 and RES One Workspace. A local authenticated user can bypass Application Whitelisting restrictions to execute arbitrary code by leveraging multiple unspecified attack vec…
- CVE-2018-16494HIGHCVSS 8.8EG 8.82021-05-26
In VOS and overly permissive "umask" may allow for authorized users of the server to gain unauthorized access through insecure file permissions that can result in an arbitrary read, write, or execution of newly created files and directorie…
- CVE-2018-18068CRITICALCVSS 9.8EG 9.82019-04-04
The ARM-based hardware debugging feature on Raspberry Pi 3 module B+ and possibly other devices allows non-secure EL1 code to read/write any EL3 (the highest privilege level in ARMv8) memory/register via inter-processor debugging. With a d…
- CVE-2018-1840MEDIUMCVSS 6.0EG 8.12018-12-03
IBM WebSphere Application Server 8.5 and 9.0 could allow a remote attacker to gain elevated privileges on the system, caused when a security domain is configured to use a federated repository other than global federated repository and then…
Map vulnerabilities like CWE-668 to your infrastructure
EchelonGraph correlates every CVE — across CWE-668 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →