VYPR

CWE-653

Improper Isolation or Compartmentalization

ClassDraft

Description

The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

When a weakness occurs in functionality that is accessible by lower-privileged users, then without strong boundaries, an attack might extend the scope of the damage to higher-privileged users.

Hierarchy (View 1000)

CVEs mapped to this weakness (29)

page 1 of 2
  • CVE-2025-1974CriMar 25, 2025
    risk 0.74cvss 9.8epss 0.99

    A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to disclosure of Secrets accessible to the…

  • CVE-2026-0542CriFeb 25, 2026
    risk 0.60cvss epss 0.01

    ServiceNow has addressed a remote code execution vulnerability that was identified in the ServiceNow AI platform. This vulnerability could enable an unauthenticated user, in certain circumstances, to execute code within the ServiceNow Sandbox.    ServiceNow addressed…

  • CVE-2025-4083CriApr 29, 2025
    risk 0.59cvss 9.1epss 0.00

    A process isolation vulnerability in Thunderbird stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended frame, potentially enabling a sandbox escape. This vulnerability was fixed in…

  • CVE-2025-12805HigMar 26, 2026
    risk 0.53cvss 8.1epss 0.00

    A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vulnerability allows unauthorized access to Llama Stack services deployed in other namespaces via direct network requests, because no NetworkPolicy restricts access to the llama-stack service endpoint.…

  • CVE-2025-20109HigAug 12, 2025
    risk 0.51cvss 7.8epss 0.00

    Improper Isolation or Compartmentalization in the stream cache mechanism for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.

  • CVE-2025-53710HigDec 18, 2025
    risk 0.49cvss 7.5epss 0.00

    Due to a product misconfiguration in certain deployment types, it was possible from different pods in the same namespace to communicate with each other. This issue resulted in bypass of access control due to the presence of a vulnerable endpoint in Foundry Container Service that…

  • CVE-2026-42782HigMay 25, 2026
    risk 0.47cvss 7.2epss 0.01

    Improper Isolation or Compartmentalization vulnerability in Apache Syncope. An administrator with adequate entitlements for Implementations can create a malicious Groovy class containing untrusted code reaching a non-sandboxed execution path via the class static initializer. …

  • CVE-2026-5599HigApr 5, 2026
    risk 0.47cvss epss 0.00

    A user with API access and "manage users" permission in any venueless world is able to trigger deletion of user accounts in other worlds.

  • CVE-2025-41688HigJul 31, 2025
    risk 0.47cvss 7.2epss 0.01

    A high privileged remote attacker can execute arbitrary OS commands using an undocumented method allowing to escape the implemented LUA sandbox.

  • CVE-2026-4282HigApr 2, 2026
    risk 0.41cvss 7.4epss 0.00

    A flaw was found in Keycloak. The SingleUseObjectProvider, a global key-value store, lacks proper type and namespace isolation. This vulnerability allows an unauthenticated attacker to forge authorization codes. Successful exploitation can lead to the creation of admin-capable…

  • CVE-2026-25905MedFeb 9, 2026
    risk 0.38cvss 5.8epss 0.00

    The Python code being run by 'runPython' or 'runPythonAsync' is not isolated from the rest of the JS code, allowing any Python code to use the Pyodide APIs to modify the JS environment. This may result in an attacker hijacking the MCP server - for malicious purposes including…

  • CVE-2025-12695MedNov 4, 2025
    risk 0.38cvss 5.9epss 0.00

    The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class.

  • CVE-2026-34775MedApr 4, 2026
    risk 0.37cvss 6.8epss 0.00

    Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Prior to versions 38.8.6, 39.8.4, 40.8.4, and 41.0.0, the nodeIntegrationInWorker webPreference was not correctly scoped in all configurations. In certain process-sharing…

  • CVE-2026-41155MedJun 12, 2026
    risk 0.36cvss 5.5epss 0.00

    An attacker could cooperatively pass data from one secure GPU process to another secure GPU process through shared secure memory allocations in the kernel module. Additionally, an attacker could disrupt the operation of another secure GPU process leading to image corruption /…

  • CVE-2026-41174MedApr 30, 2026
    risk 0.35cvss 6.4epss 0.00

    Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.43, 3.6.14, and 3.7.0-rc.2, there is a potential vulnerability in Traefik's Kubernetes CRD provider cross-namespace isolation enforcement. When providers.kubernetesCRD.allowCrossNamespace=false, Traefik…

  • CVE-2025-29781MedMar 17, 2025
    risk 0.35cvss 6.5epss 0.00

    The Bare Metal Operator (BMO) implements a Kubernetes API for managing bare metal hosts in Metal3. Baremetal Operator enables users to load Secret from arbitrary namespaces upon deployment of the namespace scoped Custom Resource `BMCEventSubscription`. Prior to versions 0.8.1…

  • CVE-2025-26393MedMar 17, 2025
    risk 0.35cvss 5.4epss 0.00

    SolarWinds Service Desk is affected by a broken access control vulnerability. The issue allows authenticated users to escalate privileges, leading to unauthorized data manipulation.

  • CVE-2024-5801MedAug 12, 2024
    risk 0.34cvss epss 0.00

    Enabled IP Forwarding feature in B&R Automation Runtime versions before 6.0.2 may allow remote attack-ers to compromise network security by routing IP-based packets through the host, potentially by-passing firewall, router, or NAC filtering.

  • CVE-2024-8118MedSep 26, 2024
    risk 0.33cvss epss 0.01

    In Grafana, the wrong permission is applied to the alert rule write API endpoint, allowing users with permission to write external alert instances to also write alert rules.

  • CVE-2026-40968MedApr 28, 2026
    risk 0.27cvss 4.2epss 0.00

    When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent unauthenticated request on the same thread. This may allow the subsequent user to gain escalated permissions. …