VYPR

CWE-668

Exposure of Resource to Wrong Sphere

ClassDraft

Description

The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

Hierarchy (View 1000)

CVEs mapped to this weakness (268)

page 11 of 14
  • CVE-2022-0334Jan 25, 2022
    risk 0.00cvss epss 0.01

    A flaw was found in Moodle in versions 3.11 to 3.11.4, 3.10 to 3.10.8, 3.9 to 3.9.11 and earlier unsupported versions. Insufficient capability checks could lead to users accessing their grade report for courses where they did not have the required gradereport/user:view…

  • CVE-2022-23118Jan 12, 2022
    risk 0.00cvss epss 0.02

    Jenkins Debian Package Builder Plugin 1.6.11 and earlier implements functionality that allows agents to invoke command-line `git` at an attacker-specified path on the controller, allowing attackers able to control agent processes to invoke arbitrary OS commands on the controller.

  • CVE-2022-20620Jan 12, 2022
    risk 0.00cvss epss 0.01

    Missing permission checks in Jenkins SSH Agent Plugin 1.23 and earlier allows attackers with Overall/Read access to enumerate credentials IDs of credentials stored in Jenkins.

  • CVE-2021-4194Jan 6, 2022
    risk 0.00cvss epss 0.01

    bookstack is vulnerable to Improper Access Control

  • CVE-2021-36774Jan 6, 2022
    risk 0.00cvss epss 0.02

    Apache Kylin allows users to read data from other database systems using JDBC. The MySQL JDBC driver supports certain properties, which, if left unmitigated, can allow an attacker to execute arbitrary code from a hacker-controlled malicious MySQL server within Kylin server…

  • CVE-2021-45708Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the abomonation crate through 2021-10-17 for Rust. Because transmute operations are insufficiently constrained, there can be an information leak or ASLR bypass.

  • CVE-2020-35215Dec 16, 2021
    risk 0.00cvss epss 0.01

    An issue in Atomix v3.1.5 allows attackers to access sensitive information when a malicious Atomix node queries distributed variable primitives which contain the entire primitive lists that ONOS nodes use to share important states.

  • CVE-2021-23264Dec 2, 2021
    risk 0.00cvss epss 0.01

    Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes.

  • CVE-2021-43560Nov 22, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. Insufficient capability checks made it possible to fetch other users' calendar action events.

  • CVE-2021-41532Nov 19, 2021
    risk 0.00cvss epss 0.02

    In Apache Ozone before 1.2.0, Recon HTTP endpoints provide access to OM, SCM and Datanode metadata. Due to a bug, any unauthenticated user can access the data from these endpoints.

  • CVE-2021-39231Nov 19, 2021
    risk 0.00cvss epss 0.02

    In Apache Ozone versions prior to 1.2.0, Various internal server-to-server RPC endpoints are available for connections, making it possible for an attacker to download raw data from Datanode and Ozone manager and modify Ratis replication configuration.

  • CVE-2021-22047Oct 28, 2021
    risk 0.00cvss epss 0.01

    In Spring Data REST versions 3.4.0 - 3.4.13, 3.5.0 - 3.5.5, and older unsupported versions, HTTP resources implemented by custom controllers using a configured base API path and a controller type-level request mapping are additionally exposed under URIs that can potentially be…

  • CVE-2021-22044Oct 28, 2021
    risk 0.00cvss epss 0.01

    In Spring Cloud OpenFeign 3.0.0 to 3.0.4, 2.2.0.RELEASE to 2.2.9.RELEASE, and older unsupported versions, applications using type-level `@RequestMapping`annotations over Feign client interfaces, can be involuntarily exposing endpoints corresponding to `@RequestMapping`-annotated…

  • CVE-2021-42343Oct 26, 2021
    risk 0.00cvss epss 0.03

    An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Single machine Dask clusters started with dask.distributed.LocalCluster or dask.distributed.Client (which defaults to using LocalCluster) would mistakenly configure their respective Dask workers…

  • CVE-2021-39184Oct 12, 2021
    risk 0.00cvss epss 0.01

    Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. A vulnerability in versions prior to 11.5.0, 12.1.0, and 13.3.0 allows a sandboxed renderer to request a "thumbnail" image of an arbitrary file on the user's system. The…

  • CVE-2021-41088Sep 23, 2021
    risk 0.00cvss epss 0.01

    Elvish is a programming language and interactive shell, combined into one package. In versions prior to 0.14.0 Elvish's web UI backend (started by `elvish -web`) hosts an endpoint that allows executing the code sent from the web UI. The backend does not check the origin of…

  • CVE-2021-21996Sep 8, 2021
    risk 0.00cvss epss 0.03

    An issue was discovered in SaltStack Salt before 3003.3. A user who has control of the source, and source_hash URLs can gain full file system access as root on a salt minion.

  • CVE-2021-34435Sep 1, 2021
    risk 0.00cvss epss 0.01

    In Eclipse Theia 0.3.9 to 1.8.1, the "mini-browser" extension allows a user to preview HTML files in an iframe inside the IDE. But with the way it is made it is possible for a previewed HTML file to trigger an RCE. This exploit only happens if a user previews a malicious file..

  • CVE-2021-36793Aug 13, 2021
    risk 0.00cvss epss 0.01

    The routes (aka Extbase Yaml Routes) extension before 2.1.1 for TYPO3, when CsrfTokenViewHelper is used, allows Sensitive Information Disclosure because a session identifier is unsafely present in HTML output.

  • CVE-2021-37704Aug 12, 2021
    risk 0.00cvss epss 0.06

    PhpFastCache is a high-performance backend cache system (packagist package phpfastcache/phpfastcache). In versions before 6.1.5, 7.1.2, and 8.0.7 the `phpinfo()` can be exposed if the `/vendor` is not protected from public access. This is a rare situation today since the vendor…