Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-3455 | Exposure of Resource to Wrong Sphere vulnerability in Huawei Emui and Harmonyos Key management vulnerability on system. | 9.1 |
| 2023-06-30 | CVE-2023-32613 | Exposure of Resource to Wrong Sphere vulnerability in Wavlink Wl-Wn531Ax2 Firmware Exposure of resource to wrong sphere issue exists in WL-WN531AX2 firmware versions prior to 2023526, which may allow a network-adjacent attacker to use functions originally available after login without logging in. | 8.1 |
| 2023-06-23 | CVE-2023-32394 | Exposure of Resource to Wrong Sphere vulnerability in Apple products The issue was addressed with improved checks. | 2.4 |
| 2023-06-23 | CVE-2023-34467 | Exposure of Resource to Wrong Sphere vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 7.5 |
| 2023-06-23 | CVE-2023-35151 | Exposure of Resource to Wrong Sphere vulnerability in Xwiki XWiki Platform is a generic wiki platform. | 7.5 |
| 2023-06-14 | CVE-2023-2820 | Exposure of Resource to Wrong Sphere vulnerability in Proofpoint Threat Response Auto Pull An information disclosure vulnerability in the faye endpoint in Proofpoint Threat Response / Threat Response Auto-Pull (PTR/TRAP) could be used by an attacker on an adjacent network to obtain credentials to integrated services via a man-in-the-middle position or cryptanalysis of the session traffic. | 6.8 |
| 2023-06-13 | CVE-2023-34250 | Exposure of Resource to Wrong Sphere vulnerability in Discourse Discourse is an open source discussion platform. | 5.3 |
| 2023-06-13 | CVE-2022-43684 | Exposure of Resource to Wrong Sphere vulnerability in Servicenow ServiceNow has released patches and an upgrade that address an Access Control List (ACL) bypass issue in ServiceNow Core functionality. Additional Details This issue is present in the following supported ServiceNow releases: * Quebec prior to Patch 10 Hot Fix 8b * Rome prior to Patch 10 Hot Fix 1 * San Diego prior to Patch 7 * Tokyo prior to Tokyo Patch 1; and * Utah prior to Utah General Availability If this ACL bypass issue were to be successfully exploited, it potentially could allow an authenticated user to obtain sensitive information from tables missing authorization controls. | 6.5 |
| 2023-06-13 | CVE-2023-34114 | Exposure of Resource to Wrong Sphere vulnerability in Zoom Exposure of resource to wrong sphere in Zoom for Windows and Zoom for MacOS clients before 5.14.10 may allow an authenticated user to potentially enable information disclosure via network access. | 6.5 |
| 2023-06-08 | CVE-2023-29403 | Exposure of Resource to Wrong Sphere vulnerability in multiple products On Unix platforms, the Go runtime does not behave differently when a binary is run with the setuid/setgid bits. | 7.8 |