Vulnerabilities > Exposure of Resource to Wrong Sphere

DATE CVE VULNERABILITY TITLE RISK
2022-07-12 CVE-2022-33694 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in CSC application prior to SMR Jul-2022 Release 1 allows local attacker to access wifi information via unprotected intent broadcasting.
local
low complexity
google CWE-668
2.1
2022-07-12 CVE-2022-33696 Exposure of Resource to Wrong Sphere vulnerability in Google Android 12.0
Exposure of Sensitive Information in Telephony service prior to SMR Jul-2022 Release 1 allows local attacker to access imsi and iccid via log.
local
low complexity
google CWE-668
2.1
2022-07-12 CVE-2022-33698 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in Telecom application prior to SMR Jul-2022 Release 1 allows local attackers to access ICCID via log.
local
low complexity
google CWE-668
2.1
2022-07-12 CVE-2022-33699 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in getDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
local
low complexity
google CWE-668
2.1
2022-07-12 CVE-2022-33700 Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0
Exposure of Sensitive Information in putDsaSimImsi in TelephonyUI prior to SMR Jul-2022 Release 1 allows local attacker to access imsi via log.
local
low complexity
google CWE-668
2.1
2022-07-12 CVE-2022-34464 Exposure of Resource to Wrong Sphere vulnerability in Siemens products
A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM GridEdge Essential Intel (All versions < V2.7.3), SICAM GridEdge Essential with GDS ARM (All versions), SICAM GridEdge Essential with GDS Intel (All versions < V2.7.3).
local
low complexity
siemens CWE-668
2.1
2022-07-06 CVE-2022-24139 Exposure of Resource to Wrong Sphere vulnerability in Iobit Advanced System Care 15
In IOBit Advanced System Care (AscService.exe) 15, an attacker with SEImpersonatePrivilege can create a named pipe with the same name as one of ASCService's named pipes.
local
low complexity
iobit CWE-668
7.2
2022-07-06 CVE-2021-46687 Exposure of Resource to Wrong Sphere vulnerability in Jfrog Artifactory
JFrog Artifactory prior to version 7.31.10 and 6.23.38 is vulnerable to Sensitive Data Exposure through the Project Administrator REST API.
network
low complexity
jfrog CWE-668
6.8
2022-06-30 CVE-2013-4561 Exposure of Resource to Wrong Sphere vulnerability in Redhat Openshift
In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file.
network
low complexity
redhat CWE-668
6.4
2022-06-24 CVE-2021-20551 Exposure of Resource to Wrong Sphere vulnerability in IBM Jazz Team Server
IBM Jazz Team Server 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
ibm CWE-668
2.1