Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-11 | CVE-2022-27822 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/12.0 Information exposure vulnerability in ril property setting prior to SMR April-2022 Release 1 allows access to EF_RUIMID value without permission. | 5.5 |
| 2022-04-07 | CVE-2022-22515 | Exposure of Resource to Wrong Sphere vulnerability in Codesys products A remote, authenticated attacker could utilize the control program of the CODESYS Control runtime system to use the vulnerability in order to read and modify the configuration file(s) of the affected products. | 8.1 |
| 2022-04-07 | CVE-2022-27818 | Exposure of Resource to Wrong Sphere vulnerability in Waycrate Swhkd 1.1.5 SWHKD 1.1.5 unsafely uses the /tmp/swhkd.sock pathname. | 9.1 |
| 2022-04-06 | CVE-2022-26850 | Exposure of Resource to Wrong Sphere vulnerability in Apache Nifi 1.14.0/1.15.0/1.15.3 When creating or updating credentials for single-user access, Apache NiFi wrote a copy of the Login Identity Providers configuration to the operating system temporary directory. | 4.3 |
| 2022-04-01 | CVE-2022-21947 | Exposure of Resource to Wrong Sphere vulnerability in Suse Rancher Desktop A Exposure of Resource to Wrong Sphere vulnerability in Rancher Desktop of SUSE allows attackers in the local network to connect to the Dashboard API (steve) to carry out arbitrary actions. | 8.8 |
| 2022-03-30 | CVE-2022-27772 | Exposure of Resource to Wrong Sphere vulnerability in VMWare Spring Boot spring-boot versions prior to version v2.2.11.RELEASE was vulnerable to temporary directory hijacking. | 7.8 |
| 2022-03-30 | CVE-2021-39777 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 12.0 In Telephony, there is a possible way to determine whether an app is installed, without query permissions, due to a missing permission check. | 5.5 |
| 2022-03-29 | CVE-2021-22572 | Exposure of Resource to Wrong Sphere vulnerability in Google Data Transfer Project On unix-like systems, the system temporary directory is shared between all users on that system. | 5.5 |
| 2022-03-29 | CVE-2022-28160 | Exposure of Resource to Wrong Sphere vulnerability in Jenkins Tests Selector Jenkins Tests Selector Plugin 1.3.3 and earlier allows users with Item/Configure permission to read arbitrary files on the Jenkins controller. | 6.5 |
| 2022-03-24 | CVE-2022-0315 | Exposure of Resource to Wrong Sphere vulnerability in Horovod Insecure Temporary File in GitHub repository horovod/horovod prior to 0.24.0. | 7.5 |