Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-08 | CVE-2021-25515 | Exposure of Resource to Wrong Sphere vulnerability in Google Android 10.0/11.0/9.0 An improper usage of implicit intent in SemRewardManager prior to SMR Dec-2021 Release 1 allows attackers to access BSSID. | 3.3 |
| 2021-12-07 | CVE-2021-29115 | Exposure of Resource to Wrong Sphere vulnerability in Esri Arcgis Enterprise 10.6.1/10.9 An information disclosure vulnerability in the ArcGIS Service Directory in Esri ArcGIS Enterprise versions 10.9.0 and below may allows a remote attacker to view hidden field names in feature layers. | 5.3 |
| 2021-12-06 | CVE-2021-36198 | Exposure of Resource to Wrong Sphere vulnerability in Johnsoncontrols Kantech Entrapass Successful exploitation of this vulnerability could allow an unauthorized user to access sensitive data. | 7.5 |
| 2021-12-02 | CVE-2021-23263 | Exposure of Resource to Wrong Sphere vulnerability in Craftercms Crafter CMS Unauthenticated remote attackers can read textual content via FreeMarker including files /scripts/*, /templates/* and some of the files in /.git/* (non-binary). | 7.5 |
| 2021-12-02 | CVE-2021-23264 | Exposure of Resource to Wrong Sphere vulnerability in Craftercms Crafter CMS Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes. | 9.1 |
| 2021-11-23 | CVE-2021-38004 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Insufficient policy enforcement in Autofill in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to leak cross-origin data via a crafted HTML page. | 4.3 |
| 2021-11-22 | CVE-2021-43560 | Exposure of Resource to Wrong Sphere vulnerability in multiple products A flaw was found in Moodle in versions 3.11 to 3.11.3, 3.10 to 3.10.7, 3.9 to 3.9.10 and earlier unsupported versions. | 5.3 |
| 2021-11-20 | CVE-2021-36319 | Exposure of Resource to Wrong Sphere vulnerability in Dell Networking Os10 Dell Networking OS10 versions 10.4.3.x, 10.5.0.x and 10.5.1.x contain an information exposure vulnerability. | 3.3 |
| 2021-11-19 | CVE-2021-42254 | Exposure of Resource to Wrong Sphere vulnerability in Beyondtrust Privilege Management for Windows BeyondTrust Privilege Management prior to version 21.6 creates a Temporary File in a Directory with Insecure Permissions. | 7.8 |
| 2021-11-16 | CVE-2021-26327 | Exposure of Resource to Wrong Sphere vulnerability in AMD products Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality. | 5.5 |