Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-09 | CVE-2022-24747 | Exposure of Resource to Wrong Sphere vulnerability in Shopware Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. | 5.3 |
| 2022-02-26 | CVE-2022-24986 | Exposure of Resource to Wrong Sphere vulnerability in KDE Kcron KDE KCron through 21.12.2 uses a temporary file in /tmp when saving, but reuses the filename during an editing session. | 7.8 |
| 2022-02-25 | CVE-2022-23835 | Exposure of Resource to Wrong Sphere vulnerability in Visual Voice Mail Project Visual Voice Mail The Visual Voice Mail (VVM) application through 2022-02-24 for Android allows persistent access if an attacker temporarily controls an application that has the READ_SMS permission, and reads an IMAP credentialing message that is (by design) not displayed to the victim within the AOSP SMS/MMS messaging application. | 8.1 |
| 2022-02-24 | CVE-2022-25643 | Exposure of Resource to Wrong Sphere vulnerability in Seatd Project Seatd seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. | 9.8 |
| 2022-02-16 | CVE-2022-25236 | Exposure of Resource to Wrong Sphere vulnerability in multiple products xmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert namespace-separator characters into namespace URIs. | 9.8 |
| 2022-02-15 | CVE-2021-42713 | Exposure of Resource to Wrong Sphere vulnerability in Splashtop 3.4.6.1 Splashtop Remote Client (Personal Edition) through 3.4.6.1 creates a Temporary File in a Directory with Insecure Permissions. | 7.8 |
| 2022-02-15 | CVE-2021-42714 | Exposure of Resource to Wrong Sphere vulnerability in Splashtop 3.4.8.3 Splashtop Remote Client (Business Edition) through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions. | 7.8 |
| 2022-02-15 | CVE-2021-42712 | Exposure of Resource to Wrong Sphere vulnerability in Splashtop Streamer 3.3.8.0 Splashtop Streamer through 3.4.8.3 creates a Temporary File in a Directory with Insecure Permissions. | 7.8 |
| 2022-02-14 | CVE-2021-45420 | Exposure of Resource to Wrong Sphere vulnerability in Emerson Dixell Xweb-500 Firmware Emerson Dixell XWEB-500 products are affected by arbitrary file write vulnerability in /cgi-bin/logo_extra_upload.cgi, /cgi-bin/cal_save.cgi, and /cgi-bin/lo_utils.cgi. | 9.8 |
| 2022-02-11 | CVE-2022-24975 | Exposure of Resource to Wrong Sphere vulnerability in Git-Scm GIT The --mirror documentation for Git through 2.35.1 does not mention the availability of deleted content, aka the "GitBleed" issue. | 7.5 |