Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-04 | CVE-2020-27872 | Exposure of Resource to Wrong Sphere vulnerability in Netgear products This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R7450 1.2.0.62_1.0.1 routers. | 8.8 |
| 2021-01-08 | CVE-2020-26186 | Exposure of Resource to Wrong Sphere vulnerability in Dell Inspiron 5675 Firmware Dell Inspiron 5675 BIOS versions prior to 1.4.1 contain a UEFI BIOS RuntimeServices overwrite vulnerability. | 6.8 |
| 2020-12-29 | CVE-2020-16268 | Exposure of Resource to Wrong Sphere vulnerability in 1E Client 4.1.0.267/5.0.0.745 The MSI installer in 1E Client 4.1.0.267 and 5.0.0.745 allows remote authenticated users and local users to gain elevated privileges via the repair option. | 8.8 |
| 2020-12-09 | CVE-2020-26261 | Exposure of Resource to Wrong Sphere vulnerability in Jupyterhub Systemdspawner jupyterhub-systemdspawner enables JupyterHub to spawn single-user notebook servers using systemd. | 7.9 |
| 2020-11-24 | CVE-2015-9550 | Exposure of Resource to Wrong Sphere vulnerability in Totolink products An issue was discovered on TOTOLINK A850R-V1 through 1.0.1-B20150707.1612 and F1-V2 through 1.1-B20150708.1646 devices. | 7.5 |
| 2020-11-12 | CVE-2020-8698 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | 5.5 |
| 2020-11-06 | CVE-2020-26086 | Exposure of Resource to Wrong Sphere vulnerability in Cisco Telepresence Collaboration Endpoint A vulnerability in the video endpoint API (xAPI) of Cisco TelePresence Collaboration Endpoint (CE) Software could allow an authenticated, remote attacker to gain access to sensitive information on an affected device. | 4.3 |
| 2020-11-06 | CVE-2020-26084 | Exposure of Resource to Wrong Sphere vulnerability in Cisco Edge FOG Fabric A vulnerability in the REST API of Cisco Edge Fog Fabric could allow an authenticated, remote attacker to access files outside of their authorization sphere on an affected device. | 6.5 |
| 2020-10-28 | CVE-2020-16263 | Exposure of Resource to Wrong Sphere vulnerability in Winstonprivacy Winston Firmware 1.5.4 Winston 1.5.4 devices have a CORS configuration that trusts arbitrary origins. | 9.1 |
| 2020-10-22 | CVE-2020-26650 | Exposure of Resource to Wrong Sphere vulnerability in Atomx Atomxcms 2.0 AtomXCMS 2.0 is affected by Arbitrary File Read via admin/dump.php | 5.3 |