Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-06 | CVE-2020-26602 | Exposure of Resource to Wrong Sphere vulnerability in Google Android An issue was discovered in EthernetNetwork on Samsung mobile devices with O(8.1), P(9.0), Q(10.0), and R(11.0) software. | 7.5 |
| 2020-10-06 | CVE-2020-13343 | Exposure of Resource to Wrong Sphere vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting from 11.2. | 8.8 |
| 2020-10-02 | CVE-2020-5422 | Exposure of Resource to Wrong Sphere vulnerability in Cloud Foundry Bosh System Metrics Server BOSH System Metrics Server releases prior to 0.1.0 exposed the UAA password as a flag to a process running on the BOSH director. | 6.5 |
| 2020-09-18 | CVE-2020-16247 | Exposure of Resource to Wrong Sphere vulnerability in Philips Clinical Collaboration Platform 12.2.1 Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. | 7.1 |
| 2020-09-16 | CVE-2020-25040 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039. | 8.8 |
| 2020-09-16 | CVE-2020-25039 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution. | 8.1 |
| 2020-09-11 | CVE-2020-16212 | Exposure of Resource to Wrong Sphere vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource. | 6.8 |
| 2020-09-02 | CVE-2020-5386 | Exposure of Resource to Wrong Sphere vulnerability in Dell EMC Elastic Cloud Storage 3.4.0.0/3.4.0.1 Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. | 7.5 |
| 2020-09-02 | CVE-2020-25073 | Exposure of Resource to Wrong Sphere vulnerability in Debian Freedombox FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service (or from PageKite) is considered a local connection. | 5.3 |
| 2020-09-01 | CVE-2020-13946 | Exposure of Resource to Wrong Sphere vulnerability in multiple products In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack and capture user names and passwords used to access the JMX interface. | 5.9 |