Vulnerabilities > Exposure of Resource to Wrong Sphere

DATE	CVE	VULNERABILITY TITLE	RISK
2020-05-27	CVE-2020-6774	Exposure of Resource to Wrong Sphere vulnerability in Bosch Recording Station Firmware Improper Access Control in the Kiosk Mode functionality of Bosch Recording Station allows a local unauthenticated attacker to escape from the Kiosk Mode and access the underlying operating system. local low complexity bosch CWE-668	8.8
2020-05-21	CVE-2020-6490	Exposure of Resource to Wrong Sphere vulnerability in multiple products Insufficient data validation in loader in Google Chrome prior to 83.0.4103.61 allowed a remote attacker who had been able to write to disk to leak cross-origin data via a crafted HTML page. network low complexity google debian opensuse fedoraproject CWE-668	4.3
2020-05-15	CVE-2020-11931	Exposure of Resource to Wrong Sphere vulnerability in multiple products An Ubuntu-specific modification to Pulseaudio to provide security mediation for Snap-packaged applications was found to have a bypass of intended access restriction for snaps which plugs any of pulseaudio, audio-playback or audio-record via unloading the pulseaudio snap policy module. local low complexity pulseaudio canonical CWE-668	3.3
2020-05-14	CVE-2020-1945	Exposure of Resource to Wrong Sphere vulnerability in multiple products Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. local high complexity apache canonical fedoraproject opensuse oracle CWE-668	6.3
2020-05-07	CVE-2020-12687	Exposure of Resource to Wrong Sphere vulnerability in Serpico Project Serpico 1.3.0 An issue was discovered in Serpico before 1.3.3. network low complexity serpico-project CWE-668	6.5
2020-05-06	CVE-2020-3315	Exposure of Resource to Wrong Sphere vulnerability in Cisco Firepower Threat Defense Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. network low complexity cisco CWE-668	5.3
2020-05-05	CVE-2020-12142	Exposure of Resource to Wrong Sphere vulnerability in Silver-Peak products 1. network low complexity silver-peak CWE-668	4.9
2020-04-30	CVE-2020-5887	Exposure of Resource to Wrong Sphere vulnerability in F5 products On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition (VE) may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings. network low complexity f5 CWE-668 critical	9.1
2020-04-13	CVE-2020-6442	Exposure of Resource to Wrong Sphere vulnerability in multiple products Inappropriate implementation in cache in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to leak cross-origin data via a crafted HTML page. network low complexity google debian fedoraproject opensuse CWE-668	4.3
2020-04-07	CVE-2020-11610	Exposure of Resource to Wrong Sphere vulnerability in Cross Domain Local Storage Project Cross Domain Local Storage An issue was discovered in xdLocalStorage through 2.0.5. network low complexity cross-domain-local-storage-project CWE-668	8.8