Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-18 | CVE-2020-16247 | Exposure of Resource to Wrong Sphere vulnerability in Philips Clinical Collaboration Platform 12.2.1 Philips Clinical Collaboration Platform, Versions 12.2.1 and prior. | 7.1 |
| 2020-09-16 | CVE-2020-25040 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Sylabs Singularity through 3.6.2 has Insecure Permissions on temporary directories used in explicit and implicit container build operations, a different vulnerability than CVE-2020-25039. | 8.8 |
| 2020-09-16 | CVE-2020-25039 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Sylabs Singularity 3.2.0 through 3.6.2 has Insecure Permissions on temporary directories used in fakeroot or user namespace container execution. | 8.1 |
| 2020-09-11 | CVE-2020-16212 | Exposure of Resource to Wrong Sphere vulnerability in Philips Patient Information Center IX B.02/C.02/C.03 In Patient Information Center iX (PICiX) Versions B.02, C.02, C.03, the product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource. | 6.8 |
| 2020-09-02 | CVE-2020-5386 | Exposure of Resource to Wrong Sphere vulnerability in Dell EMC Elastic Cloud Storage 3.4.0.0/3.4.0.1 Dell EMC ECS, versions prior to 3.5, contains an Exposure of Resource vulnerability. | 7.5 |
| 2020-09-02 | CVE-2020-25073 | Exposure of Resource to Wrong Sphere vulnerability in Debian Freedombox FreedomBox through 20.13 allows remote attackers to obtain sensitive information from the /server-status page of the Apache HTTP Server, because a connection from the Tor onion service (or from PageKite) is considered a local connection. | 5.3 |
| 2020-09-01 | CVE-2020-13946 | Exposure of Resource to Wrong Sphere vulnerability in multiple products In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack and capture user names and passwords used to access the JMX interface. | 5.9 |
| 2020-08-31 | CVE-2020-13472 | Exposure of Resource to Wrong Sphere vulnerability in Gigadevice Gd32F103 Firmware The flash memory readout protection in Gigadevice GD32F103 devices allows physical attackers to extract firmware via the debug interface by utilizing the DMA module. | 4.6 |
| 2020-08-31 | CVE-2020-13470 | Exposure of Resource to Wrong Sphere vulnerability in Gigadevice Gd32F103 Firmware and Gd32F130 Firmware Gigadevice GD32F103 and GD32F130 devices allow physical attackers to extract data via the probing of easily accessible bonding wires and de-obfuscation of the observed data. | 4.6 |
| 2020-08-31 | CVE-2020-13469 | Exposure of Resource to Wrong Sphere vulnerability in Gigadevice Gd32Vf103 Firmware The flash memory readout protection in Gigadevice GD32VF103 devices allows physical attackers to extract firmware via the debug interface by utilizing the CPU. | 4.6 |