Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-08-06 | CVE-2018-7072 | Exposure of Resource to Wrong Sphere vulnerability in HP Moonshot Provisioning Manager 1.20 A remote bypass of security restrictions vulnerability was identified in HPE Moonshot Provisioning Manager prior to v1.24. | 9.8 |
| 2018-04-25 | CVE-2018-10361 | Exposure of Resource to Wrong Sphere vulnerability in KDE Ktexteditor An issue was discovered in KTextEditor 5.34.0 through 5.45.0. | 7.8 |
| 2018-04-13 | CVE-2017-0367 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Mediawiki before 1.28.1 / 1.27.2 contains an unsafe use of temporary directory, where having LocalisationCache directory default to system tmp directory is insecure. | 8.8 |
| 2018-04-11 | CVE-2017-18129 | Exposure of Resource to Wrong Sphere vulnerability in Qualcomm products In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile and Snapdragon Mobile MDM9206, MDM9607, SD 845, MSM8996, MSM8998, it is possible for IPA (internet protocol accelerator) channels owned by one security domain to be controlled from other domains. | 9.8 |
| 2018-04-11 | CVE-2017-18073 | Exposure of Resource to Wrong Sphere vulnerability in Qualcomm products In Android before security patch level 2018-04-05 on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 820, SD 820A, SD 835, the HLOS can gain access to unauthorized memory. | 7.5 |
| 2018-02-26 | CVE-2018-7479 | Exposure of Resource to Wrong Sphere vulnerability in Yzmcms 3.6 YzmCMS 3.6 allows remote attackers to discover the full path via a direct request to application/install/templates/s1.php. | 5.3 |
| 2018-02-13 | CVE-2018-6910 | Exposure of Resource to Wrong Sphere vulnerability in Dedecms 5.7 DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc/inc_archives_functions.php. | 7.5 |
| 2018-02-12 | CVE-2018-6880 | Exposure of Resource to Wrong Sphere vulnerability in Phome Empirecms 6.6/7.0/7.2 EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php. | 5.3 |
| 2018-02-07 | CVE-2017-15393 | Exposure of Resource to Wrong Sphere vulnerability in multiple products Insufficient Policy Enforcement in Devtools remote debugging in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to obtain access to remote debugging functionality via a crafted HTML page, aka a Referer leak. | 8.8 |
| 2018-01-23 | CVE-2017-16610 | Exposure of Resource to Wrong Sphere vulnerability in Netgain-Systems Enterprise Manager 7.2.699/7.2.730 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. | 9.8 |