Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-20 | CVE-2023-3299 | Exposure of Resource to Wrong Sphere vulnerability in Hashicorp Nomad HashiCorp Nomad Enterprise 1.2.11 up to 1.5.6, and 1.4.10 ACL policies using a block without a label generates unexpected results. | 2.7 |
| 2023-07-14 | CVE-2023-32759 | Exposure of Resource to Wrong Sphere vulnerability in Archerirm Archer An issue in Archer Platform before v.6.13 and fixed in 6.12.0.6 and 6.13.0 allows an authenticated attacker to obtain sensitive information via a crafted URL. | 6.5 |
| 2023-07-14 | CVE-2023-32760 | Exposure of Resource to Wrong Sphere vulnerability in Archerirm Archer An issue in Archer Platform before v.6.13 fixed in v.6.12.0.6 and v.6.13.0 allows an authenticated attacker to obtain sensitive information via API calls related to data feeds and data publication. | 6.5 |
| 2023-07-13 | CVE-2023-37599 | Exposure of Resource to Wrong Sphere vulnerability in Issabel PBX 4.0.06 An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory | 7.5 |
| 2023-07-11 | CVE-2023-34119 | Exposure of Resource to Wrong Sphere vulnerability in Zoom Rooms Insecure temporary file in the installer for Zoom Rooms for Windows before version 5.15.0 may allow an authenticated user to enable an escalation of privilege via local access. | 7.8 |
| 2023-07-11 | CVE-2023-31818 | Exposure of Resource to Wrong Sphere vulnerability in Marukyu Line 13.4.1 An issue found in Marukyu Line v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp function. | 7.5 |
| 2023-07-10 | CVE-2023-30960 | Exposure of Resource to Wrong Sphere vulnerability in Palantir Foundry Job-Tracker A security defect was discovered in Foundry job-tracker that enabled users to query metadata related to builds on resources they did not have access to. | 4.3 |
| 2023-07-10 | CVE-2023-35696 | Exposure of Resource to Wrong Sphere vulnerability in Sick Icr890-4 Firmware Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests. | 7.5 |
| 2023-07-10 | CVE-2023-3270 | Exposure of Resource to Wrong Sphere vulnerability in Sick Icr890-4 Firmware Exposure of Sensitive Information to an Unauthorized Actor in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the system. | 7.5 |
| 2023-07-06 | CVE-2023-3456 | Exposure of Resource to Wrong Sphere vulnerability in Huawei Emui and Harmonyos Vulnerability of kernel raw address leakage in the hang detector module. | 5.3 |