Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-668 (将资源暴露给错误范围) — Vulnerability Class 126

126 vulnerabilities classified as CWE-668 (将资源暴露给错误范围). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-0815 McAfee WebAdvisor - Extension Fingerprinting vulnerability — McAfee WebAdvisor 6.5 Medium2022-03-10
CVE-2022-26355 Citrix Federated Authentication Service (FAS) — Federated Authentication Service (FAS) 4.4 -2022-03-09
CVE-2021-21878 Lantronix PremierWave 2050 输入验证错误漏洞 — Lantronix 4.9 -2021-12-22
CVE-2021-44524 Siemens SiPass Integrated和Siveillance Identity 授权问题漏洞 — SiPass integrated V2.76 9.1 -2021-12-14
CVE-2021-44523 Siemens SiPass Integrated和Siveillance Identity 安全漏洞 — SiPass integrated V2.76 9.1 -2021-12-14
CVE-2021-44522 Siemens SiPass Integrated和Siveillance Identity 安全漏洞 — SiPass integrated V2.76 7.5 -2021-12-14
CVE-2021-41140 Reactions leak for secure category topics and private messages — discourse-reactions 5.3 Medium2021-10-19
CVE-2021-39184 Sandboxed renderers can obtain thumbnails of arbitrary files through the nativeImage API — electron 6.8 Medium2021-10-12
CVE-2021-40496 Sap Internet Communication Framework 访问控制错误漏洞 — SAP NetWeaver AS ABAP and ABAP Platform 5.3 -2021-10-12
CVE-2021-41094 Mandatory encryption at rest can be bypassed (UI) in Wire app — wire-ios 4.2 Medium2021-10-04
CVE-2021-22869 Improper access control in GitHub Enterprise Server allows self-hosted runners to execute outside their control group — GitHub Enterprise Server 9.8 -2021-09-24
CVE-2021-41088 Remote code execution via the web UI backend of Elvish — elvish 8.0 High2021-09-23
CVE-2021-34723 Cisco IOS XE SD-WAN Software Arbitrary File Overwrite Vulnerability — Cisco IOS XE Software 6.7 Medium2021-09-23
CVE-2021-39212 Issue when Configuring the ImageMagick Security Policy — ImageMagick 4.4 Medium2021-09-13
CVE-2021-32788 Post creator of a whisper post can be revealed to non-staff users in Discourse — discourse 4.3 Medium2021-07-27
CVE-2021-32760 Archive package allows chmod of file outside of unpack target directory — containerd 5.0 Medium2021-07-19
CVE-2021-21382 Unsafe loopback forwarding interface in Restund — restund 8.6 High2021-06-11
CVE-2021-20999 WEIDMUELLER: Accidentally open network port in u-controls and IoT-Gateways — UC20-WL2000-AC (No. 1334950000) 9.4 Critical2021-05-13
CVE-2021-1438 Cisco Wide Area Application Services Software Information Disclosure Vulnerability — Cisco Wide Area Application Services (WAAS) 5.5 Medium2021-05-06
CVE-2021-1423 Cisco Aironet Access Points Arbitrary File Overwrite Vulnerability — Cisco Aironet Access Point Software 4.4 Medium2021-03-24
CVE-2021-21334 environment variable leak — containerd 6.3 Medium2021-03-10
CVE-2020-26272 Electron vulnerable to ID collision when routing IPC messages to renderers containing OOPIFs — electron 5.4 Medium2021-01-28
CVE-2020-26261 user-readable api tokens in systemd units — systemdspawner 7.9 High2020-12-09
CVE-2020-26086 Cisco TelePresence Collaboration Endpoint Software Information Disclosure Vulnerability — Cisco TelePresence Endpoint Software (TC/CE) 4.3 Medium2020-11-06
CVE-2020-26084 Cisco Edge Fog Fabric Resource Exposure Vulnerability — Cisco Edge Fog Fabric 6.5 Medium2020-11-06
CVE-2020-15264 Privilege Escalation in Boxstarter — boxstarter 8.0 High2020-10-20
CVE-2020-16212 Philips Patient Monitoring Devices Exposure of Resource to Wrong Sphere — Patient Information Center iX (PICiX) 8.8 -2020-09-11
CVE-2020-5386 Dell EMC ECS 安全漏洞 — Elastic Cloud Storage 7.5 -2020-09-02
CVE-2020-12020 Baxter ExactaMix EM2400和ExactaMix EM1200 安全漏洞 — Baxter ExactaMix EM 2400 & EM 1200 3.3 -2020-06-29
CVE-2020-10271 RVD#2555: MiR ROS computational graph is exposed to all network interfaces, including poorly secured wireless networks and open wired ones — MiR100 9.8 -2020-06-24

Vulnerabilities classified as CWE-668 (将资源暴露给错误范围) represent 126 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.