Description
The product makes resources available to untrusted parties when those resources are only intended to be accessed by the product.
CVE vulnerabilities with CWE-402 (23)
8.7
CVSS
HIGH
CVE-2025-29925
pub. 2025-03-19
8.6
CVSS
HIGH
CVE-2021-31407
pub. 2021-04-23
8.6
CVSS
HIGH
CVE-2021-31410
pub. 2021-04-23
8.2
CVSS
HIGH
CVE-2025-48383
pub. 2025-05-27
8.1
CVSS
HIGH
CVE-2021-23264
pub. 2021-12-02
7.5
CVSS
HIGH
CVE-2024-29900
pub. 2024-03-29
7.5
CVSS
HIGH
CVE-2022-3596
pub. 2023-09-20
7.5
CVSS
HIGH
CVE-2023-34467
pub. 2023-06-23
7.1
CVSS
HIGH
CVE-2025-67745
pub. 2025-12-18
7.1
CVSS
HIGH
CVE-2024-47146
pub. 2024-12-06
6.9
CVSS
MEDIUM
CVE-2025-0502
pub. 2025-01-15
6.9
CVSS
MEDIUM
CVE-2022-30231
pub. 2022-06-14
6.5
CVSS
MEDIUM
CVE-2017-8442
pub. 2017-07-07
5.9
CVSS
MEDIUM
CVE-2021-23263
pub. 2021-12-02
5.8
CVSS
MEDIUM
CVE-2025-49618
pub. 2025-07-03
5.5
CVSS
MEDIUM
CVE-2024-0443
pub. 2024-01-12
5.5
CVSS
MEDIUM
CVE-2023-4569
pub. 2023-08-28
5.3
CVSS
MEDIUM
CVE-2024-32388
pub. 2025-12-01
5.0
CVSS
MEDIUM
CVE-2025-52925
pub. 2025-07-02
4.7
CVSS
MEDIUM
CVE-2025-55014
pub. 2025-08-04
Showing 20 of 23 vulnerabilities