Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/16 8:56 a.m.8 views

CVE-2025-2875

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists that could cause a loss of confidentiality when an unauthenticated attacker manipulates controller’s webserver URL to access resources...

8.7CVSS6.9AI score0.00522EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/05/14 8:46 a.m.14 views

CVE-2025-2875

CWE-610: Externally Controlled Reference to a Resource in Another Sphere vulnerability exists that could cause a loss of confidentiality when an unauthenticated attacker manipulates controller’s webserver URL to access resources...

8.7CVSS0.00522EPSS
Exploits0References1
ICS
ICSadded 2024/09/12 6:0 a.m.12 views

Rockwell Automation ThinManager

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.5 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Rockwell Automation Equipment: ThinManager Vulnerability: Externally Controlled Reference to a Resource in Another Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability could...

8.8CVSS9.1AI score0.0334EPSS
Exploits0References10
ICS
ICSadded 2024/08/22 6:0 a.m.7 views

Rockwell Automation Emulate3D

View CSAF 1. EXECUTIVE SUMMARY CVSS v4 5.4 ATTENTION : Exploitable locally Vendor : Rockwell Automation Equipment : Emulate3D Vulnerability : Externally Controlled Reference to a Resource in Another Sphere 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker to...

5.4CVSS7.8AI score0.0126EPSS
Exploits0References10
Rapid7 Blog
Rapid7 Blogadded 2022/06/28 2:50 p.m.102 views

CVE-2021-3779: Ruby-MySQL Gem Client File Read (FIXED)

The ruby-mysql Ruby gem prior to version 2.10.0 maintained by Tomita Masahiro is vulnerable to an instance of CWE-610: Externally Controlled Reference to a Resource in Another Sphere, wherein a malicious MySQL server can request local file content from a client without explicit authorization from...

7.8CVSS7AI score0.31158EPSS
Exploits4
NVD
NVDadded 2019/05/22 8:29 p.m.8 views

CVE-2018-7824

An Externally Controlled Reference to a Resource CWE-610 vulnerability exists in Schneider Electric Modbus Serial Driver For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior which could allow write acce...

6.8CVSS5.2AI score0.00191EPSS
Exploits0References1
Cvelist
Cvelistadded 2019/05/22 7:27 p.m.9 views

CVE-2018-7824

An Externally Controlled Reference to a Resource CWE-610 vulnerability exists in Schneider Electric Modbus Serial Driver For 64-bit Windows OS:V3.17 IE 37 and prior , For 32-bit Windows OS:V2.17 IE 27 and prior, and as part of the Driver Suite version:V14.12 and prior which could allow write acce...

5.2AI score0.00191EPSS
Exploits0References1
CVE
CVEadded 2019/05/22 7:27 p.m.48 views

CVE-2018-7824

The CVE-2018-7824 entry concerns Schneider Electric Modbus Serial Driver. Affected components are the Modbus Serial Driver for 64‑bit Windows (V3.17 IE37 and prior) and 32‑bit Windows (V2.17 IE27 and prior), including the Driver Suite (V14.12 and prior). The vulnerability is an External Control o...

6.8CVSS5.2AI score0.00191EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder