Episerver الثغرات

التسلسل الزمني

النوع

Content Management System14

منتج

EPiServer Ektron CMS12
EPiServer CMS2

معالجة

Official Fix12
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

قابلية الاستغلال

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined12

متجه الوصول

Not Defined0
Physical0
Local0
Adjacent0
Network14

توثيق

Not Defined0
High0
Low4
None10

تفاعل المستخدم

Not Defined0
Required10
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤44
≤54
≤62
≤70
≤82
≤92
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤44
≤56
≤60
≤72
≤80
≤92
≤100

VulDB

≤10
≤20
≤30
≤44
≤56
≤60
≤70
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤72
≤80
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

المجهز

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

إكسبلويت ذات هجوم فوري

<1k8
<2k2
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

إكسبلويت اليوم

<1k14
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

حجم سوق الإكسبلويت

🔴 CTI النشاطات

Affected Products (3): CMS (2), Ektron CMS (10), Find (1)

منشورBaseTempالثغرةProdق�معالجةEPSSCTICVE
01/04/20215.54.9EPiServer Find _click Redirectغير معروفProof-of-ConceptOfficial Fix0.001440.00CVE-2020-24550
10/10/20188.57.7EPiServer Ektron CMS activateuser.aspx تجاوز الصلاحياتContent Management SystemProof-of-ConceptOfficial Fix0.370380.02CVE-2018-12596
30/10/20178.58.2EPiServer Ektron CMS XSLTCompiledTransform Remote Code ExecutionContent Management SystemNot DefinedOfficial Fix0.009040.00CVE-2012-5358
30/10/20178.58.2EPiServer Ektron CMS XSL Data ekajaxtransform.aspx XslCompiledTransform Remote Code ExecutionContent Management SystemHighOfficial Fix0.966760.00CVE-2012-5357
25/07/20175.24.9EPiServer Ektron CMS SelectUserGroup.aspx سكربتات مشتركةContent Management SystemNot DefinedOfficial Fix0.004190.02CVE-2016-6133
03/07/20175.24.9EPiServer Ektron CMS content.aspx سكربتات مشتركةContent Management SystemNot DefinedOfficial Fix0.004550.02CVE-2016-6201
09/06/20153.53.4EPiServer Ektron CMS workarea.aspx سكربتات مشتركةContent Management SystemNot DefinedOfficial Fix0.001250.00CVE-2015-4427
09/06/20154.34.1EPiServer Ektron CMS MenuActions.aspx طلب تزوير مشتركContent Management SystemProof-of-ConceptOfficial Fix0.008610.04CVE-2015-3624
13/02/20157.37.0EPiServer Ektron CMS تجاوز الصلاحياتContent Management SystemNot DefinedOfficial Fix0.004030.04CVE-2015-0931
13/02/20155.35.1EPiServer Ektron CMS XML External EntityContent Management SystemHighOfficial Fix0.774390.00CVE-2015-0923

3 بعض الادخالات لم يتم عرضها

🔒 Login Required

You need to signup and login to see more of the remaining 3 results.

التالي نظرة عامة السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!