Bugzilla Vulnerabilidad

Cronología

Versión

2.17.144
2.1439
2.14.134
2.1633
2.1027

Contramedidas

Official Fix120
Temporary Fix0
Workaround2
Unavailable0
Not Defined37

Explotabilidad

High4
Functional0
Proof-of-Concept45
Unproven3
Not Defined107

Vector de acceso

Not Defined0
Physical0
Local11
Adjacent1
Network147

Autenticación

Not Defined0
High1
Low21
None137

La interacción del usuario

Not Defined0
Required61
None98

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤418
≤536
≤651
≤719
≤831
≤90
≤104

CVSSv3 Temp

≤10
≤20
≤30
≤428
≤546
≤645
≤733
≤83
≤90
≤104

VulDB

≤10
≤20
≤30
≤419
≤538
≤649
≤718
≤831
≤90
≤104

NVD

≤10
≤20
≤30
≤41
≤51
≤60
≤71
≤80
≤92
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k3
<2k15
<5k6
<10k52
<25k82
<50k1
<100k0
≥100k0

Explotar hoy

<1k140
<2k3
<5k11
<10k5
<25k0
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Versions (177): 2.0, 2.1, 2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.14.1, 2.14.2, 2.14.3, 2.14.4, 2.14.5, 2.15, 2.16, 2.16.1, 2.16.2, 2.16.3, 2.16.4, 2.16.5, 2.16.6, 2.16.7, 2.16.8, 2.16.9, 2.16.11, 2.17, 2.17.1, 2.17.2, 2.17.3, 2.17.4, 2.17.5, 2.17.6, 2.17.7, 2.18, 2.18.1, 2.18.2, 2.18.3, 2.18.4, 2.18.5, 2.19, 2.19.1, 2.19.2, 2.19.3, 2.20, 2.20.1, 2.20.2, 2.20.3, 2.20.4, 2.21, 2.21.1, 2.21.2, 2.22, 2.22.1, 2.22.2, 2.22.3, 2.22.4, 2.23, 2.23.1, 2.23.2, 2.23.3, 2.23.4, 3, 3.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.1, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.2, 3.2.1, 3.2.2, 3.2.3, 3.2.4, 3.3, 3.3.1, 3.3.2, 3.3.3, 3.3.4, 3.4, 3.4.1, 3.4.2, 3.4.3, 3.4.4, 3.5, 3.5.1, 3.5.2, 3.5.3, 3.6, 3.6.1, 3.6.2, 3.6.3, 3.6.4, 3.6.5, 3.6.6, 3.6.7, 3.6.8, 3.6.9, 3.6.11, 3.6.12, 3.7, 3.7.1, 3.7.2, 3.7.3, 4, 4.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.0.11, 4.0.12, 4.0.13, 4.1, 4.1.1, 4.1.2, 4.1.3, 4.2, 4.2.1, 4.2.2, 4.2.3, 4.2.4, 4.2.5, 4.2.6, 4.2.7, 4.2.8, 4.2.9, 4.2.11, 4.2.12, 4.2.13, 4.2.14, 4.3, 4.3.1, 4.3.2, 4.3.3, 4.4, 4.4.1, 4.4.2, 4.4.3, 4.4.4, 4.4.5, 4.4.6, 4.4.7, 4.4.8, 4.4.9, 4.4.11, 4.4.12, 4.4rc1, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 5, 5.0, 5.0.1, 5.0.2, 5.0.3

Tipo de software: Bug Tracking Software

Fecha de publicaciónBaseTempVulnerabilidad0dayHoyExpConCTICVE
2019-04-046.06.0Bugzilla Plugin Global Configuration Credentials escalada de privilegios$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2019-1003066
2018-02-166.56.4Bugzilla report.cgi cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-5123
2017-04-125.25.1Bugzilla Dependency Graph cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-2803
2016-01-034.14.0Bugzilla CSV File Template.pm divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-8509
2016-01-034.74.6Bugzilla Bug Summary showdependencygraph.cgi cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-8508
2015-09-107.36.4Mozilla Bugzilla Email Address Util.pm escalada de privilegios$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2015-4499
2015-02-016.36.0Mozilla Bugzilla escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-8630
2014-10-064.34.1Mozilla Bugzilla cross site scripting$5k-$25k$0-$5kHighOfficial Fix0.02CVE-2014-1573
2014-10-065.34.6Mozilla Bugzilla Account Creation escalada de privilegios$5k-$25k$0-$5kUnprovenOfficial Fix0.03CVE-2014-1572
2014-10-065.34.6Mozilla Bugzilla Comment divulgación de información$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2014-1571
2014-07-244.34.1Mozilla Bugzilla JSONP Endpoint cross site request forgery$5k-$25k$0-$5kHighOfficial Fix0.02CVE-2014-1546
2014-04-185.34.8Mozilla Bugzilla Data Display autenticación débil$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2014-1517
2013-10-174.33.9Mozilla Bugzilla cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1743
2013-10-176.35.7Mozilla Bugzilla editflagtypes.cgi cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1742
2013-10-175.44.9Mozilla Bugzilla CSRF Token process_bug.cgi cross site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1733
2013-10-175.44.9Mozilla Bugzilla CSRF Token attachment.cgi cross site request forgery$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-1734
2013-02-244.34.1Mozilla Bugzilla Error Message build_subselect divulgación de información$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2013-0786
2013-02-166.35.7Bugzilla show_bug.cgi cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2013-0785
2012-11-164.34.3Mozilla Bugzilla swfstore.swf cross site scripting$5k-$25k$0-$5kNot DefinedNot Defined0.05CVE-2012-5883
2012-11-135.34.6Bugzilla code-error.html.tmpl divulgación de información$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-4197
2012-11-135.55.3Bugzilla report-table.html.tmpl cross site scripting$0-$5k$0-$5kHighOfficial Fix0.00CVE-2012-4189
2012-11-135.35.1Bugzilla Custom Field divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-4199
2012-11-135.34.6Bugzilla User.get divulgación de información$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-4198
2012-09-045.35.3Mozilla Bugzilla escalada de privilegios$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2012-4747
2012-08-306.55.9Mozilla Bugzilla Username Parser search escalada de privilegios$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2012-3981

134 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 134 results.

AnteriorVisión De ConjuntoPróximo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!