Open Vulnerabilidad

Cronología

Escribe

Not Defined	200
Groupware Software	49
Automation Software	21
Forum Software	4
Information Management Software	2

Producto

Open Design Alliance Drawings SDK	36
Open-Xchange OX App Suite	25
Open-Xchange OX AppSuite	25
Open-Xchange AppSuite	23
Open Networking Foundation ONOS	13

Contramedidas

Official Fix	180
Temporary Fix	0
Workaround	1
Unavailable	6
Not Defined	97

Explotabilidad

High	3
Functional	2
Proof-of-Concept	36
Unproven	3
Not Defined	240

Vector de acceso

Not Defined	0
Physical	0
Local	10
Adjacent	70
Network	204

Autenticación

Not Defined	0
High	9
Low	130
None	145

La interacción del usuario

Not Defined	0
Required	77
None	207

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	16
≤5	60
≤6	101
≤7	44
≤8	36
≤9	18
≤10	9

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	23
≤5	68
≤6	93
≤7	47
≤8	28
≤9	20
≤10	5

VulDB

≤1	0
≤2	0
≤3	7
≤4	33
≤5	74
≤6	87
≤7	30
≤8	38
≤9	6
≤10	9

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	7
≤6	16
≤7	31
≤8	28
≤9	8
≤10	18

CNA

≤1	0
≤2	0
≤3	0
≤4	3
≤5	6
≤6	9
≤7	14
≤8	13
≤9	7
≤10	6

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	62
<2k	139
<5k	83
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	269
<2k	14
<5k	1
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (77): App Suite (2), AppSuite (23), CDE (3), CDE Common Desktop Environment (1), Comersus BackOffice Plus (1), Comersus Backoffice Lite (4), Comersus Cart (6), Direct Connect Peer-to-peer Client (1), Drawing SDK (1), Drawings (1), Drawings Explorer (2), Drawings SDK (36), Event Post Plugin (1), IRCd (1), Ironwood.1 (2), MSS (1), Media Encoder (1), Nav2 (4), OAS (8), OAS Platform (12), ODA Drawings SDK (1), ODA Viewer (2), OMERO.server (4), OMERO.web (1), ONOS (13), OPC Systems.NET (1), OX App Suite (25), OX AppSuite (25), OX Documents (3), OX Guard (6), Open-medium Cms (1), Open-xchange Appsuite (1), OpenBlog (1), Open Classifieds (1), OpenMetadata (5), Os-sim (2), PRC SDK (4), Platform (3), Quick.Cart (5), Quick.Forum (3), Quick.cart (2), ROS2 (4), Retrofit (1), SD-RAN ONOS onos-kpimon (1), SD-RAN ONOS onos-lib-go (2), SD-RAN ONOS onos-ric-sdk-go (1), SD-RAN Rimedo rimedo-ts (2), SD-RAN onos-kpimon (1), SXF Common Library (1), Server (11), Slashcode (6), SourceForge (1), Suricata (2), Switch (7), TAO (1), Teamwork (1), UPnP Specification (1), VNCAuthProxy (1), Web Browser (1), Work Flow Engine (2), X11r6 (2), XDMoD (3), dashboard (1), edx-platform (3), hwloc (1), iew (1), journalpump (1), maintain (1), open-forms (1), openSIS Community Edition (1), opentelemetry-dotnet (1), opentelemetry-go-contrib (1), rtslib-fb (1), targetcli-fb (1), tcmu-runner (1), umoci (1), xblock-lti-consumer (1)

Link to Vendor Website: https://www.open-xchange.com/

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2024-05-06	4.2	4.1	Open-Xchange OX App Suite E-Mail PDF Export escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00000	0.37	CVE-2024-23193
2024-05-06	5.4	5.3	Open-Xchange OX App Suite E-Mail Attachment cross site scripting	Desconocido	Not Defined	Official Fix	0.00000	0.26	CVE-2024-23188
2024-05-06	5.4	5.3	Open-Xchange OX App Suite Web Interface cross site scripting	Desconocido	Not Defined	Official Fix	0.00000	0.22	CVE-2024-23186
2024-05-06	5.4	5.3	Open-Xchange OX App Suite Content-ID Embedding cross site scripting	Desconocido	Not Defined	Official Fix	0.00000	0.22	CVE-2024-23187
2024-04-30	5.5	5.5	Open Networking Foundation SD-RAN Rimedo rimedo-ts reader.go uint64 desbordamiento de búfer	Desconocido	Not Defined	Not Defined	0.00043	0.00	CVE-2024-34050
2024-04-30	5.5	5.5	Open Networking Foundation SD-RAN Rimedo rimedo-ts reader.go plmnIdString desbordamiento de búfer	Desconocido	Not Defined	Not Defined	0.00043	0.04	CVE-2024-34049
2024-04-30	5.5	5.5	Open Networking Foundation SD-RAN ONOS onos-lib-go putBitString desbordamiento de búfer	Desconocido	Not Defined	Not Defined	0.00043	0.10	CVE-2023-52728
2024-04-30	5.5	5.5	Open Networking Foundation SD-RAN ONOS onos-lib-go parseAlignBits desbordamiento de búfer	Desconocido	Not Defined	Not Defined	0.00043	0.10	CVE-2023-52727
2024-04-30	3.5	3.4	Open Networking Foundation SD-RAN ONOS onos-kpimon errCh Channel Start denegación de servicio	Desconocido	Not Defined	Official Fix	0.00043	0.05	CVE-2023-52725
2024-04-30	5.5	5.3	Open Networking Foundation SD-RAN onos-kpimon processIndicationFormat1 desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00043	0.00	CVE-2023-52724
2024-04-30	3.5	3.5	Open Networking Foundation SD-RAN ONOS onos-ric-sdk-go Subscribe denegación de servicio	Desconocido	Not Defined	Not Defined	0.00043	0.05	CVE-2023-52726
2024-04-13	3.8	3.7	open-telemetry opentelemetry-dotnet Query String divulgación de información	Desconocido	Not Defined	Official Fix	0.00045	0.04	CVE-2024-32028
2024-04-08	4.8	4.7	Open-Xchange OX App Suite Embedded Content cross site scripting	Desconocido	Not Defined	Official Fix	0.00045	0.03	CVE-2024-23189
2024-04-08	5.2	5.1	Open-Xchange OX App Suite RSS Feed cross site scripting	Desconocido	Not Defined	Official Fix	0.00045	0.04	CVE-2024-23192
2024-04-08	4.4	4.4	Open-Xchange OX App Suite cross site scripting	Desconocido	Not Defined	Official Fix	0.00045	0.00	CVE-2024-23191
2024-04-08	4.4	4.4	Open-Xchange OX App Suite cross site scripting	Desconocido	Not Defined	Official Fix	0.00045	0.04	CVE-2024-23190
2024-04-03	3.8	3.7	Open Automation Software OAS Platform OAS Engine User Configuration escalada de privilegios	Automation Software	Not Defined	Not Defined	0.00045	0.04	CVE-2024-27201
2024-04-03	3.8	3.7	Open Automation Software OAS Platform OAS Engine Save Security Configuration escalada de privilegios	Automation Software	Not Defined	Not Defined	0.00046	0.04	CVE-2024-22178
2024-04-03	3.8	3.7	Open Automation Software OAS Platform OAS Engine Tags Configuration escalada de privilegios	Automation Software	Not Defined	Not Defined	0.00046	0.04	CVE-2024-21870
2024-04-03	4.9	4.8	Open Automation Software OAS Platform OAS Engine File Data Source Configuration denegación de servicio	Automation Software	Not Defined	Not Defined	0.00044	0.03	CVE-2024-24976
2024-03-15	9.8	9.6	open-metadata OpenMetadata v1 getUserPrincipal autenticación débil	Desconocido	Not Defined	Official Fix	0.00087	0.04	CVE-2024-28255
2024-03-15	8.8	8.6	open-metadata OpenMetadata validateExpression escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00045	0.06	CVE-2024-28848
2024-03-15	8.8	8.6	open-metadata OpenMetadata validateExpression escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00044	0.13	CVE-2024-28847
2024-03-15	8.8	8.6	open-metadata OpenMetadata validateExpression escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00046	0.14	CVE-2024-28254
2024-03-15	8.3	8.2	open-metadata OpenMetadata validateExpression escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00044	0.14	CVE-2024-28253

259 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 259 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!