Progress Vulnerabilidad

Cronología

Escribe

Not Defined	70
Network Management Software	13
File Transfer Software	12
Content Management System	5
Reporting Software	4

Producto

Progress MOVEit Transfer	23
Progress WS_FTP Server	12
Progress Sitefinity	11
Progress WhatsUp Gold	9
Progress OpenEdge	7

Contramedidas

Official Fix	89
Temporary Fix	0
Workaround	1
Unavailable	0
Not Defined	20

Explotabilidad

High	5
Functional	0
Proof-of-Concept	5
Unproven	1
Not Defined	99

Vector de acceso

Not Defined	0
Physical	0
Local	13
Adjacent	15
Network	82

Autenticación

Not Defined	0
High	11
Low	42
None	57

La interacción del usuario

Not Defined	0
Required	28
None	82

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	3
≤5	18
≤6	27
≤7	13
≤8	25
≤9	17
≤10	7

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	3
≤5	20
≤6	29
≤7	14
≤8	24
≤9	15
≤10	5

VulDB

≤1	0
≤2	1
≤3	6
≤4	16
≤5	19
≤6	17
≤7	18
≤8	25
≤9	2
≤10	6

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	11
≤7	13
≤8	12
≤9	8
≤10	17

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	2
≤7	3
≤8	18
≤9	8
≤10	9

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	23
<2k	67
<5k	20
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	109
<2k	1
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (36): 4GL Compiler (1), Chef Automate (1), Chef InSpec (1), Chef Infra Client (1), Chef Infra Server (1), DataDirect Connect for ODBC (2), Database (4), Flowmon (1), Flowmon FPI (1), Flowmon OS (1), JustAssembly (1), JustDecompile (1), Kendo UI Editor (1), LoadMaster (5), MOVEit Automation (1), MOVEit Transfer (23), Messenger (1), OpenEdge (7), OpenEdge OEE (1), OpenEdge OEM (1), Redirection (1), Sitefinity (11), Sitefinity CMS (5), Telerik JustDecompile (1), Telerik Report Server (1), Telerik Reporting (3), Telerik Test Studio (1), Telerik UI for ASP.NET AJAX (2), UI for ASP.NET AJAX (2), UI for Silverlight (1), WS_FTP Server (12), WebSpeed (1), Webspeed (1), Webspeed Messenger (1), WhatsUp Gold (9), Whatsup Gold (4)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2024-05-02	7.5	7.3	Progress LoadMaster SSH Private Key autenticación débil	Desconocido	Not Defined	Official Fix	0.00043	0.08	CVE-2024-3544
2024-05-02	4.2	4.1	Progress LoadMaster divulgación de información	Desconocido	Not Defined	Official Fix	0.00043	0.04	CVE-2024-3543
2024-04-02	9.9	9.7	Progress Flowmon Management Interface escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00439	0.04	CVE-2024-2389
2024-03-22	5.9	5.8	Progress LoadMaster cross site request forgery	Desconocido	Not Defined	Official Fix	0.00043	0.00	CVE-2024-2449
2024-03-22	7.6	7.4	Progress LoadMaster escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00043	0.04	CVE-2024-2448
2024-03-20	4.3	4.2	Progress MOVEit Transfer vulnerabilidad desconocida	Desconocido	Not Defined	Official Fix	0.00043	0.03	CVE-2024-2291
2024-03-20	9.3	9.1	Progress Telerik Report Server escalada de privilegios	Reporting Software	Not Defined	Official Fix	0.00046	0.00	CVE-2024-1800
2024-03-20	6.5	6.4	Progress Telerik Reporting escalada de privilegios	Reporting Software	Not Defined	Official Fix	0.00046	0.09	CVE-2024-1801
2024-03-20	8.0	7.8	Progress Telerik Reporting escalada de privilegios	Reporting Software	Not Defined	Official Fix	0.00046	0.05	CVE-2024-1856
2024-02-28	5.7	5.7	Progress Sitefinity Page Editing Area cross site scripting	Desconocido	Not Defined	Official Fix	0.00043	0.04	CVE-2024-1636
2024-02-28	6.5	6.4	Progress Sitefinity Administrative Area escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00043	0.02	CVE-2024-1632
2024-02-27	9.9	9.7	Progress OpenEdge autenticación débil	Desconocido	Not Defined	Official Fix	0.00043	0.00	CVE-2024-1403
2024-02-21	8.6	8.5	Progress LoadMaster escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00213	0.07	CVE-2024-1212
2024-02-21	5.3	5.2	Progress WS_FTP Server Administrative Interface cross site scripting	File Transfer Software	Not Defined	Official Fix	0.00043	0.06	CVE-2024-1474
2024-01-31	7.5	7.4	Progress Telerik Test Studio Applications Installer escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00061	0.00	CVE-2024-0833
2024-01-31	7.5	7.4	Progress Telerik Reporting Applications Installer escalada de privilegios	Reporting Software	Not Defined	Official Fix	0.00061	0.02	CVE-2024-0832
2024-01-31	7.5	7.4	Progress Telerik JustDecompile Applications Installer escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00061	0.04	CVE-2024-0219
2024-01-18	7.5	7.3	Progress OpenEdge Web Request desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00046	0.02	CVE-2023-40052
2024-01-18	8.4	8.3	Progress OpenEdge Web Transport Request escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00050	0.05	CVE-2023-40051
2024-01-17	6.8	6.6	Progress MOVEit Transfer HTTPS Transaction denegación de servicio	Desconocido	Not Defined	Official Fix	0.00063	0.05	CVE-2024-0396
2023-12-20	4.4	4.4	Progress Sitefinity escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00063	0.00	CVE-2023-6784
2023-12-14	5.1	5.1	Progress WhatsUp Gold Role cross site scripting	Network Management Software	Not Defined	Official Fix	0.00045	0.05	CVE-2023-6367
2023-12-14	5.0	4.9	Progress WhatsUp Gold Alert Center cross site scripting	Network Management Software	Not Defined	Official Fix	0.00045	0.00	CVE-2023-6366
2023-12-14	6.0	6.0	Progress WhatsUp Gold API Endpoint escalada de privilegios	Network Management Software	Not Defined	Official Fix	0.00052	0.00	CVE-2023-6595
2023-12-14	5.0	4.9	Progress WhatsUp Gold escalada de privilegios	Network Management Software	Not Defined	Official Fix	0.00052	0.00	CVE-2023-6368

85 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 85 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!