Sas Vulnerabilidad

Cronología

Escribe

Not Defined	16
Content Management System	1
Reporting Software	1

Producto

SAS Integration Technologies	3
SAS Web Infrastructure Platform	3
SAS Visual Analytics	2
SAS Base	2
XWiki SAS application-collabora	1

Contramedidas

Official Fix	5
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	12

Explotabilidad

High	0
Functional	0
Proof-of-Concept	1
Unproven	1
Not Defined	16

Vector de acceso

Not Defined	0
Physical	0
Local	4
Adjacent	1
Network	13

Autenticación

Not Defined	0
High	0
Low	7
None	11

La interacción del usuario

Not Defined	0
Required	7
None	11

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	4
≤7	1
≤8	2
≤9	3
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	4
≤6	3
≤7	1
≤8	2
≤9	2
≤10	4

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	3
≤6	1
≤7	1
≤8	3
≤9	3
≤10	3

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	2
≤7	1
≤8	2
≤9	0
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	1
≤8	1
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	4
<2k	4
<5k	10
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	18
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (12): Base (2), Base SAS (1), Environment Manager (1), Integration Technologies (3), Intrnet (1), Logon Manager (1), Visual Analytics (2), Web Infrastructure Platform (3), Web Report Studio (1), XML Mapper (1), application-collabora (1), go-rpmutils (1)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2023-12-12	5.1	5.1	SAS Integration Technologies URL do cross site scripting	Desconocido	Not Defined	Not Defined	0.00051	0.00	CVE-2023-4932
2023-11-09	5.5	5.4	XWiki SAS application-collabora escalada de privilegios	Content Management System	Not Defined	Official Fix	0.00045	0.02	CVE-2023-46743
2022-03-11	4.3	4.2	SAS Logon Manager Web UI escalada de privilegios	Desconocido	Not Defined	Not Defined	0.00044	0.03	CVE-2021-42186
2022-02-19	3.5	3.4	SAS Web Report Studio javascript: URL logonAndRender.do cross site scripting	Reporting Software	Not Defined	Not Defined	0.00089	0.00	CVE-2022-25256
2021-11-19	5.5	5.0	SAS Intrnet DS2CSF Macro escalada de privilegios	Desconocido	Proof-of-Concept	Not Defined	0.00830	0.02	CVE-2021-41569
2021-06-25	3.5	3.4	SAS Environment Manager Configuration cross site scripting	Desconocido	Not Defined	Not Defined	0.00068	0.00	CVE-2021-35475
2020-06-24	7.4	6.8	SAS Software go-rpmutils CPIO Extraction directory traversal	Desconocido	Not Defined	Not Defined	0.00093	0.00	CVE-2020-7667
2020-02-23	4.4	4.4	SAS Visual Analytics Graph Builder cross site scripting	Desconocido	Not Defined	Not Defined	0.00054	0.05	CVE-2020-9350
2019-11-14	9.1	9.1	SAS XML Mapper XML Data XML External Entity	Desconocido	Not Defined	Not Defined	0.00417	0.00	CVE-2019-14678
2019-01-17	7.4	7.1	SAS Web Infrastructure Platform BI Web Services XML External Entity	Desconocido	Not Defined	Official Fix	0.00168	0.00	CVE-2018-20733

8 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 8 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Interested in the pricing of exploits?

See the underground prices here!