Apache Allura Vulnérabilités

Chronologie

Version

1.04
1.14
1.24
1.34
1.44

Contre-mesures

Official Fix3
Temporary Fix0
Workaround0
Unavailable0
Not Defined1

Exploitabilité

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined4

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent0
Network4

Authentification

Not Defined0
High0
Low1
None3

Interaction de l'utilisateur

Not Defined0
Required2
None2

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤62
≤71
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤52
≤61
≤71
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤53
≤61
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤60
≤72
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k0
<2k0
<5k0
<10k4
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k2
<2k1
<5k0
<10k1
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Versions (16): 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12, 1.13, 1.14, 1.15

Link to Product Website: https://www.apache.org/

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
07/11/20234.64.5Apache Allura divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-46851
19/06/20195.25.1Apache Allura Dropdown Selector Stored cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10085
15/03/20185.24.9Apache Allura HTTP Response Splitting cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-1319
06/02/20186.46.4Apache Allura File directory traversal$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2018-1299

plus d'entrées par Apache

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!