Apache Jackrabbit Vulnérabilités

Chronologie

Version

1.42
2.4.02
2.4.12
2.4.22
2.4.32

Contre-mesures

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined1

Exploitabilité

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined3

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent0
Network5

Authentification

Not Defined0
High0
Low1
None4

Interaction de l'utilisateur

Not Defined0
Required2
None3

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤60
≤71
≤82
≤91
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤41
≤50
≤60
≤72
≤81
≤91
≤100

VulDB

≤10
≤20
≤30
≤40
≤51
≤61
≤71
≤81
≤91
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤91
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k0
<2k0
<5k0
<10k4
<25k1
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k3
<2k1
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

Affected Versions (100): 1.0, 1.1, 1.2, 1.3, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12, 1.13, 1.14, 1.15, 1.16, 1.17, 1.18, 1.19, 1.20, 1.21, 1.22, 2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.1, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.2.5, 2.2.6, 2.2.7, 2.2.8, 2.2.9, 2.2.11, 2.2.12, 2.2.13, 2.3, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.5, 2.6, 2.6.1, 2.6.2, 2.6.3, 2.6.4, 2.6.5, 2.7, 2.8, 2.8.1, 2.8.2, 2.9, 2.10, 2.10.1, 2.10.2, 2.10.3, 2.12, 2.12.1, 2.12.2, 2.12.3, 2.13, 2.13.1, 2.13.2, 2.20.1, 2.20.2, 2.20.3, 2.20.4, 2.20.5, 2.20.6, 2.20.7, 2.20.8, 2.20.9, 2.21, 2.21.1, 2.21.2, 2.21.3, 2.21.4, 2.21.5, 2.21.6, 2.21.7, 2.21.8, 2.21.9, 2.21.11, 2.21.12, 2.21.13, 2.21.14, 2.21.15, 2.21.16, 2.21.17

Link to Product Website: https://www.apache.org/

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
26/07/20238.07.9Apache Jackrabbit elévation de privilèges$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-37895
28/01/20206.46.4Apache Jackrabbit Oak Password divulgation de l'information$5k-$25k$0-$5kNot DefinedNot Defined0.00CVE-2020-1940
21/09/20168.88.4Apache Jackrabbit HTTP Header cross site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-6801
29/05/20157.36.6Apache Jackrabbit WebDAV Request elévation de privilèges$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.04CVE-2015-1833
21/01/20094.33.9Apache Jackrabbit search.jsp cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2009-0026

plus d'entrées par Apache

PrécédentAperçuSuivant

Do you want to use VulDB in your project?

Use the official API to access entries easily!