Microsoft Vulnérabilités

Chronologie

Version

2.13
2.23
6.5.02
6.5.12
6.5.22

Contre-mesures

Official Fix31
Temporary Fix0
Workaround1
Unavailable0
Not Defined13

Exploitabilité

High1
Functional0
Proof-of-Concept2
Unproven4
Not Defined38

Vecteur d'accès

Not Defined0
Physical0
Local10
Adjacent2
Network33

Authentification

Not Defined0
High4
Low18
None23

Interaction de l'utilisateur

Not Defined0
Required17
None28

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤30
≤43
≤511
≤68
≤75
≤89
≤95
≤104

CVSSv3 Temp

≤10
≤20
≤30
≤43
≤512
≤67
≤75
≤810
≤94
≤104

VulDB

≤10
≤20
≤33
≤48
≤56
≤67
≤77
≤86
≤95
≤103

NVD

≤10
≤20
≤30
≤41
≤52
≤67
≤73
≤85
≤92
≤101

CNA

≤10
≤20
≤30
≤42
≤50
≤60
≤74
≤812
≤92
≤101

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤81
≤91
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k9
<2k6
<5k12
<10k7
<25k10
<50k1
<100k0
≥100k0

Exploiter aujourd'hui

<1k31
<2k4
<5k4
<10k2
<25k4
<50k0
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (112): 1, 1.0, 1.0.1, 1.0.2, 1.0.3, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.4.4, 2.0, 2.1, 2.2, 2.8, 3.0, 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 4.6, 4.7, 4.8, 4.9, 4.10, 4.11, 4.12, 4.13, 4.14, 4.15, 4.16, 4.17, 4.18, 4.19, 4.20, 4.21, 4.22, 4.23, 4.24, 4.25, 4.26, 4.27, 4.28, 4.29, 4.30, 4.31, 4.32, 4.33, 4.34, 4.35, 4.36, 4.37, 4.38, 4.39, 4.40, 4.41, 4.42, 4.43, 4.44, 4.45, 4.46, 4.47, 4.48, 4.49, 4.50, 4.51, 4.52, 4.53, 4.54, 4.55, 4.56, 4.57, 4.58, 4.59, 4.60.1, 4.60.2, 6.5, 6.5.1, 6.5.2, 6.5.3, 6.5.4, 6.5.5, 6.5.6, 6.5.7, 6.5.8, 7, 7.0, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.1, 7.2, 7.5, 7.5.1, 7.5.2, 7.5.3, 7.5.4, 8.0, 8.6(1.2), 8.6(1.9), 9.0, 9.1, 10.0, 10.1, 10.1.1, 10.1.2, 10.1.3, 10.2, 11.0, 2011

Type de logiciel: Software Library

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
17/04/20243.93.8AzureAD microsoft-authentication-library-for-dotnet vulnérabilité inconnue$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2024-27086
21/02/20248.58.3discourse-microsoft-auth microsoft_auth:revoke elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-46241
15/02/20247.87.8ESET NOD32 Antivirus elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2024-0353
31/01/20244.74.7ESET Endpoint Security elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2023-7043
09/01/20247.47.3Microsoft.IdentityModel.Protocols.SignedHttpRequest elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2024-21643
09/01/20246.46.3SAP GUI Connector for Microsoft Edge divulgation de l'information$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-22125
21/12/20236.66.6ESET NOD32 Antivirus authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-5594
12/12/20236.86.2Microsoft Microsoft Malware Protection Platform Defender dénie de service$5k-$25k$0-$5kUnprovenOfficial Fix0.02CVE-2023-36010
30/11/20235.15.1SpreadsheetConverter Import Spreadsheets from Microsoft Excel Plugin cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-48289
14/11/20238.88.1Microsoft Microsoft OLE DB Provider for DB2 V7 Remote Code Execution$5k-$25k$0-$5kUnprovenOfficial Fix0.00CVE-2023-38151

35 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 35 results.

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!