Oracle Communications Instant Messaging Server Vulnérabilités

Chronologie

Version

10.0.1.6.0	5
10.0.1.4.0	5
10.0.1.5.0	4
10.0.1.3.0	3
10.0.1.7.0	2

Contre-mesures

Official Fix	22
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	0

Exploitabilité

High	1
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	21

Vecteur d'accès

Not Defined	0
Physical	0
Local	2
Adjacent	0
Network	20

Authentification

Not Defined	0
High	1
Low	2
None	19

Interaction de l'utilisateur

Not Defined	0
Required	0
None	22

C3BM Index

L'année dernière

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	0
≤7	3
≤8	9
≤9	3
≤10	6

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	0
≤7	3
≤8	11
≤9	1
≤10	6

VulDB

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	0
≤7	3
≤8	9
≤9	3
≤10	6

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	0
≤7	3
≤8	8
≤9	2
≤10	7

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	0
≤7	0
≤8	2
≤9	1
≤10	5

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	0
<2k	0
<5k	0
<10k	5
<25k	11
<50k	0
<100k	6
≥100k	0

Exploiter aujourd'hui

<1k	8
<2k	3
<5k	5
<10k	1
<25k	5
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (7): 10.0, 10.0.1, 10.0.1.3, 10.0.1.4, 10.0.1.5, 10.0.1.6, 10.0.1.7

Link to Product Website: https://www.oracle.com

Type de logiciel: Cloud Software

Publié	Base	Temp	Vulnérabilité	0day	Aujourd'hui	Exp	Con	CTI	CVE
16/01/2024	7.5	7.3	Oracle Communications Instant Messaging Server Installation divulgation de l'information	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-34981
18/07/2023	7.5	7.3	Oracle Communications Instant Messaging Server DBPlugin dénie de service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-28709
17/01/2023	7.5	7.3	Oracle Communications Instant Messaging Server DBPlugin dénie de service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-42003
17/01/2023	7.5	7.3	Oracle Communications Instant Messaging Server DBPlugin elévation de privilèges	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-42252
19/10/2022	6.6	6.4	Oracle Communications Instant Messaging Server Installation elévation de privilèges	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2021-44832
19/10/2022	7.0	6.8	Oracle Communications Instant Messaging Server Installation race condition	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-23181
19/10/2022	7.5	7.3	Oracle Communications Instant Messaging Server PresenceAPI dénie de service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-36518
19/07/2022	9.8	9.6	Oracle Communications Instant Messaging Server XMPP Server sql injection	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2022-23305
19/04/2022	7.5	7.3	Oracle Communications Instant Messaging Server DBPlugin dénie de service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-42340
20/07/2021	7.0	6.7	Oracle Communications Instant Messaging Server Apache Tomcat elévation de privilèges	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-9484

12 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 12 results.

plus d'entrées par Oracle

◂ PrécédentAperçuSuivant ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!