Os4ed Vulnérabilités

Chronologie

Taper

Not Defined48

Produit

OS4Ed openSIS35
OS4ED openSIS Classic Community Edition7
OS4Ed openSIS Classic4
OS4Ed OpenSIS Community Edition1
OS4Ed OpenSIS Community1

Contre-mesures

Official Fix1
Temporary Fix0
Workaround0
Unavailable0
Not Defined47

Exploitabilité

High0
Functional0
Proof-of-Concept3
Unproven0
Not Defined45

Vecteur d'accès

Not Defined0
Physical0
Local1
Adjacent2
Network45

Authentification

Not Defined0
High0
Low35
None13

Interaction de l'utilisateur

Not Defined0
Required6
None42

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤56
≤61
≤75
≤826
≤98
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤41
≤56
≤61
≤76
≤825
≤98
≤100

VulDB

≤10
≤20
≤30
≤46
≤54
≤61
≤727
≤810
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤73
≤82
≤922
≤1012

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k3
<2k36
<5k9
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k43
<2k4
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (5): OpenSIS Community (1), OpenSIS Community Edition (1), openSIS (35), openSIS Classic (4), openSIS Classic Community Edition (7)

PubliéBaseTempVulnérabilitéProdExpConEPSSCTICVE
20/11/20236.56.5OS4ED openSIS Classic Community Edition cross site request forgeryInconnueNot DefinedNot Defined0.000600.00CVE-2023-38885
20/11/20237.47.4OS4ED openSIS Classic Community Edition - elévation de privilègesInconnueNot DefinedNot Defined0.000970.03CVE-2023-38884
20/11/20236.46.4OS4ED openSIS Classic Community Edition Database Backup elévation de privilègesInconnueNot DefinedNot Defined0.000640.00CVE-2023-38880
20/11/20234.84.8OS4ED openSIS Classic Community Edition ParentLookup.php cross site scriptingInconnueNot DefinedNot Defined0.000720.03CVE-2023-38883
20/11/20234.84.8OS4ED openSIS Classic Community Edition ForExport.php cross site scriptingInconnueNot DefinedNot Defined0.000720.00CVE-2023-38882
20/11/20234.84.8OS4ED openSIS Classic Community Edition CalendarModal.php cross site scriptingInconnueNot DefinedNot Defined0.000720.00CVE-2023-38881
20/11/20236.96.9OS4ED openSIS Classic Community Edition DownloadWindow.php directory traversalInconnueNot DefinedNot Defined0.000970.02CVE-2023-38879
11/04/20225.55.5OS4Ed openSIS Classic Student.php sql injectionInconnueNot DefinedNot Defined0.002050.00CVE-2022-27041
03/03/20223.53.5OS4Ed openSIS Classic EmailCheckOthers.php cross site scriptingInconnueNot DefinedNot Defined0.000780.00CVE-2021-40637
03/03/20224.34.3OS4Ed openSIS Classic ChooseCpSearch.php sql injectionInconnueNot DefinedNot Defined0.001800.00CVE-2021-40635

38 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 38 results.

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!