Ox Software Vulnérabilités

Chronologie

Taper

Not Defined134

Produit

OX Software OX App Suite125
OX Software OX Documents4
OX Software App Suite4
OX Software Open-Xchange3
OX Software OX Guard1

Contre-mesures

Official Fix52
Temporary Fix0
Workaround0
Unavailable0
Not Defined82

Exploitabilité

High0
Functional0
Proof-of-Concept8
Unproven0
Not Defined126

Vecteur d'accès

Not Defined0
Physical8
Local5
Adjacent21
Network100

Authentification

Not Defined0
High5
Low92
None37

Interaction de l'utilisateur

Not Defined0
Required67
None67

C3BM Index

CVSSv3 Base

≤10
≤20
≤31
≤426
≤556
≤629
≤715
≤82
≤95
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤431
≤553
≤630
≤712
≤82
≤95
≤100

VulDB

≤10
≤21
≤33
≤460
≤534
≤621
≤78
≤87
≤90
≤100

NVD

≤10
≤20
≤30
≤41
≤516
≤616
≤736
≤87
≤93
≤109

CNA

≤10
≤20
≤30
≤44
≤57
≤613
≤72
≤87
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k60
<2k64
<5k10
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k130
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (6): App Suite (4), OX App Suite (125), OX Documents (4), OX Guard (1), Open-Xchange (3), Scripting (1)

PubliéBaseTempVulnérabilitéProdExpConEPSSCTICVE
02/11/20235.25.2OX Software OX App Suite Presentation cross site scriptingInconnueNot DefinedNot Defined0.000460.03CVE-2023-29043
02/11/20236.96.9OX Software OX App Suite Image Metadata sql injectionInconnueNot DefinedNot Defined0.000530.00CVE-2023-26454
02/11/20235.95.9OX Software OX App Suite Image Cache sql injectionInconnueNot DefinedNot Defined0.000530.00CVE-2023-26452
02/11/20234.44.4OX Software OX App Suite Drawing cross site scriptingInconnueNot DefinedNot Defined0.000490.00CVE-2023-29045
02/11/20234.44.4OX Software OX App Suite Document cross site scriptingInconnueNot DefinedNot Defined0.000490.00CVE-2023-29044
02/11/20234.34.3OX Software OX App Suite Network Connection dénie de serviceInconnueNot DefinedNot Defined0.000440.00CVE-2023-29046
02/11/20234.44.4OX Software OX App Suite OX Guard cross site scriptingInconnueNot DefinedNot Defined0.000490.00CVE-2023-26456
02/11/20235.95.9OX Software OX App Suite RMI ChronosRMIService:setEventOrganizer. authentification faibleInconnueNot DefinedNot Defined0.000420.00CVE-2023-26455
02/11/20236.96.9OX Software OX App Suite Local Privilege EscalationInconnueNot DefinedNot Defined0.000530.00CVE-2023-26453
02/11/20235.65.6OX Software OX App Suite Imageconverter API sql injectionInconnueNot DefinedNot Defined0.000430.00CVE-2023-29047
02/08/20232.82.8OX Software OX App Suite Cache Service elévation de privilègesInconnueNot DefinedOfficial Fix0.000630.02CVE-2023-26442
02/08/20236.36.2OX Software OX App Suite Cache Service API sql injectionInconnueNot DefinedOfficial Fix0.000420.00CVE-2023-26440
02/08/20233.63.6OX Software OX App Suite Control Character elévation de privilègesInconnueNot DefinedOfficial Fix0.000740.00CVE-2023-26430
02/08/20236.66.5OX Software OX App Suite Cache Service API sql injectionInconnueNot DefinedOfficial Fix0.000420.00CVE-2023-26439
02/08/20235.05.0OX Software OX App Suite Cache Service directory traversalInconnueNot DefinedOfficial Fix0.000450.00CVE-2023-26441
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scriptingInconnueNot DefinedOfficial Fix0.000650.00CVE-2023-26447
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scriptingInconnueNot DefinedOfficial Fix0.000650.00CVE-2023-26448
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scriptingInconnueNot DefinedOfficial Fix0.000650.00CVE-2023-26446
02/08/20236.76.6OX Software OX App Suite Autocomplete Search sql injectionInconnueNot DefinedOfficial Fix0.001240.00CVE-2023-26443
02/08/20236.46.3OX Software OX App Suite chiffrement faibleInconnueNot DefinedOfficial Fix0.000900.00CVE-2023-26451
02/08/20234.84.7OX Software OX App Suite Frontend Theme cross site scriptingInconnueNot DefinedOfficial Fix0.000650.04CVE-2023-26445
02/08/20234.34.2OX Software OX App Suite JDK DNS Cache elévation de privilègesInconnueNot DefinedOfficial Fix0.000750.00CVE-2023-26438
02/08/20234.44.4OX Software OX App Suite Count Web Service cross site scriptingInconnueNot DefinedOfficial Fix0.000730.00CVE-2023-26450
02/08/20234.44.4OX Software OX App Suite Chat Web Service cross site scriptingInconnueNot DefinedOfficial Fix0.000730.00CVE-2023-26449
20/06/20236.76.7OX Software OX App Suite API Endpoint documentconverterws elévation de privilègesInconnueNot DefinedNot Defined0.000570.04CVE-2023-26436

109 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 109 results.

PrécédentAperçuSuivant

Want to stay up to date on a daily basis?

Enable the mail alert feature now!