Sas Vulnérabilités

Chronologie

Taper

Not Defined	16
Content Management System	1
Reporting Software	1

Produit

SAS Integration Technologies	3
SAS Web Infrastructure Platform	3
SAS Visual Analytics	2
SAS Base	2
XWiki SAS application-collabora	1

Contre-mesures

Official Fix	5
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	12

Exploitabilité

High	0
Functional	0
Proof-of-Concept	1
Unproven	1
Not Defined	16

Vecteur d'accès

Not Defined	0
Physical	0
Local	4
Adjacent	1
Network	13

Authentification

Not Defined	0
High	0
Low	7
None	11

Interaction de l'utilisateur

Not Defined	0
Required	7
None	11

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	4
≤7	1
≤8	2
≤9	3
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	2
≤5	4
≤6	3
≤7	1
≤8	2
≤9	2
≤10	4

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	3
≤6	1
≤7	1
≤8	3
≤9	3
≤10	3

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	2
≤7	1
≤8	2
≤9	0
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	1
≤8	1
≤9	0
≤10	0

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	4
<2k	4
<5k	10
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	17
<2k	1
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (12): Base (2), Base SAS (1), Environment Manager (1), Integration Technologies (3), Intrnet (1), Logon Manager (1), Visual Analytics (2), Web Infrastructure Platform (3), Web Report Studio (1), XML Mapper (1), application-collabora (1), go-rpmutils (1)

Publié	Base	Temp	Vulnérabilité	Prod	Exp	Con	EPSS	CTI	CVE
12/12/2023	5.1	5.1	SAS Integration Technologies URL do cross site scripting	Inconnue	Not Defined	Not Defined	0.00051	0.00	CVE-2023-4932
09/11/2023	5.5	5.4	XWiki SAS application-collabora elévation de privilèges	Content Management System	Not Defined	Official Fix	0.00045	0.02	CVE-2023-46743
11/03/2022	4.3	4.2	SAS Logon Manager Web UI elévation de privilèges	Inconnue	Not Defined	Not Defined	0.00044	0.03	CVE-2021-42186
19/02/2022	3.5	3.4	SAS Web Report Studio javascript: URL logonAndRender.do cross site scripting	Reporting Software	Not Defined	Not Defined	0.00089	0.00	CVE-2022-25256
19/11/2021	5.5	5.0	SAS Intrnet DS2CSF Macro elévation de privilèges	Inconnue	Proof-of-Concept	Not Defined	0.00830	0.02	CVE-2021-41569
25/06/2021	3.5	3.4	SAS Environment Manager Configuration cross site scripting	Inconnue	Not Defined	Not Defined	0.00068	0.00	CVE-2021-35475
24/06/2020	7.4	6.8	SAS Software go-rpmutils CPIO Extraction directory traversal	Inconnue	Not Defined	Not Defined	0.00093	0.00	CVE-2020-7667
23/02/2020	4.4	4.4	SAS Visual Analytics Graph Builder cross site scripting	Inconnue	Not Defined	Not Defined	0.00054	0.05	CVE-2020-9350
14/11/2019	9.1	9.1	SAS XML Mapper XML Data XML External Entity	Inconnue	Not Defined	Not Defined	0.00417	0.00	CVE-2019-14678
17/01/2019	7.4	7.1	SAS Web Infrastructure Platform BI Web Services XML External Entity	Inconnue	Not Defined	Official Fix	0.00168	0.00	CVE-2018-20733

8 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 8 results.

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!