Cisco Application Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

1.111
1.08
5.05
1.1(0.920a)3
1.3(2f)3

Contromisure

Official Fix61
Temporary Fix0
Workaround1
Unavailable0
Not Defined28

Sfruttabilità

High2
Functional0
Proof-of-Concept4
Unproven2
Not Defined82

Accesso al vettore

Not Defined0
Physical1
Local13
Adjacent2
Network74

Autenticazione

Not Defined0
High4
Low29
None57

Interazione dell'utente

Not Defined0
Required11
None79

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤43
≤511
≤625
≤711
≤822
≤911
≤107

CVSSv3 Temp

≤10
≤20
≤30
≤43
≤513
≤624
≤716
≤817
≤911
≤106

VulDB

≤10
≤20
≤32
≤45
≤511
≤619
≤711
≤824
≤911
≤107

NVD

≤10
≤20
≤30
≤40
≤52
≤614
≤711
≤88
≤94
≤102

CNA

≤10
≤20
≤30
≤41
≤54
≤66
≤72
≤84
≤93
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k1
<2k0
<5k4
<10k37
<25k42
<50k6
<100k0
≥100k0

Exploiter aujourd'hui

<1k54
<2k11
<5k12
<10k12
<25k1
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (69): 1.0, 1.0(1), 1.0(1.110a), 1.0(1e), 1.0(1h), 1.0(1k), 1.0(1n), 1.0(2j), 1.0(2m), 1.0(3f), 1.0(3i), 1.0(3k), 1.0(3n), 1.0(4h), 1.0(4o), 1.0.1, 1.1, 1.1(0.920a), 1.1(1j), 1.1(3f), 1.1j, 1.2, 1.2 Base, 1.2(2), 1.2(3), 1.2.2, 1.3, 1.3(1), 1.3(2), 1.3(2f), 1.4, 2.0 Base, 2.0(1), 3.0, 3.1, 3.2, 3.3, 4.0.9, 4.4, 4.4(7), 4.4.1, 4.4.2, 5, 5.0, 5.0.1, 5.0.2, 5.1, 5.2, 5.3, 5.5(9), 6.0(1), 6.2(1), 6.2(3), 6.2(3a), 6.2.1, 6.2.1a, 6.2.3a, 6.3(1), 8.0, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.2, 8.3, 8.4, 8.5, 15.3(3)JA, 4700 A5 3

Link to Product Website: https://www.cisco.com/

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
10/01/20244.24.2Cisco BroadWorks Application Delivery Platform Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-20270
07/09/20239.99.7Cisco BroadWorks Application Delivery Platform Single Sign-On Remote Code Execution$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-20238
23/08/20236.46.2Cisco Application Policy Infrastructure Controller Security Domain escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-20230
16/08/20237.57.3Cisco Duo Device Health Application directory traversal$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20229
02/08/20234.44.4Cisco BroadWorks Application Delivery Platform cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-20204
22/02/20237.37.2Cisco Application Policy Infrastructure Controller cross site request forgery$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-20011
11/01/20235.25.1Cisco BroadWorks Application Delivery Platform cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20019
11/01/20238.07.9Cisco BroadWorks Application Delivery Platform denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-20020
02/11/20227.87.7Cisco BroadWorks CommPilot Application Software Web-based Management Interface Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20958
02/11/20226.26.1Cisco BroadWorks CommPilot Application Software escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-20951

80 non vengono visualizzate più voci

altre voci di Cisco

Do you need the next level of professionalism?

Upgrade your account now!