Cisco Ironport Asyncos Vulnerabilità

Sequenza temporale

Versione

7.02
7.12
7.22
7.32
7.42

Contromisure

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined2

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network4

Autenticazione

Not Defined0
High0
Low2
None2

Interazione dell'utente

Not Defined0
Required2
None2

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤50
≤60
≤70
≤80
≤90
≤102

VulDB

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤102

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k0
<10k2
<25k2
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k4
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

Affected Versions (20): 6.0, 6.1, 6.2, 6.3, 6.4, 6.5, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 9.1, 9.1.1, 9.1.2, 9.7, 9.7.1, 9.7.2, 10.0

Link to Product Website: https://www.cisco.com/

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
22/09/20169.89.6Cisco IronPort AsyncOS Enrollment Client escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-6406
20/03/20149.99.5Cisco Ironport Asyncos escalazione di privilegi$5k-$25kCalcoloNot DefinedOfficial Fix0.00CVE-2014-2119
03/06/20094.33.9Cisco IronPort AsyncOS Login Page cross site scripting$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2009-1162

altre voci di Cisco

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!