Cloud Foundry Vulnerabilità

Sequenza temporale

Versione

1.6.010
1.6.110
1.6.210
1.6.310
1.6.410

Contromisure

Official Fix78
Temporary Fix0
Workaround0
Unavailable0
Not Defined24

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined100

Accesso al vettore

Not Defined0
Physical0
Local4
Adjacent0
Network98

Autenticazione

Not Defined0
High0
Low34
None68

Interazione dell'utente

Not Defined0
Required28
None74

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤56
≤614
≤742
≤824
≤912
≤104

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤510
≤614
≤740
≤822
≤912
≤104

VulDB

≤10
≤20
≤34
≤46
≤516
≤618
≤726
≤826
≤92
≤104

NVD

≤10
≤20
≤30
≤40
≤54
≤66
≤714
≤836
≤928
≤1014

CNA

≤10
≤20
≤30
≤40
≤52
≤62
≤74
≤80
≤96
≤102

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k18
<2k44
<5k40
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k102
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (321): 0.1, 0.2, 0.3, 0.4, 0.5, 0.6, 0.7, 0.8, 0.9, 0.10, 0.11, 0.12, 0.13, 0.14, 0.15, 0.16, 0.17, 0.18, 0.19, 0.20, 0.21, 0.22, 0.23, 0.24, 0.25, 0.26, 0.27, 0.28, 0.29, 0.35, 0.187, 0.192, 1.0, 1.1, 1.2, 1.2.1, 1.2.2, 1.2.3, 1.2.4, 1.3, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.4.4, 1.4.5, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.5.8, 1.5.9, 1.5.11, 1.5.12, 1.5.13, 1.6, 1.6.1, 1.6.2, 1.6.3, 1.6.4, 1.6.5, 1.6.6, 1.6.7, 1.6.8, 1.6.9, 1.6.11, 1.6.12, 1.6.13, 1.6.14, 1.6.15, 1.6.16, 1.6.17, 1.6.18, 1.6.19, 1.6.21, 1.6.22, 1.6.23, 1.6.24, 1.6.25, 1.6.26, 1.6.27, 1.6.28, 1.6.29, 1.6.31, 1.6.32, 1.6.33, 1.6.34, 1.6.35, 1.6.36, 1.6.37, 1.7, 1.7.1, 1.7.2, 1.7.3, 1.7.4, 1.7.5, 1.7.6, 1.7.7, 1.7.8, 1.7.9, 1.7.11, 1.7.12, 1.7.13, 1.7.14, 1.7.15, 1.7.16, 1.7.17, 1.7.18, 1.8, 1.9, 1.10, 1.11, 1.12, 1.13, 1.14, 1.15, 1.16, 1.17, 1.18, 1.19, 1.20, 1.21, 1.22, 1.23, 1.24, 1.25, 1.26, 1.27, 1.28, 1.29, 1.30, 1.31, 1.32, 1.33, 1.34, 1.35, 1.36, 1.37, 1.38, 1.39, 1.40, 1.41, 1.42, 1.43, 1.44, 1.45, 1.46, 1.47, 1.48, 1.49, 1.50, 1.51, 1.52, 1.53, 1.54, 1.55, 1.56, 1.57, 1.58, 1.59, 1.60, 1.61, 1.62, 1.63, 1.64, 1.65, 1.66, 1.67, 1.68, 1.69, 1.70, 1.71, 1.72, 1.73, 1.74, 1.75, 1.76, 1.77, 1.78, 1.79, 1.80, 1.81, 1.82, 1.83, 1.84, 1.85, 1.86, 1.87, 1.88, 1.89, 1.90, 2.0, 2.1, 2.2, 2.3, 2.3.1, 2.4, 2.5, 2.5.1, 2.5.2, 2.5.3, 2.5.4, 2.5.5, 2.5.6, 2.5.7, 2.5.8, 2.5.9, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 3.0, 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5, 4.5.6, 4.6, 4.7, 4.7.1, 4.7.2, 4.7.3, 4.7.4, 4.7.5, 4.8, 4.9, 4.10, 4.10.1, 4.11, 4.12, 4.12.1, 4.12.2, 4.12.3, 4.13, 4.14, 4.15, 4.16, 4.17, 4.18, 4.19, 4.19.1, 7.0, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 60.0, 61.0, 62.0, 63.0, 64.0, 70.0, 72.0, 73.0, 73.1, 73.2, 73.3, 74.0, 74.1, 74.2, 74.3, 74.4, 74.5, 74.6, 74.7, 74.8, 74.9, 227, 228, 238, 244, 247, 248, 249, 250, 251, 252, 254, 260, 261.0, 261.1, 261.2, 267.0, 267.1, 267.2, 267.3, 267.4, 267.5, 267.6, 267.7, 267.8, 267.9, 267.10, 267.11, 267.12, 267.13, 270.0, 270.1

Tipo di software: Cloud Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
03/09/20206.36.1Cloud Foundry Routing escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5420
21/08/20206.76.5Cloud Foundry Routing Nginx denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5416
27/02/20206.56.2Cloud Foundry UAA OAuth2 cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5402
27/02/20205.35.1Cloud Foundry Routing Gorouter denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5401
27/02/20205.55.2Cloud Foundry Cloud Controller Job rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5400
12/02/20205.35.1Cloud Foundry CredHub Database Connection crittografia debole$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5399
06/12/20196.56.2Cloud Foundry UAA Log Credentials rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11293
26/11/20196.56.2Cloud Foundry UAA Log Credentials rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11290
19/11/20197.26.9Cloud Foundry Routing Nonce escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11289
23/10/20195.04.9Cloud Foundry UAA SCIM rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2019-11282
09/08/20194.94.8Cloud Foundry UAA SCIM Filter cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11274
05/08/20197.47.3Cloud Foundry UAA escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11270
18/07/20195.75.6Cloud Foundry UAA X-Frame-Options escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3794
11/07/20195.05.0Cloud Foundry UAA rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11268
19/06/20197.67.5Cloud Foundry UAA Password Recovery escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3787
19/06/20195.75.7Cloud Foundry BOSH BOSH Director Credentials rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11271
25/04/20198.68.5Cloud Foundry cf-deployment Java Hijacking escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3801
25/04/20197.06.9Cloud Foundry UAA Redirect URI Phishing$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3788
24/04/20196.46.1Cloud Foundry Domain escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3789
13/03/20197.06.9Cloud Foundry Cloud Controller Bit-Service escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3785
07/03/20197.06.9Cloud Foundry Stratos Session autenticazione debole$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2019-3784
07/03/20197.97.8Cloud Foundry Stratos Session Store Secret escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2019-3783
07/03/20196.76.6Cloud Foundry CLI Log escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3781
07/03/20196.66.5Cloud Foundry UAA Email Address autenticazione debole$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-3775
20/02/20196.56.5Cloud Foundry Plugin AbstractCloudFoundryPushDescriptor.java rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-1003025

77 non vengono visualizzate più voci

Do you need the next level of professionalism?

Upgrade your account now!