Dolibarr Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

7.0.05
8.0.25
6.0.05
15.x4
13.0.04

Contromisure

Official Fix41
Temporary Fix0
Workaround0
Unavailable0
Not Defined29

Sfruttabilità

High1
Functional0
Proof-of-Concept5
Unproven0
Not Defined64

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent1
Network69

Autenticazione

Not Defined0
High5
Low39
None26

Interazione dell'utente

Not Defined0
Required34
None36

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤44
≤527
≤610
≤711
≤89
≤99
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤44
≤527
≤614
≤79
≤87
≤99
≤100

VulDB

≤10
≤20
≤32
≤421
≤518
≤65
≤713
≤811
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤619
≤78
≤85
≤96
≤1011

CNA

≤10
≤20
≤30
≤40
≤53
≤62
≤70
≤82
≤92
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k13
<2k49
<5k8
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k70
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (55): 2.5, 2.6, 2.6.1, 2.7, 2.7.1, 2.8, 2.8.1, 2.9, 3, 3.0.1, 3.1, 3.2, 3.5.3, 3.6, 6, 6.0.2, 6.0.4, 7, 7.0, 7.0.1, 7.0.2, 7.0.3, 8.0.2, 9.0.1, 9.0.5, 10.0.1, 10.0.2, 10.0.6, 11, 11.0, 11.0.0-alpha, 11.0.1, 11.0.2, 11.0.3, 11.0.4, 12.0.3, 12.0.5, 13, 13.0.1, 13.0.2, 13.0.3, 13.0.4, 14, 14.0, 14.0.1, 14.0.2, 15.0, 16, 16.0.1, 16.0.2, 16.0.3, 16.0.4, 16.0.5, 17.0, = 18.0.4

Tipo di software: Enterprise Resource Planning Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
25/01/20245.85.8Dolibarr cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2024-23817
30/10/20234.04.0Dolibarr cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5842
01/10/20235.05.0Dolibarr cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-5323
13/06/20235.95.8Dolibarr rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-33568
30/05/20237.57.4Dolibarr escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-30253
21/11/20227.87.8Dolibarr sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-4093
17/11/20228.07.7Dolibarr API escalazione di privilegi$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.03CVE-2022-43138
13/06/20225.95.9Dolibarr cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-2060
09/06/20223.53.4Dolibarr SQL Error Page cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30875
02/03/20225.95.8Dolibarr escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-0819

60 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 60 results.

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!