Firefly Iii Vulnerabilità

Sequenza temporale

Versione

4.7.17.04
4.7.17.14
4.7.17.24
4.7.02
4.7.12

Contromisure

Official Fix20
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined20

Accesso al vettore

Not Defined0
Physical0
Local4
Adjacent0
Network16

Autenticazione

Not Defined0
High2
Low14
None4

Interazione dell'utente

Not Defined0
Required16
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤34
≤42
≤510
≤64
≤70
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤34
≤42
≤512
≤62
≤70
≤80
≤90
≤100

VulDB

≤10
≤20
≤34
≤412
≤54
≤60
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤68
≤72
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤42
≤50
≤60
≤72
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k10
<2k10
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k20
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (27): 4.7, 4.7.1, 4.7.2, 4.7.3, 4.7.4, 4.7.5, 4.7.6, 4.7.7, 4.7.8, 4.7.9, 4.7.11, 4.7.12, 4.7.13, 4.7.14, 4.7.15, 4.7.16, 4.7.17, 4.7.17.1, 4.7.17.2, 4.7.17.3, 4.7.17.4, 4.7.17.5, 5.4, 5.4.1, 5.4.2, 5.4.3, 5.4.4

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
28/10/20213.53.4Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3901
28/10/20215.05.0Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3900
19/10/20215.04.9Firefly III Redirect$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3851
19/10/20215.15.0Firefly III escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3846
27/09/20215.85.7Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3819
23/08/20214.34.1Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2021-3730
23/08/20214.34.1Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3729
23/08/20214.34.1Firefly III cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3728
25/07/20212.52.4Firefly III rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-3663
29/10/20202.62.5Firefly III Auto-Complete cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-27981

10 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 10 results.

PrecedenteVisione D'insiemeIl prossimo

Want to stay up to date on a daily basis?

Enable the mail alert feature now!