Inotes Vulnerabilità

Versione

9.0	16
8.5	12
8.5.3.0	10
8.5.1	8
8.5.2	8

Contromisure

Official Fix	40
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	12

Sfruttabilità

High	22
Functional	0
Proof-of-Concept	4
Unproven	2
Not Defined	24

Accesso al vettore

Not Defined	0
Physical	0
Local	2
Adjacent	0
Network	50

Autenticazione

Not Defined	0
High	0
Low	14
None	38

Interazione dell'utente

Not Defined	0
Required	38
None	14

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	14
≤6	18
≤7	12
≤8	2
≤9	0
≤10	6

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	14
≤6	28
≤7	2
≤8	2
≤9	4
≤10	2

VulDB

≤1	0
≤2	0
≤3	0
≤4	4
≤5	16
≤6	14
≤7	10
≤8	2
≤9	0
≤10	6

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	8
≤7	8
≤8	6
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	0
≤8	0
≤9	0
≤10	0

Fornitore

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 giorni

<1k	4
<2k	4
<5k	0
<10k	28
<25k	10
<50k	6
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	46
<2k	2
<5k	4
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (51): 6.5.4, 8.0.2, 8.5, 8.5.1, 8.5.1.1, 8.5.1.5, 8.5.2, 8.5.2 FP6 IF1, 8.5.2.1, 8.5.2.4, 8.5.3, 8.5.3 FP6, 8.5.3.1, 8.5.3.2, 8.5.3.3, 8.5.3.4, 8.5.3.5, 8.5.3.6, 9, 9.0, 9.0.1, 9.0.1.1, 9.0.1.8, 10, 10.0.1 FP5, 11, 11.0.1 FP1, 229, 229.0, 229.1, 229.2, 229.3, 229.4, 229.5, 229.6, 229.7, 229.8, 229.9, 229.10, 229.11, 229.12, 229.13, 229.14, 229.15, 229.16, 229.17, 229.18, 229.19, 229.20, 229.210, 229.260

Data di pubblicazione	Base	Temp	Vulnerabilità	0day	Oggi	Sfr	Con	CTI	CVE
29/08/2022	5.9	5.9	HCL iNotes Redirect	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-27547
29/08/2022	6.2	6.2	HCL iNotes URL cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-27546
29/08/2022	5.7	5.7	HCL iNotes Form autenticazione debole	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-27558
21/12/2020	4.3	4.3	HCL iNotes Message Content rivelazione di un 'informazione	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-14225
19/12/2020	4.3	4.3	HCL iNotes Message Content or cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2020-14271
01/12/2020	4.8	4.6	HCL iNotes HTTP Session crittografia debole	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-4126
11/07/2018	6.7	6.6	IBM iNotes Redirect	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2013-0594
13/02/2018	6.5	6.5	IBM iNotes DLL escalazione di privilegi	$5k-$25k	$0-$5k	Not Defined	Not Defined	0.05	CVE-2017-1711
13/12/2017	5.2	5.2	IBM iNotes Web UI cross site scripting	$5k-$25k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2017-1421
03/08/2017	5.2	5.2	IBM iNotes Web UI cross site scripting	$5k-$25k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2017-1327