Nginx Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

1.06
1.16
1.26
1.36
1.46

Contromisure

Official Fix43
Temporary Fix0
Workaround1
Unavailable0
Not Defined15

Sfruttabilità

High2
Functional0
Proof-of-Concept4
Unproven8
Not Defined45

Accesso al vettore

Not Defined0
Physical0
Local6
Adjacent5
Network48

Autenticazione

Not Defined0
High1
Low22
None36

Interazione dell'utente

Not Defined0
Required2
None57

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤30
≤40
≤53
≤622
≤713
≤814
≤95
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤58
≤618
≤717
≤811
≤93
≤102

VulDB

≤10
≤20
≤31
≤42
≤55
≤623
≤78
≤815
≤93
≤102

NVD

≤10
≤20
≤30
≤40
≤52
≤64
≤75
≤86
≤95
≤101

CNA

≤10
≤20
≤30
≤40
≤50
≤63
≤75
≤811
≤94
≤101

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k5
<2k24
<5k29
<10k1
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k58
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (152): 0.6.18, 0.7.64, 0.8, 0.8.1, 0.8.2, 0.8.3, 0.8.4, 0.8.5, 0.8.6, 0.8.7, 0.8.8, 0.8.9, 0.8.36, 1, 1.0, 1.0.1, 1.0.2, 1.0.3, 1.0.4, 1.0.5, 1.0.6, 1.0.7, 1.0.8, 1.0.9, 1.0.11, 1.0.12, 1.0.13, 1.0.14, 1.1, 1.1.1, 1.1.2, 1.1.3, 1.1.4, 1.1.5, 1.1.6, 1.1.7, 1.1.8, 1.1.9, 1.1.11, 1.1.12, 1.1.13, 1.1.14, 1.1.15, 1.1.16, 1.1.17, 1.1.18, 1.2, 1.2.6, 1.3, 1.3.1, 1.3.9, 1.3.15, 1.3.16, 1.4, 1.4.1, 1.4.2, 1.4.3, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6, 1.5.7, 1.5.8, 1.5.9, 1.5.11, 1.5.12, 1.6, 1.6.1, 1.6.2-5, 1.7, 1.7.1, 1.7.2, 1.7.3, 1.8, 1.9, 1.9.9, 1.10, 1.11, 1.12, 1.12.1, 1.12.2, 1.13, 1.13.1, 1.13.2, 1.13.3, 1.13.4, 1.13.5, 1.14, 1.15, 1.15.1, 1.15.2, 1.15.3, 1.15.4, 1.15.5, 1.16, 1.17, 1.17.1, 1.17.2, 1.17.3, 1.17.4, 1.17.5, 1.17.6, 1.18, 2, 2.0, 2.0.0.beta, 2.0.0.beta.1, 2.0.0.beta.2, 2.0.0.beta.3, 2.0.0.beta.4, 2.0.0.beta.5, 2.0.0.beta.6, 2.0.0.beta.7, 2.0.0.beta.8, 2.0.0.beta.9, 2.0.0.beta.11, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.11, 2.0.12, 2.1, 2.2, 2.3, 2.9, 2.9.1, 2.9.2, 2.9.3, 2.9.4, 2.9.5, 2.9.6, 2.9.7, 2.9.8, 2.9.9, 2.9.11, 2.9.12, 2.9.13, 2.9.14, 2.9.15, 2.9.16, 2.9.17, 2.9.18, 2.9.19

Link to Product Website: https://f5.com/

Tipo di software: Web Server

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
14/02/20246.76.6F5 NGINX Plus/NGINX Open Source QUIC Module buffer overflow$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-24990
14/02/20247.57.3F5 NGINX Plus/NGINX Open Source QUIC Module denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-24989
29/01/20248.88.60xJacky nginx-ui escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-23828
29/01/20248.58.40xJacky nginx-ui Certificate Import write_file.go directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2024-23827
11/01/20247.17.10xJacky Nginx-UI Setting escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-22198
11/01/20247.97.80xJacky Nginx-UI Setting escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2024-22197
11/01/20246.36.30xJacky Nginx-UI sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2024-22196
25/10/20237.67.5Kubernetes ingress-nginx API escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-5044
25/10/20237.67.5Kubernetes ingress-nginx API escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2023-5043
25/10/20236.56.5Kubernetes ingress-nginx API rivelazione di un 'informazione$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-4886

49 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 49 results.

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!