Oracle Application Session Controller Vulnerabilità

Sequenza temporale

Versione

3.7.16
3.8.06
3.04
3.14
3.24

Contromisure

Official Fix22
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined20

Accesso al vettore

Not Defined0
Physical0
Local2
Adjacent0
Network20

Autenticazione

Not Defined0
High0
Low2
None20

Interazione dell'utente

Not Defined0
Required6
None16

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤50
≤62
≤76
≤88
≤92
≤102

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤50
≤66
≤72
≤88
≤92
≤102

VulDB

≤10
≤20
≤30
≤42
≤50
≤64
≤74
≤88
≤92
≤102

NVD

≤10
≤20
≤30
≤42
≤50
≤62
≤76
≤84
≤92
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤92
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤62
≤72
≤84
≤90
≤102

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k0
<10k4
<25k14
<50k2
<100k2
≥100k0

Exploiter aujourd'hui

<1k16
<2k4
<5k0
<10k0
<25k2
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (15): 3.0, 3.1, 3.2, 3.3, 3.4, 3.5, 3.6, 3.7, 3.7.1, 3.8, 3.8m0, 3.9, 3.9m0p1, 3.9m0p2, 3.9m0p3

Link to Product Website: https://www.oracle.com

Tipo di software: Cloud Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
19/10/20215.35.2Oracle Communications Application Session Controller Apache Commons IO rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-29425
19/10/20218.38.1Oracle Communications Application Session Controller JDBC Remote Code Execution$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-2351
20/07/20217.57.2Oracle Communications Application Session Controller dojo escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-5258
21/04/20216.76.4Oracle Communications Application Session Controller Security escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-11987
21/04/20219.08.6Oracle Communications Application Session Controller Bouncy Castle Java Library Remote Code Execution$100k et plus$5k-$25kNot DefinedOfficial Fix0.00CVE-2020-28052
20/01/20217.57.2Oracle Communications Application Session Controller Apache Batik escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-17566
20/01/20217.47.1Oracle Communications Application Session Controller Eclipse Jetty Local Privilege Escalation$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-27216
20/10/20203.73.6Oracle Communications Application Session Controller WS/WEB rivelazione di un 'informazione$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-9488
20/10/20206.15.8Oracle Communications Application Session Controller cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-11022
20/10/20209.49.0Oracle Communications Application Session Controller WS/WEB escalazione di privilegi$25k-$100k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-17638

11 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 11 results.

altre voci di Oracle

PrecedenteVisione D'insiemeIl prossimo

Might our Artificial Intelligence support you?

Check our Alexa App!