Oracle Communications Webrtc Session Controller Vulnerabilità

Sequenza temporale

Versione

7.021
7.121
7.215
7.2.14
7.2.03

Contromisure

Official Fix28
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

Sfruttabilità

High1
Functional0
Proof-of-Concept2
Unproven0
Not Defined25

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network28

Autenticazione

Not Defined0
High1
Low4
None23

Interazione dell'utente

Not Defined0
Required5
None23

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤41
≤51
≤64
≤75
≤88
≤95
≤104

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤50
≤68
≤73
≤88
≤94
≤103

VulDB

≤10
≤20
≤30
≤41
≤52
≤63
≤75
≤89
≤94
≤104

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤75
≤85
≤92
≤106

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤82
≤90
≤100

Fornitore

≤10
≤20
≤30
≤41
≤52
≤62
≤73
≤87
≤94
≤103

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k0
<5k0
<10k8
<25k16
<50k0
<100k3
≥100k1

Exploiter aujourd'hui

<1k21
<2k1
<5k2
<10k2
<25k2
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (4): 7.0, 7.1, 7.2, 7.2.1

Link to Product Website: https://www.oracle.com

Tipo di software: Cloud Software

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
17/10/20237.57.3Oracle Communications WebRTC Session Controller Security denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-45688
19/10/20227.67.5Oracle Communications WebRTC Session Controller Platform denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25647
19/10/20229.08.9Oracle Communications WebRTC Session Controller Platform Remote Code Execution$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2021-23450
19/04/20226.66.4Oracle Communications WebRTC Session Controller Admin console/LWPR escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-44832
19/01/20215.95.8Oracle Communications WebRTC Session Controller Signaling Engine/Media Engine denial of service$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-45105
20/10/20206.15.8Oracle Communications WebRTC Session Controller ME cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-11022
15/04/20206.15.8Oracle Communications WebRTC Session Controller WSC-Console cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-11358
16/01/20195.45.3Oracle Communications WebRTC Session Controller jQuery FileUpload denial of service$5k-$25kCalcoloNot DefinedOfficial Fix0.00CVE-2018-0732
16/01/20196.16.0Oracle Communications WebRTC Session Controller OpenSSL cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2015-9251
16/01/20198.18.0Oracle Communications WebRTC Session Controller Apache Batik escalazione di privilegi$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-8013

18 non vengono visualizzate più voci

altre voci di Oracle

Do you want to use VulDB in your project?

Use the official API to access entries easily!