Osclass Vulnerabilità

Sequenza temporale

Versione

3.4.05
3.4.15
2.3.45
1.12
1.22

Contromisure

Official Fix10
Temporary Fix0
Workaround0
Unavailable0
Not Defined3

Sfruttabilità

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined11

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent1
Network12

Autenticazione

Not Defined0
High1
Low2
None10

Interazione dell'utente

Not Defined0
Required4
None9

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤53
≤64
≤72
≤84
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤54
≤65
≤74
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤55
≤62
≤72
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k3
<2k6
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k12
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (22): 1.1, 1.2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.1, 2.1.1, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.3.1, 2.3.2, 2.3.3, 2.3.4, 2.3.5, 3.4, 3.4.1, 3.6.1, 3.7.4, 5.1.2

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
28/02/20245.55.5Osclass sql injection$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2024-27515
24/05/20195.95.9OSClass plugins.php directory traversal$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2016-10751
03/01/20195.25.2OSClass index.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-14481
05/01/20157.37.0OSClass File Upload doModel escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2014-8085
05/01/20157.37.0OSClass JAXP directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-8084
05/01/20157.37.0OSClass setJsonAlert sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2014-8083
20/10/20145.34.8OSClass directory traversal$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.02CVE-2014-6308
20/10/20144.34.1OSClass cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2014-6280
25/09/20124.34.1OSClass cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-5163
25/09/20126.36.0OSClass sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2012-5162

3 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 3 results.

PrecedenteVisione D'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!