Ox Software Ox App Suite Vulnerabilità

Sequenza temporale

L'anno scorso

Versione

7.10.150
7.10.049
7.10.248
7.10.348
7.10.442

Contromisure

Official Fix49
Temporary Fix0
Workaround0
Unavailable0
Not Defined76

Sfruttabilità

High0
Functional0
Proof-of-Concept8
Unproven0
Not Defined117

Accesso al vettore

Not Defined0
Physical8
Local5
Adjacent20
Network92

Autenticazione

Not Defined0
High5
Low90
None30

Interazione dell'utente

Not Defined0
Required62
None63

C3BM Index

L'anno scorso

CVSSv3 Base

≤10
≤20
≤31
≤425
≤556
≤627
≤79
≤82
≤95
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤430
≤553
≤625
≤79
≤82
≤95
≤100

VulDB

≤10
≤21
≤33
≤459
≤533
≤619
≤74
≤86
≤90
≤100

NVD

≤10
≤20
≤30
≤41
≤516
≤615
≤730
≤86
≤93
≤109

CNA

≤10
≤20
≤30
≤44
≤57
≤613
≤72
≤87
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k58
<2k58
<5k9
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k121
<2k4
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

L'anno scorso

🔴 CTI Attività

Affected Versions (37): 2.10.7-rev6, 7.1, 7.8, 7.8.1, 7.8.2, 7.8.3, 7.8.4, 7.10.1, 7.10.2, 7.10.3, 7.10.3-rev3, 7.10.3-rev31, 7.10.4, 7.10.4-rev3, 7.10.4-rev17, 7.10.5, 7.10.5-rev5, 7.10.6, 7.10.6-rev5, 7.10.6-rev7, 7.10.6-rev23, 7.10.6-rev29, 7.10.6-rev36, 7.10.6-rev48, 8.0, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 8.7, 8.8, 8.9, 8.10, 8.11, 8.12

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
02/11/20235.25.2OX Software OX App Suite Presentation cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-29043
02/11/20236.96.9OX Software OX App Suite Image Metadata sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26454
02/11/20235.95.9OX Software OX App Suite Image Cache sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26452
02/11/20234.44.4OX Software OX App Suite Drawing cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29045
02/11/20234.44.4OX Software OX App Suite Document cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29044
02/11/20234.34.3OX Software OX App Suite Network Connection denial of service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29046
02/11/20234.44.4OX Software OX App Suite OX Guard cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26456
02/11/20235.95.9OX Software OX App Suite RMI ChronosRMIService:setEventOrganizer. autenticazione debole$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26455
02/11/20236.96.9OX Software OX App Suite Local Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26453
02/11/20235.65.6OX Software OX App Suite Imageconverter API sql injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29047
02/08/20232.82.8OX Software OX App Suite Cache Service escalazione di privilegi$0-$5kCalcoloNot DefinedOfficial Fix0.00CVE-2023-26442
02/08/20236.36.2OX Software OX App Suite Cache Service API sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26440
02/08/20233.63.6OX Software OX App Suite Control Character escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26430
02/08/20236.66.5OX Software OX App Suite Cache Service API sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26439
02/08/20235.05.0OX Software OX App Suite Cache Service directory traversal$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26441
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26447
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26448
02/08/20234.44.4OX Software OX App Suite Web Interface cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26446
02/08/20236.76.6OX Software OX App Suite Autocomplete Search sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-26443
02/08/20236.46.3OX Software OX App Suite crittografia debole$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26451
02/08/20234.84.7OX Software OX App Suite Frontend Theme cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-26445
02/08/20234.34.2OX Software OX App Suite JDK DNS Cache escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26438
02/08/20234.44.4OX Software OX App Suite Count Web Service cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2023-26450
02/08/20234.44.4OX Software OX App Suite Chat Web Service cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26449
20/06/20236.76.7OX Software OX App Suite API Endpoint documentconverterws escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-26436

100 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 100 results.

altre voci di Ox Software

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!