Progress Sitefinity Cms Vulnerabilità

Sequenza temporale

Versione

10.x3
11.02
10.01
4.x1
5.x1

Contromisure

Official Fix1
Temporary Fix0
Workaround0
Unavailable0
Not Defined4

Sfruttabilità

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined4

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent0
Network5

Autenticazione

Not Defined0
High0
Low0
None5

Interazione dell'utente

Not Defined0
Required1
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤64
≤70
≤81
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤64
≤70
≤81
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤51
≤63
≤70
≤81
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤74
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k4
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k5
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (8): 4.0, 5.0, 6.0, 7.0, 8.0, 9.0, 10.0, 11.0

Tipo di software: Content Management System

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
06/11/20195.25.1Progress Sitefinity CMS cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.00CVE-2017-18639
03/10/20185.75.7Progress Sitefinity CMS Identity Server cross site scripting$0-$5kCalcoloNot DefinedNot Defined0.00CVE-2018-17054
03/10/20185.75.7Progress Sitefinity CMS Identity Server cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2018-17053
28/09/20185.75.7Progress Sitefinity CMS ServiceStack cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2018-17056
28/09/20187.47.4Progress Sitefinity CMS Image Upload escalazione di privilegi$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2018-17055

altre voci di Progress

PrecedenteVisione D'insiemeIl prossimo

Do you want to use VulDB in your project?

Use the official API to access entries easily!