Sails Vulnerabilità

Sequenza temporale

Versione

1.5.01
1.5.11
1.5.21
1.5.31
1.5.41

Contromisure

Official Fix2
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

Sfruttabilità

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined3

Accesso al vettore

Not Defined0
Physical0
Local0
Adjacent1
Network3

Autenticazione

Not Defined0
High0
Low2
None2

Interazione dell'utente

Not Defined0
Required1
None3

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤61
≤72
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤51
≤61
≤72
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤50
≤64
≤70
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤51
≤60
≤70
≤81
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k1
<2k2
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k4
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Versions (21): 0.12, 0.12.1, 0.12.2, 0.12.3, 0.12.4, 0.12.5, 0.12.6, 0.12.7, 1.0, 1.0.0-45, 1.1, 1.2, 1.3, 1.4, 1.5, 1.5.1, 1.5.2, 1.5.3, 1.5.4, 1.5.5, 1.5.6

Data di pubblicazioneBaseTempVulnerabilità0dayOggiSfrConCTICVE
27/07/20236.46.3Sails Node Process denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-38504
17/03/20225.55.2SailsJS Sails.js load-action-modules.js loadActionModules escalazione di privilegi$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2021-44908
21/07/20206.46.1Sails.js sails-hook-sockets escalazione di privilegi$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-21036
31/05/20185.05.0Sails cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2016-10549

PrecedenteVisione D'insiemeIl prossimo

Do you need the next level of professionalism?

Upgrade your account now!