Linux Foundation Vulnerabilità

Sequenza temporale

Genere

Virtualization Software128
Not Defined14
Printing Software4

Prodotto

Linux Foundation Xen122
Linux Foundation ONOS10
Linux Foundation cups-filters4
Linux Foundation xen4
Linux Foundation foomatic2

Contromisure

Official Fix102
Temporary Fix0
Workaround4
Unavailable0
Not Defined40

Sfruttabilità

High0
Functional0
Proof-of-Concept8
Unproven48
Not Defined90

Accesso al vettore

Not Defined0
Physical0
Local90
Adjacent20
Network36

Autenticazione

Not Defined0
High2
Low60
None84

Interazione dell'utente

Not Defined0
Required2
None144

C3BM Index

CVSSv3 Base

≤10
≤20
≤34
≤436
≤512
≤646
≤720
≤814
≤912
≤102

CVSSv3 Temp

≤10
≤20
≤310
≤434
≤520
≤642
≤718
≤816
≤96
≤100

VulDB

≤10
≤20
≤34
≤436
≤514
≤642
≤722
≤816
≤910
≤102

NVD

≤10
≤20
≤30
≤40
≤54
≤60
≤72
≤82
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fornitore

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 giorni

<1k0
<2k4
<5k24
<10k70
<25k34
<50k14
<100k0
≥100k0

Exploiter aujourd'hui

<1k122
<2k0
<5k16
<10k6
<25k2
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

🔴 CTI Attività

Affected Products (10): ONOS (8), ONOS SDN Controller (1), XEN (1), Xen (122), Xen Elf Parser (1), cups-filters (5), foomatic (1), libvchan (1), xen (5), zephyr (1)

Link to Vendor Website: https://www.linuxfoundation.org/

Data di pubblicazioneBaseTempVulnerabilitàProdSfrConEPSSCTICVE
06/10/20214.34.2Linux Foundation zephyr Key Distribution denial of serviceSconosciutoNot DefinedOfficial Fix0.001020.00CVE-2021-3436
22/07/20198.58.5Linux Foundation ONOS YangLiveCompilerManager.java runJavaCompiler escalazione di privilegiSconosciutoNot DefinedNot Defined0.004380.00CVE-2019-1010234
19/07/20198.58.4Linux Foundation ONOS SDN Controller YangLiveCompilerManager.java escalazione di privilegiSconosciutoNot DefinedOfficial Fix0.002840.02CVE-2019-1010245
18/07/20195.65.6Linux Foundation ONOS FlowRuleManager.java apply escalazione di privilegiSconosciutoNot DefinedNot Defined0.000740.00CVE-2019-1010252
18/07/20195.65.6Linux Foundation ONOS FlowWebResource.java createFlows escalazione di privilegiSconosciutoNot DefinedNot Defined0.000690.00CVE-2019-1010250
18/07/20194.84.8Linux Foundation ONOS FlowWebResource.java createFlow buffer overflowSconosciutoNot DefinedNot Defined0.000700.00CVE-2019-1010249
17/07/20178.58.5Linux Foundation ONOS OAR escalazione di privilegiSconosciutoNot DefinedNot Defined0.015100.00CVE-2017-1000081
17/07/20177.47.4Linux Foundation ONOS WebSocket escalazione di privilegiSconosciutoNot DefinedNot Defined0.000960.00CVE-2017-1000080
17/07/20176.46.4Linux Foundation ONOS denial of serviceSconosciutoNot DefinedNot Defined0.001180.00CVE-2017-1000079
17/07/20175.25.2Linux Foundation ONOS Device Registration cross site scriptingSconosciutoNot DefinedNot Defined0.000890.01CVE-2017-1000078
10/03/20155.14.5Linux Foundation Xen x86 Emulation escalazione di privilegiVirtualization SoftwareUnprovenOfficial Fix0.000860.00CVE-2015-2151
05/03/20154.03.5Linux Foundation Xen Emulation Routine rivelazione di un 'informazioneVirtualization SoftwareUnprovenOfficial Fix0.000600.00CVE-2015-2044
05/03/20154.03.5Linux Foundation Xen HYPERVISOR_xen_version rivelazione di un 'informazioneVirtualization SoftwareUnprovenOfficial Fix0.000620.00CVE-2015-2045
12/02/20156.25.4Linux Foundation Xen Register escalazione di privilegiVirtualization SoftwareUnprovenOfficial Fix0.000590.00CVE-2015-0268
29/01/20156.25.4Linux Foundation Xen GIC denial of serviceVirtualization SoftwareUnprovenOfficial Fix0.000000.02
29/01/20154.03.8Linux Foundation Xen GIC Logging Rate Limit denial of serviceVirtualization SoftwareNot DefinedOfficial Fix0.000620.02CVE-2015-1563
06/01/20154.03.5Linux Foundation Xen buffer overflowVirtualization SoftwareUnprovenOfficial Fix0.008540.02CVE-2015-0361
08/12/20143.33.2Linux Foundation Xen P2M Lock denial of serviceVirtualization SoftwareNot DefinedOfficial Fix0.000620.09CVE-2014-9066
08/12/20143.32.9Linux Foundation Xen P2M Lock denial of serviceVirtualization SoftwareUnprovenOfficial Fix0.000620.02CVE-2014-9065
27/11/20144.03.5Linux Foundation Xen REP MOVS Acceleration Support denial of serviceVirtualization SoftwareUnprovenOfficial Fix0.000620.00CVE-2014-8867
27/11/20149.08.6Linux Foundation Xen Compatibility Mode denial of serviceVirtualization SoftwareNot DefinedOfficial Fix0.000620.02CVE-2014-8866
20/11/20143.73.6Linux Foundation Xen MMU_MACHPHYS_UPDATE Processing escalazione di privilegiVirtualization SoftwareNot DefinedOfficial Fix0.002940.00CVE-2014-9030
20/11/20144.33.8Linux Foundation Xen denial of serviceVirtualization SoftwareUnprovenOfficial Fix0.002940.00CVE-2014-9030
18/11/20149.07.8Linux Foundation Xen x86 Emulation Local Privilege EscalationVirtualization SoftwareUnprovenOfficial Fix0.000620.00CVE-2014-8595
18/11/20144.03.5Linux Foundation Xen MMU Virtualization do_mmu_update escalazione di privilegiVirtualization SoftwareUnprovenOfficial Fix0.006700.00CVE-2014-8594

121 non vengono visualizzate più voci

🔒 Login Required

You need to signup and login to see more of the remaining 121 results.

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!