Owasp Vulnerabilidades

Curso de tempo

Tipo

Not Defined	31
Programming Language Software	4
Automation Software	1

Produto

OWASP ModSecurity Core Rule Set	13
OWASP AntiSamy	6
OWASP json-sanitizer	3
OWASP ESAPI	2
OWASP ModSecurity	1

Medidas

Official Fix	24
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	12

Explorabilidade

High	2
Functional	0
Proof-of-Concept	3
Unproven	0
Not Defined	31

Tipo de acesso

Not Defined	0
Physical	0
Local	1
Adjacent	2
Network	33

Autenticação

Not Defined	0
High	0
Low	8
None	28

Actividade do utilizador

Not Defined	0
Required	13
None	23

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	2
≤5	7
≤6	12
≤7	6
≤8	7
≤9	1
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	1
≤4	2
≤5	9
≤6	12
≤7	8
≤8	4
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	1
≤4	4
≤5	11
≤6	10
≤7	2
≤8	8
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	5
≤7	3
≤8	6
≤9	0
≤10	2

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	1
≤7	0
≤8	3
≤9	1
≤10	0

Fabricante

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explorar 0 dia

<1k	10
<2k	16
<5k	8
<10k	1
<25k	1
<50k	0
<100k	0
≥100k	0

Explorar hoje

<1k	34
<2k	0
<5k	0
<10k	2
<25k	0
<50k	0
<100k	0
≥100k	0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (17): AntiSamy (6), CSRFGuard (1), Dependency-Check (1), ESAPI (2), ESAPI for Java (1), Enterprise Security API (1), Java Encoder (1), Java HTML Sanitizer (1), ModSecurity (1), ModSecurity Core Rule Set (13), NodeGoat (1), PHP CSRF Guard (1), Stinger (1), WebScarab (1), ZAP (1), json-sanitizer (3), libModSecurity (1)

Publicado em	Base	Temp	Vulnerabilidade	Prod	Exp	Mas	EPSS	CTI	CVE
30/01/2024	6.9	6.8	OWASP ModSecurity/libModSecurity Path direitos alargados	Desconhecido	Not Defined	Official Fix	0.00052	0.04	CVE-2024-1019
13/07/2023	7.3	7.0	OWASP ModSecurity Core Rule Set Content-Header direitos alargados	Desconhecido	Not Defined	Official Fix	0.00091	0.02	CVE-2023-38199
18/12/2022	5.4	5.3	OWASP NodeGoat Query Parameter research.js Negação de Serviço	Desconhecido	Not Defined	Official Fix	0.00085	0.10	CVE-2021-4247
20/09/2022	7.4	7.3	OWASP ModSecurity Core Rule Set Response Body direitos alargados	Desconhecido	Not Defined	Official Fix	0.00246	0.00	CVE-2022-39957
20/09/2022	6.4	6.3	OWASP ModSecurity Core Rule Set Response Body direitos alargados	Desconhecido	Not Defined	Official Fix	0.00253	0.00	CVE-2022-39958
20/09/2022	7.3	7.0	OWASP ModSecurity Core Rule Set HTTP Multipart Request direitos alargados	Desconhecido	Not Defined	Official Fix	0.00338	0.00	CVE-2022-39956
20/09/2022	8.1	8.0	OWASP ModSecurity Core Rule Set HTTP Header direitos alargados	Desconhecido	Not Defined	Official Fix	0.00928	0.02	CVE-2022-39955
28/04/2022	4.8	4.7	OWASP ESAPI Configuration File Roteiro Cruzado de Sítios	Desconhecido	Not Defined	Official Fix	0.00184	0.02	CVE-2022-24891
22/04/2022	3.5	3.4	OWASP AntiSamy STYLE Roteiro Cruzado de Sítios	Desconhecido	Not Defined	Official Fix	0.00140	0.00	CVE-2022-29577
22/04/2022	3.5	3.4	OWASP AntiSamy STYLE Roteiro Cruzado de Sítios	Desconhecido	Not Defined	Official Fix	0.00061	0.00	CVE-2022-28367

26 as entradas adicionais não são mais exibidas

🔒 Login Required

You need to signup and login to see more of the remaining 26 results.

◂ VoltarVisão GeralPróximo ▸

Do you know our Splunk app?

Download it now for free!