Portswigger Vulnerabilidades

Curso de tempo

Tipo

Security Testing Software6

Produto

PortSwigger Burp Suite Enterprise Edition2
PortSwigger Burp Suite2
PortSwigger Burp Suite Community Edition2

Medidas

Official Fix4
Temporary Fix0
Workaround0
Unavailable0
Not Defined2

Explorabilidade

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined6

Tipo de acesso

Not Defined0
Physical0
Local0
Adjacent0
Network6

Autenticação

Not Defined0
High0
Low2
None4

Actividade do utilizador

Not Defined0
Required2
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤62
≤74
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤62
≤74
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤52
≤62
≤72
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤72
≤82
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Fabricante

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤62
≤70
≤80
≤90
≤100

Explorar 0 dia

<1k0
<2k4
<5k2
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar hoje

<1k6
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (3): Burp Suite (3), Burp Suite Community Edition (1), Burp Suite Enterprise Edition (1)

Publicado emBaseTempVulnerabilidadeProdExpMasEPSSCTICVE
08/07/20223.73.6PortSwigger Burp Suite Repeater/Intruder RedirectSecurity Testing SoftwareNot DefinedOfficial Fix0.000720.04CVE-2022-35406
01/12/20216.46.2PortSwigger Burp Suite Enterprise Edition H2 Database direitos alargadosSecurity Testing SoftwareNot DefinedOfficial Fix0.000650.00CVE-2021-44230
30/03/20213.73.6PortSwigger Burp Suite Proxy Configuration Divulgação de InformaçãoSecurity Testing SoftwareNot DefinedOfficial Fix0.002010.00CVE-2021-29416
18/06/20186.56.5PortSwigger Burp Suite Community Edition Server Certificate Validator Fraca autenticaçãoSecurity Testing SoftwareNot DefinedNot Defined0.000870.03CVE-2018-1153
15/06/20185.45.4PortSwigger Burp Suite Server Certificate Validator Fraca autenticaçãoSecurity Testing SoftwareNot DefinedOfficial Fix0.000740.06CVE-2018-10377

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!