Invision Power Services Уязвимости

Временная шкала

Тип

Forum Software	60
Photo Gallery Software	12
Not Defined	10
Blog Software	6

Продукт

Invision Power Services IP.Board	56
Invision Power Services Invision Gallery	12
Invision Power Services Community Suite	6
Invision Power Services Invision Community Blog	6
Invision Power Services Invision Board	4

Устранение последствий

Official Fix	52
Temporary Fix	0
Workaround	0
Unavailable	4
Not Defined	32

Эксплуатационная пригодность

High	16
Functional	2
Proof-of-Concept	34
Unproven	4
Not Defined	32

Вектор доступа

Not Defined	0
Physical	0
Local	0
Adjacent	2
Network	86

Аутентификация

Not Defined	0
High	0
Low	12
None	76

Взаимодействие с пользователем

Not Defined	0
Required	40
None	48

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	6
≤5	24
≤6	18
≤7	10
≤8	28
≤9	0
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	10
≤5	24
≤6	20
≤7	26
≤8	6
≤9	2
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	6
≤5	26
≤6	16
≤7	10
≤8	28
≤9	0
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	2
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Поставщик

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Эксплойт 0-дня

<1k	10
<2k	38
<5k	40
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Эксплойт сегодня

<1k	88
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Объем рынка эксплойтов

🔴 CTI Деятельность

Affected Products (9): Community Suite (6), IP.Board (56), IP.Gallery (1), IPS (3), Invision Board (4), Invision Community Blog (5), Invision Gallery (10), Invision Power Board (1), Invision Power Top Site List (1)

Link to Vendor Website: https://invisioncommunity.com/

Опубликовано	Base	Temp	Уязвимости	Prod	Э�	Rem	EPSS	CTI	CVE
18.08.2021	3.5	3.4	Invision Power Services Community Suite IFRAME межсайтовый скриптинг	Неизвестно	Not Defined	Official Fix	0.00057	0.00	CVE-2021-39250
18.08.2021	3.5	3.4	Invision Power Services Community Suite Filename mt_rand межсайтовый скриптинг	Неизвестно	Not Defined	Official Fix	0.00105	0.00	CVE-2021-39249
02.06.2021	5.5	5.3	Invision Power Services Community Suite runProcessFunction эскалация привилегий	Неизвестно	Not Defined	Official Fix	0.00745	0.00	CVE-2021-32924
08.01.2021	7.5	7.2	Invision Power Services Community Suite Download REST API files.php GETindex sql-инъекция	Неизвестно	Not Defined	Official Fix	0.00063	0.00	CVE-2021-3025
06.01.2021	3.5	3.5	Invision Power Services Community Suite Comments межсайтовый скриптинг	Неизвестно	Not Defined	Official Fix	0.00078	0.00	CVE-2021-3026
11.05.2017	6.2	6.2	Invision Power Services IPS SVG Document Stored эскалация привилегий	Неизвестно	Not Defined	Not Defined	0.00184	0.00	CVE-2017-8899
11.05.2017	7.0	7.0	Invision Power Services IPS Announcement index.php Stored эскалация привилегий	Неизвестно	Not Defined	Not Defined	0.00188	0.01	CVE-2017-8898
11.05.2017	5.2	5.2	Invision Power Services IPS UTF8 Converter index.php Reflected межсайтовый скриптинг	Неизвестно	Not Defined	Not Defined	0.00147	0.07	CVE-2017-8897
23.04.2017	5.7	5.5	Invision Power Services Community Suite Session Cookie uniqid слабое шифрование	Неизвестно	Not Defined	Official Fix	0.00179	0.01	CVE-2016-2564
04.09.2015	5.3	5.1	Invision Power Services IP.Board URL отказ в обслуживании	Forum Software	Not Defined	Official Fix	0.00178	0.02	CVE-2015-6812

77 больше записей не показано

🔒 Login Required

You need to signup and login to see more of the remaining 77 results.

◂ ПредыдущийОбзорДалее ▸

Do you need the next level of professionalism?

Upgrade your account now!