Oracle Enterprise Repository 漏洞

时间轴

版本

12.1.3.0.0	16
11.1.1.7.0	12

修正

Official Fix	26
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	0

易受攻击性

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	26

访问向量

Not Defined	0
Physical	0
Local	2
Adjacent	0
Network	24

身份验证

Not Defined	0
High	0
Low	6
None	20

用户交互

Not Defined	0
Required	4
None	22

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	6
≤8	12
≤9	2
≤10	4

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	4
≤7	4
≤8	12
≤9	4
≤10	2

VulDB

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	4
≤7	4
≤8	12
≤9	4
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	2
≤8	12
≤9	4
≤10	4

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

供应商

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	2
≤7	4
≤8	6
≤9	4
≤10	2

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

零日攻击

<1k	0
<2k	0
<5k	0
<10k	8
<25k	14
<50k	2
<100k	2
≥100k	0

本日攻击

<1k	18
<2k	6
<5k	0
<10k	2
<25k	0
<50k	0
<100k	0
≥100k	0

攻击市场容量

🔴 CTI 活动

Affected Versions (2): 11.1.1.7, 12.1.3

Link to Product Website: https://www.oracle.com

已发布	Base	Temp	漏洞	0day	今天	易	修正	CTI	CVE
2021-10-19	5.5	5.4	Oracle Enterprise Repository Apache Ant 拒绝服务	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-36374
2021-07-20	6.7	6.4	Oracle Enterprise Repository Apache Batik 权限升级	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-11987
2021-04-21	7.5	7.2	Oracle Enterprise Repository Security Subsystem 信息公开	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2018-1000180
2021-01-20	7.5	7.2	Oracle Enterprise Repository Security Subsystem 信息公开	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-11994
2021-01-20	7.5	7.2	Oracle Enterprise Repository Security Subsystem 权限升级	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2019-17566
2021-01-20	7.5	7.2	Oracle Enterprise Repository Security Subsystem 权限升级	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-11979
2021-01-20	9.8	9.4	Oracle Enterprise Repository Security Subsystem Remote Code Execution	$100k 以及更多	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2020-11998
2020-10-20	9.8	9.4	Oracle Enterprise Repository Security Subsystem - 12c Remote Code Execution	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2019-2904
2020-07-15	6.1	5.8	Oracle Enterprise Repository Security Subsystem 跨网站脚本	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-1941
2020-07-15	8.2	7.8	Oracle Enterprise Repository Security Subsystem 信息公开	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2020-1945

16 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 16 results.

更多条目由 Oracle

◂ 上一步一览下一步 ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!