Oracle Real-time Decision Server 漏洞

时间轴

版本

3.2.1.04
3.2.0.02
11.1.1.9.02
11.1.1.72

修正

Official Fix8
Temporary Fix0
Workaround0
Unavailable0
Not Defined0

易受攻击性

High2
Functional0
Proof-of-Concept0
Unproven0
Not Defined6

访问向量

Not Defined0
Physical0
Local2
Adjacent0
Network6

身份验证

Not Defined0
High0
Low0
None8

用户交互

Not Defined0
Required2
None6

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤62
≤70
≤86
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤62
≤74
≤82
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤50
≤62
≤70
≤84
≤90
≤102

NVD

≤10
≤20
≤30
≤40
≤50
≤62
≤72
≤82
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k0
<5k2
<10k0
<25k4
<50k2
<100k0
≥100k0

本日攻击

<1k4
<2k2
<5k0
<10k2
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

🔴 CTI 活动

Affected Versions (4): 3.2, 3.2.1, 11.1.1.7, 11.1.1.9

Link to Product Website: https://www.oracle.com

已发布BaseTemp漏洞0day今天修正CTICVE
2021-10-195.35.2Oracle Real-Time Decision Server Apache Commons IO 信息公开$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-29425
2021-10-195.55.4Oracle Real-Time Decision Server Apache Ant 拒绝服务$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-36374
2021-01-207.37.0Oracle Real-Time Decision Server Platform Installation 权限升级$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
2021-01-207.57.2Oracle Real-Time Decision Server Platform Installation 权限升级$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-0227
2021-01-207.77.4Oracle Real-Time Decision Server Decision Studio 信息公开$25k-$100k$5k-$25kNot DefinedOfficial Fix0.00CVE-2020-1945
2018-10-168.28.1Oracle Real-Time Decision Server Platform Installation 权限升级$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-1182
2015-01-207.37.0Oracle Real-Time Decision Server commons-beanutils-1.8.0.jar 权限升级$5k-$25k$0-$5kHighOfficial Fix0.00CVE-2014-0114

更多条目由 Oracle

上一步一览下一步

Want to stay up to date on a daily basis?

Enable the mail alert feature now!