Ox Software Ox App Suite 漏洞

时间轴

去年

版本

7.10.150
7.10.049
7.10.248
7.10.348
7.10.442

修正

Official Fix49
Temporary Fix0
Workaround0
Unavailable0
Not Defined76

易受攻击性

High0
Functional0
Proof-of-Concept8
Unproven0
Not Defined117

访问向量

Not Defined0
Physical8
Local5
Adjacent20
Network92

身份验证

Not Defined0
High5
Low90
None30

用户交互

Not Defined0
Required62
None63

C3BM Index

去年

CVSSv3 Base

≤10
≤20
≤31
≤425
≤556
≤627
≤79
≤82
≤95
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤430
≤553
≤625
≤79
≤82
≤95
≤100

VulDB

≤10
≤21
≤33
≤459
≤533
≤619
≤74
≤86
≤90
≤100

NVD

≤10
≤20
≤30
≤41
≤516
≤615
≤730
≤86
≤93
≤109

CNA

≤10
≤20
≤30
≤44
≤57
≤613
≤72
≤87
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤52
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤41
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k58
<2k58
<5k9
<10k0
<25k0
<50k0
<100k0
≥100k0

本日攻击

<1k124
<2k1
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

去年

🔴 CTI 活动

Affected Versions (37): 2.10.7-rev6, 7.1, 7.8, 7.8.1, 7.8.2, 7.8.3, 7.8.4, 7.10.1, 7.10.2, 7.10.3, 7.10.3-rev3, 7.10.3-rev31, 7.10.4, 7.10.4-rev3, 7.10.4-rev17, 7.10.5, 7.10.5-rev5, 7.10.6, 7.10.6-rev5, 7.10.6-rev7, 7.10.6-rev23, 7.10.6-rev29, 7.10.6-rev36, 7.10.6-rev48, 8.0, 8.1, 8.2, 8.3, 8.4, 8.5, 8.6, 8.7, 8.8, 8.9, 8.10, 8.11, 8.12

已发布BaseTemp漏洞0day今天修正CTICVE
2023-11-025.25.2OX Software OX App Suite Presentation 跨网站脚本$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2023-29043
2023-11-026.96.9OX Software OX App Suite Image Metadata SQL注入$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26454
2023-11-025.95.9OX Software OX App Suite Image Cache SQL注入$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26452
2023-11-024.44.4OX Software OX App Suite Drawing 跨网站脚本$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29045
2023-11-024.44.4OX Software OX App Suite Document 跨网站脚本$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29044
2023-11-024.34.3OX Software OX App Suite Network Connection 拒绝服务$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29046
2023-11-024.44.4OX Software OX App Suite OX Guard 跨网站脚本$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26456
2023-11-025.95.9OX Software OX App Suite RMI ChronosRMIService:setEventOrganizer. 弱身份验证$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26455
2023-11-026.96.9OX Software OX App Suite Local Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-26453
2023-11-025.65.6OX Software OX App Suite Imageconverter API SQL注入$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-29047
2023-08-022.82.8OX Software OX App Suite Cache Service 权限升级$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2023-26442
2023-08-026.36.2OX Software OX App Suite Cache Service API SQL注入$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26440
2023-08-023.63.6OX Software OX App Suite Control Character 权限升级$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26430
2023-08-026.66.5OX Software OX App Suite Cache Service API SQL注入$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26439
2023-08-025.05.0OX Software OX App Suite Cache Service 目录遍历$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26441
2023-08-024.44.4OX Software OX App Suite Web Interface 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26447
2023-08-024.44.4OX Software OX App Suite Web Interface 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26448
2023-08-024.44.4OX Software OX App Suite Web Interface 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26446
2023-08-026.76.6OX Software OX App Suite Autocomplete Search SQL注入$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26443
2023-08-026.46.3OX Software OX App Suite 弱加密$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26451
2023-08-024.84.7OX Software OX App Suite Frontend Theme 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2023-26445
2023-08-024.34.2OX Software OX App Suite JDK DNS Cache 权限升级$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26438
2023-08-024.44.4OX Software OX App Suite Count Web Service 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26450
2023-08-024.44.4OX Software OX App Suite Chat Web Service 跨网站脚本$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-26449
2023-06-206.76.7OX Software OX App Suite API Endpoint documentconverterws 权限升级$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2023-26436

100 更多条目未显示

🔒 Login Required

You need to signup and login to see more of the remaining 100 results.

更多条目由 Ox Software

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!