Reportlab 漏洞

时间轴

版本

3.5.02
3.5.12
3.5.22
3.5.32
3.5.42

修正

Official Fix1
Temporary Fix0
Workaround0
Unavailable0
Not Defined3

易受攻击性

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined4

访问向量

Not Defined0
Physical0
Local0
Adjacent1
Network3

身份验证

Not Defined0
High0
Low3
None1

用户交互

Not Defined0
Required0
None4

C3BM Index

去年

CVSSv3 Base

≤10
≤20
≤30
≤40
≤51
≤60
≤71
≤81
≤91
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤51
≤60
≤71
≤81
≤91
≤100

VulDB

≤10
≤20
≤30
≤40
≤51
≤61
≤71
≤81
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤90
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

供应商

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

零日攻击

<1k0
<2k3
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

本日攻击

<1k4
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

攻击市场容量

去年

🔴 CTI 活动

Affected Versions (40): 3.5, 3.5.1, 3.5.2, 3.5.3, 3.5.4, 3.5.5, 3.5.6, 3.5.7, 3.5.8, 3.5.9, 3.5.11, 3.5.12, 3.5.13, 3.5.14, 3.5.15, 3.5.16, 3.5.17, 3.5.18, 3.5.19, 3.5.21, 3.5.22, 3.5.23, 3.5.24, 3.5.25, 3.5.26, 3.5.27, 3.5.28, 3.5.29, 3.6, 3.6.1, 3.6.2, 3.6.3, 3.6.4, 3.6.5, 3.6.6, 3.6.7, 3.6.8, 3.6.9, 3.6.11, 3.6.12

软件类型: Reporting Software

已发布BaseTemp漏洞0day今天修正CTICVE
2023-09-208.07.9ReportLab XML Document paraparser.py start_unichar 权限升级$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-19450
2023-06-056.66.6Reportlab PDF File Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2023-33733
2021-02-184.34.3ReportLab 权限升级$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2020-28463
2019-10-168.58.5ReportLab colors.py toColor 权限升级$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2019-17626

上一步一览下一步

Want to stay up to date on a daily basis?

Enable the mail alert feature now!