类型 Asset Management Software

时间轴

供应商 »

产品 »

修正 »

易受攻击性 »

访问向量 »

身份验证 »

用户交互 »

C3BM Index »

CVSSv3 Base »

CVSSv3 Temp »

VulDB »

NVD »

供应商 »

Research »

零日攻击 »

本日攻击 »

攻击市场容量 »

🔴 CTI 活动 »

Affected Products (17): GLPI, IBM Control Desk, IBM Environment Manager, IBM Maximo, IBM Maximo Anywhere, IBM Maximo Asset, IBM Maximo Asset Management, IBM Maximo Asset Management Essentials, IBM Maximo for Civil Infrastructure, IBM Maximo For Oil And Gas, IBM Maximo for Utilities, IBM Maximo Health- Safety, IBM Maximo Industry Solutions, IBM Maximo Spatial Asset Management, IBM Ticoli Asset Manager, Oracle Primavera Unifier, Teclib GLPI

已发布BaseTemp漏洞ProdExp修正CTICVE
2021-09-166.16.1GLPI 跨网站请求伪造GLPINot DefinedOfficial Fix0.03CVE-2021-39209
2021-09-165.45.3GLPI Autologin Cookie 权限升级GLPINot DefinedOfficial Fix0.09CVE-2021-39210
2021-09-165.95.8GLPI API REST 权限升级GLPINot DefinedOfficial Fix0.03CVE-2021-39213
2021-09-165.35.2GLPI Telemetry Endpoint telemetry.php 信息公开GLPINot DefinedOfficial Fix0.00CVE-2021-39211
2021-08-313.53.4IBM Maximo Asset Management Web UI 跨网站脚本Maximo Asset ManagementNot DefinedOfficial Fix0.00CVE-2021-29743
2021-08-273.53.4IBM Maximo Asset Management Web UI 跨网站脚本Maximo Asset ManagementNot DefinedOfficial Fix0.00CVE-2021-29744
2021-08-127.57.2IBM Maximo Asset Management 权限升级Maximo Asset ManagementNot DefinedOfficial Fix0.05CVE-2021-20509
2021-07-205.75.5Oracle Primavera Unifier jackson-databind XML External EntityPrimavera UnifierNot DefinedOfficial Fix0.03CVE-2020-25649
2021-07-205.95.6Oracle Primavera Unifier dojo 权限升级Primavera UnifierNot DefinedOfficial Fix0.00CVE-2020-5258
2021-07-205.55.3Oracle Primavera Unifier Apache PDFbox 拒绝服务Primavera UnifierNot DefinedOfficial Fix0.03CVE-2021-27906
2021-05-273.53.3GLPI Metadata 跨网站脚本GLPIProof-of-ConceptNot Defined0.00CVE-2021-3486
2021-05-204.34.3IBM Maximo Asset Management Web UI 跨网站脚本Maximo Asset ManagementNot DefinedNot Defined0.05CVE-2021-20374
2021-04-215.35.1Oracle Primavera Unifier Core 未知漏洞Primavera UnifierNot DefinedOfficial Fix0.07CVE-2020-13956
2021-04-215.55.3Oracle Primavera Unifier Platform 信息公开Primavera UnifierNot DefinedOfficial Fix0.00CVE-2020-17521
2021-04-216.15.8Oracle Primavera Unifier Core UI 跨网站脚本Primavera UnifierNot DefinedOfficial Fix0.04CVE-2020-11022
2021-03-096.46.1GLPI Self-Service Interface 权限升级GLPINot DefinedOfficial Fix0.04CVE-2021-21326
2021-03-094.14.0GLPI 跨网站脚本GLPINot DefinedOfficial Fix0.04CVE-2021-21325
2021-03-095.45.1GLPI 权限升级GLPINot DefinedOfficial Fix0.04CVE-2021-21324
2021-03-057.46.6GLPI dropdownConnect.php getItemForItemtype 权限升级GLPIProof-of-ConceptOfficial Fix0.04CVE-2021-21327
2021-03-044.14.0GLPI Ticket Update 跨网站脚本GLPINot DefinedOfficial Fix0.03CVE-2021-21314
2021-03-043.53.2GLPI common.tabs.php 跨网站脚本GLPIProof-of-ConceptOfficial Fix0.04CVE-2021-21313
2021-03-044.14.0GLPI Document Upload document.form.php 跨网站脚本GLPINot DefinedOfficial Fix0.04CVE-2021-21312
2021-03-034.44.3GLPI kanban.php 跨网站脚本GLPINot DefinedOfficial Fix0.00CVE-2021-21258
2021-03-034.34.2GLPI 权限升级GLPINot DefinedOfficial Fix0.06CVE-2021-21255
2021-02-184.44.4IBM Maximo for Civil Infrastructure Web UI 跨网站脚本Maximo for Civil InfrastructureNot DefinedNot Defined0.04CVE-2021-20446

Interested in the pricing of exploits?

See the underground prices here!