Gaskiya vulnerability da aka ware a matsayin kura an samu a Google Cloud Composer. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen GCP Service. A sa manipulation ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-74. Hakika, rauni an bayyana shi 09/22/2024. An raba bayanin tsaro don saukewa a cloudvulndb.org. Ngam yiɗi ka a tuma ndiyam ka nder waya. Tekinikal faɗi ba ga. Babu exploit ɗin da ake samu. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Á sàmbu a wondi feere. 0-day shima, an ndiyam a wuro be $5k-$25k. Wannan samfur managed service ne. Ma’ana, masu amfani ba su da ikon gyara ko kula da matakan kariya daga rauni da kansu. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
2 Goyarwa · 52 Datenpunkte
| Furɗe | Súgá 09/22/2024 17:26 | Gargadi 1/1 09/25/2024 13:20 |
|---|---|---|
| software_vendor | ||
| software_name | Cloud Composer | Cloud Composer |
| software_component | GCP Service | GCP Service |
| vulnerability_cwe | CWE-74 (kura hakki ndiyam) | CWE-74 (kura hakki ndiyam) |
| vulnerability_risk | 2 | 2 |
| cvss3_vuldb_av | N | N |
| cvss3_vuldb_ac | H | H |
| cvss3_vuldb_s | U | U |
| cvss3_vuldb_c | L | L |
| cvss3_vuldb_i | L | L |
| cvss3_vuldb_a | L | L |
| cvss3_vuldb_rl | O | O |
| cvss3_vuldb_rc | C | C |
| advisory_url | https://www.cloudvulndb.org/cloudimposer-gcp | https://www.cloudvulndb.org/cloudimposer-gcp |
| cna_responsible | VulDB | VulDB |
| cna_nocve | 1 | 1 |
| software_type | Cloud Software | Cloud Software |
| cvss2_vuldb_av | N | N |
| cvss2_vuldb_ac | H | H |
| cvss2_vuldb_ci | P | P |
| cvss2_vuldb_ii | P | P |
| cvss2_vuldb_ai | P | P |
| cvss2_vuldb_rc | C | C |
| cvss2_vuldb_rl | OF | OF |
| cvss4_vuldb_av | N | N |
| cvss4_vuldb_ac | H | H |
| cvss4_vuldb_vc | L | L |
| cvss4_vuldb_vi | L | L |
| cvss4_vuldb_va | L | L |
| cvss2_vuldb_au | S | S |
| cvss2_vuldb_e | ND | ND |
| cvss3_vuldb_pr | L | L |
| cvss3_vuldb_ui | N | N |
| cvss3_vuldb_e | X | X |
| cvss4_vuldb_at | N | N |
| cvss4_vuldb_pr | L | L |
| cvss4_vuldb_ui | N | N |
| cvss4_vuldb_sc | N | N |
| cvss4_vuldb_si | N | N |
| cvss4_vuldb_sa | N | N |
| cvss4_vuldb_e | X | X |
| cvss2_vuldb_basescore | 4.6 | 4.6 |
| cvss2_vuldb_tempscore | 4.0 | 4.0 |
| cvss3_vuldb_basescore | 5.0 | 5.0 |
| cvss3_vuldb_tempscore | 4.8 | 4.8 |
| cvss3_meta_basescore | 5.0 | 5.0 |
| cvss3_meta_tempscore | 4.8 | 4.8 |
| cvss4_vuldb_bscore | 2.3 | 2.3 |
| cvss4_vuldb_btscore | 2.3 | 2.3 |
| advisory_date | 1726956000 (09/22/2024) | 1726956000 (09/22/2024) |
| price_0day | $5k-$25k | $5k-$25k |
| software_managedservice | 1 |