admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2022-03-15 18:01:59 +00:00
parent 4367db62fc
commit 3a4a258517
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
53 changed files with 865 additions and 80 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2021/46xxx/CVE-2021-46657.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46658.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46659.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220311-0003/",
"url": "https://security.netapp.com/advisory/ntap-20220311-0003/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46661.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46662.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46663.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46664.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46665.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46666.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46667.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46668.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

5
2021/46xxx/CVE-2021-46669.json
View File

@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20220221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20220221-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://mariadb.com/kb/en/security/",
"url": "https://mariadb.com/kb/en/security/"
}
]
}

18
2022/0xxx/CVE-2022-0990.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-0990",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

7
2022/24xxx/CVE-2022-24128.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "Timescale TimescaleDB 1.x and 2.x before 2.5.2 may allow privilege escalation during extension installation."
"value": "Timescale TimescaleDB 1.x and 2.x before 2.5.2 may allow privilege escalation during extension installation. The installation process uses commands such as CREATE x IF NOT EXIST that allow an unprivileged user to precreate objects. These objects will be used by the installer (which executes as Superuser), leading to privilege escalation. In order to be able to take advantage of this, an unprivileged user would need to be able to create objects in a database and then get a Superuser to install TimescaleDB into their database. (In the fixed versions, the installation aborts when it finds that an object already exists.)"
}
]
},
@ -56,6 +56,11 @@
"url": "https://docs.timescale.com/timescaledb/latest/overview/release-notes/",
"refsource": "MISC",
"name": "https://docs.timescale.com/timescaledb/latest/overview/release-notes/"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/timescale/timescaledb/security/advisories/GHSA-fh8v-663w-79w9",
"url": "https://github.com/timescale/timescaledb/security/advisories/GHSA-fh8v-663w-79w9"
}
]
}

56
2022/25xxx/CVE-2022-25485.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25485",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25485",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertLightbox.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/24",
"refsource": "MISC",
"name": "https://github.com/CuppaCMS/CuppaCMS/issues/24"
}
]
}

56
2022/25xxx/CVE-2022-25486.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25486",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25486",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "CuppaCMS v1.0 was discovered to contain a local file inclusion via the url parameter in /alerts/alertConfigField.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/25",
"refsource": "MISC",
"name": "https://github.com/CuppaCMS/CuppaCMS/issues/25"
}
]
}

56
2022/25xxx/CVE-2022-25487.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25487",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25487",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Atom CMS v2.0 was discovered to contain a remote code execution (RCE) vulnerability via /admin/uploads.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/thedigicraft/Atom.CMS/issues/256",
"refsource": "MISC",
"name": "https://github.com/thedigicraft/Atom.CMS/issues/256"
}
]
}

56
2022/25xxx/CVE-2022-25488.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25488",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25488",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/thedigicraft/Atom.CMS/issues/257",
"refsource": "MISC",
"name": "https://github.com/thedigicraft/Atom.CMS/issues/257"
}
]
}

56
2022/25xxx/CVE-2022-25489.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25489",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25489",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Atom CMS v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the \"A\" parameter in /widgets/debug.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/thedigicraft/Atom.CMS/issues/258",
"refsource": "MISC",
"name": "https://github.com/thedigicraft/Atom.CMS/issues/258"
}
]
}

56
2022/25xxx/CVE-2022-25490.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25490",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25490",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in department.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/kabirkhyrul/HMS/discussions/8",
"refsource": "MISC",
"name": "https://github.com/kabirkhyrul/HMS/discussions/8"
}
]
}

56
2022/25xxx/CVE-2022-25491.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25491",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25491",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "HMS v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in appointment.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/kabirkhyrul/HMS/discussions/8",
"refsource": "MISC",
"name": "https://github.com/kabirkhyrul/HMS/discussions/8"
}
]
}

56
2022/25xxx/CVE-2022-25492.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25492",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25492",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "HMS v1.0 was discovered to contain a SQL injection vulnerability via the medicineid parameter in ajaxmedicine.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/kabirkhyrul/HMS/discussions/8",
"refsource": "MISC",
"name": "https://github.com/kabirkhyrul/HMS/discussions/8"
}
]
}

56
2022/25xxx/CVE-2022-25493.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25493",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25493",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "HMS v1.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via treatmentrecord.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/kabirkhyrul/HMS/discussions/10",
"refsource": "MISC",
"name": "https://github.com/kabirkhyrul/HMS/discussions/10"
}
]
}

56
2022/25xxx/CVE-2022-25494.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25494",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25494",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via staff_login.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/g33kyrash/Online-Banking-system/issues/16",
"refsource": "MISC",
"name": "https://github.com/g33kyrash/Online-Banking-system/issues/16"
}
]
}

56
2022/25xxx/CVE-2022-25495.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25495",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25495",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "The component /jquery_file_upload/server/php/index.php of CuppaCMS v1.0 allows attackers to upload arbitrary files and execute arbitrary code via a crafted PHP file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/26",
"refsource": "MISC",
"name": "https://github.com/CuppaCMS/CuppaCMS/issues/26"
}
]
}

56
2022/25xxx/CVE-2022-25497.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25497",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25497",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "CuppaCMS v1.0 was discovered to contain an arbitrary file read via the copy function."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/28",
"refsource": "MISC",
"name": "https://github.com/CuppaCMS/CuppaCMS/issues/28"
}
]
}

56
2022/25xxx/CVE-2022-25498.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-25498",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-25498",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "CuppaCMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the saveConfigData function in /classes/ajax/Functions.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/CuppaCMS/CuppaCMS/issues/29",
"refsource": "MISC",
"name": "https://github.com/CuppaCMS/CuppaCMS/issues/29"
}
]
}

7
2022/26xxx/CVE-2022-26320.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "The Rambus SafeZone Basic Crypto Module, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01 and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate."
"value": "The Rambus SafeZone Basic Crypto Module before 10.4.0, as used in certain Fujifilm (formerly Fuji Xerox) devices before 2022-03-01 and potentially many other devices, generates RSA keys that can be broken with Fermat's factorization method. This allows efficient calculation of private RSA keys from the public key of a TLS certificate."
}
]
},
@ -61,6 +61,11 @@
"refsource": "CONFIRM",
"name": "https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html",
"url": "https://www.fujifilm.com/fbglobal/eng/company/news/notice/2022/0302_rsakey_announce.html"
},
{
"refsource": "MISC",
"name": "https://safezoneswupdate.com",
"url": "https://safezoneswupdate.com"
}
]
}

5
2022/26xxx/CVE-2022-26779.json
View File

@ -78,6 +78,11 @@
"refsource": "MISC",
"url": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-vpcc-9rh2-8jfp",
"name": "https://github.com/JLLeitschuh/security-research/security/advisories/GHSA-vpcc-9rh2-8jfp"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 CVE-2022-26779: Apache Cloudstack insecure random number generation affects project email invitation",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/1"
}
]
},

5
2022/27xxx/CVE-2022-27195.json
View File

@ -65,6 +65,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2185",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2185",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27196.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2557",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2557",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27197.json
View File

@ -65,6 +65,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2559",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2559",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27198.json
View File

@ -65,6 +65,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2351",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2351",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27199.json
View File

@ -65,6 +65,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2351",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2351",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27200.json
View File

@ -57,6 +57,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2646",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2646",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27201.json
View File

@ -57,6 +57,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2124",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2124",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27202.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2232",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2232",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27203.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1351",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1351",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27204.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1350",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1350",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27205.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1350",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1350",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27206.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1891",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1891",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27207.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1886",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-1886",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27208.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2096",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2096",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27209.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2636",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2636",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27210.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2681",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2681",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27211.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2681",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2681",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27212.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2167",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2167",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27213.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2252",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2252",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27214.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2274",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2274",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27215.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2274",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2274",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27216.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2159",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2159",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27217.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2238",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2238",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}

5
2022/27xxx/CVE-2022-27218.json
View File

@ -61,6 +61,11 @@
"name": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2273",
"url": "https://www.jenkins.io/security/advisory/2022-03-15/#SECURITY-2273",
"refsource": "CONFIRM"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220315 Multiple vulnerabilities in Jenkins plugins",
"url": "http://www.openwall.com/lists/oss-security/2022/03/15/2"
}
]
}