admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-merge PR#7690

Browse Source 
Auto-merge PR#7690
This commit is contained in:
CVE Team 2022-10-17 04:20:17 -04:00 committed by GitHub
commit 4e46d9fef8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 298 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

140
2022/2xxx/CVE-2022-2052.json
View File

@ -1,18 +1,146 @@
{ {
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2022-10-17T08:00:00.000Z",
"ID": "CVE-2022-2052", "ID": "CVE-2022-2052",
"ASSIGNER": "cve@mitre.org", "STATE": "PUBLIC",
"STATE": "RESERVED" "TITLE": "TRUMPF TruTops default user accounts vulnerability"
}, },
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "TruTops Monitor",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All Versions"
}
]
}
},
{
"product_name": "TruTops Fab",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All Versions"
}
]
}
},
{
"product_name": "Oseon",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_value": "1.6"
}
]
}
},
{
"product_name": "Job Order Interface",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All Versions"
}
]
}
},
{
"product_name": "TruTops Boost with option Inventory of sheets and remainder sheets",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All Versions"
}
]
}
},
{
"product_name": "TruTops Boost with option Graphic separation of cut parts",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All Versions"
}
]
}
}
]
},
"vendor_name": "TRUMPF Werkzeugmaschinen SE + Co. KG"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "Multiple Trumpf Products in multiple versions use default privileged Windows users and passwords. An adversary may use these accounts to remotely gain full access to the system."
} }
] ]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-284 Improper Access Control"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en/advisories/VDE-2022-023/",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en/advisories/VDE-2022-023/"
}
]
},
"source": {
"advisory": "VDE-2022-023",
"defect": [
"CERT@VDE#64131"
],
"discovery": "INTERNAL"
} }
} }

170
2022/3xxx/CVE-2022-3281.json
View File

@ -1,18 +1,176 @@
{ {
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": { "CVE_data_meta": {
"ASSIGNER": "info@cert.vde.com",
"DATE_PUBLIC": "2022-10-17T08:00:00.000Z",
"ID": "CVE-2022-3281", "ID": "CVE-2022-3281",
"ASSIGNER": "cve@mitre.org", "STATE": "PUBLIC",
"STATE": "RESERVED" "TITLE": "WAGO: multiple products - Loss of MAC-Address-Filtering after reboot"
}, },
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "750-81xx/xxx-xxx Series PFC100/PFC200",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.01.07(13)",
"version_value": "03.10.08(22)"
}
]
}
},
{
"product_name": "750-8217/xxx-xxx Series PFC100/PFC200",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.04.10(16)",
"version_value": "03.10.08(22)"
}
]
}
},
{
"product_name": "750-82xx/xxx-xxx Series PFC100/PFC200",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.01.07(13)",
"version_value": "03.10.08(22)"
}
]
}
},
{
"product_name": "Compact Controller CC100",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.07.17(19)",
"version_value": "03.09.08(21)"
}
]
}
},
{
"product_name": "762-4xxx Series Touch Panel 600",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.01.07(13)",
"version_value": "03.10.09(22)"
}
]
}
},
{
"product_name": "762-5xxx Series Touch Panel 600",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.01.07(13)",
"version_value": "03.10.09(22)"
}
]
}
},
{
"product_name": "762-6xxx Series Touch Panel 600",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.01.07(13)",
"version_value": "03.10.09(22)"
}
]
}
},
{
"product_name": "752-8303/8000-002 Edge Controller",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_name": "03.06.09(18)",
"version_value": "03.10.09(22)"
}
]
}
}
]
},
"vendor_name": "WAGO"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": { "description": {
"description_data": [ "description_data": [
{ {
"lang": "eng", "lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "value": "WAGO Series PFC100/PFC200, Series Touch Panel 600, Compact Controller CC100 and Edge Controller in multiple versions are prone to a loss of MAC-Address-Filtering after reboot. This may allow an remote attacker to circumvent the reach the network that should be protected by the MAC address filter."
} }
] ]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-440 Expected Behavior Violation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert.vde.com/en/advisories/VDE-2022-042/",
"refsource": "CONFIRM",
"url": "https://cert.vde.com/en/advisories/VDE-2022-042/"
}
]
},
"source": {
"advisory": "VDE-2022-042",
"defect": [
"CERT@VDE#64236"
],
"discovery": "INTERNAL"
} }
} }