diff --git a/2021/4xxx/CVE-2021-4247.json b/2021/4xxx/CVE-2021-4247.json index bbabb8e35af..3ef7d7e7658 100644 --- a/2021/4xxx/CVE-2021-4247.json +++ b/2021/4xxx/CVE-2021-4247.json @@ -22,7 +22,7 @@ "version": { "version_data": [ { - "version_value": "n\/a" + "version_value": "n/a" } ] } @@ -49,7 +49,7 @@ "description_data": [ { "lang": "eng", - "value": "A vulnerability has been found in OWASP NodeGoat and classified as problematic. This vulnerability affects unknown code of the file app\/routes\/research.js of the component Query Parameter Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The name of the patch is 4a4d1db74c63fb4ff8d366551c3af006c25ead12. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216184." + "value": "A vulnerability has been found in OWASP NodeGoat and classified as problematic. This vulnerability affects unknown code of the file app/routes/research.js of the component Query Parameter Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The name of the patch is 4a4d1db74c63fb4ff8d366551c3af006c25ead12. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-216184." } ] }, @@ -57,19 +57,25 @@ "cvss": { "version": "3.1", "baseScore": "4.3", - "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:N\/I:N\/A:L" + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } }, "references": { "reference_data": [ { - "url": "https:\/\/github.com\/OWASP\/NodeGoat\/issues\/225" + "url": "https://github.com/OWASP/NodeGoat/issues/225", + "refsource": "MISC", + "name": "https://github.com/OWASP/NodeGoat/issues/225" }, { - "url": "https:\/\/github.com\/OWASP\/NodeGoat\/commit\/4a4d1db74c63fb4ff8d366551c3af006c25ead12" + "url": "https://github.com/OWASP/NodeGoat/commit/4a4d1db74c63fb4ff8d366551c3af006c25ead12", + "refsource": "MISC", + "name": "https://github.com/OWASP/NodeGoat/commit/4a4d1db74c63fb4ff8d366551c3af006c25ead12" }, { - "url": "https:\/\/vuldb.com\/?id.216184" + "url": "https://vuldb.com/?id.216184", + "refsource": "MISC", + "name": "https://vuldb.com/?id.216184" } ] } diff --git a/2022/4xxx/CVE-2022-4592.json b/2022/4xxx/CVE-2022-4592.json index 930c674e555..a52a23ceabf 100644 --- a/2022/4xxx/CVE-2022-4592.json +++ b/2022/4xxx/CVE-2022-4592.json @@ -22,7 +22,7 @@ "version": { "version_data": [ { - "version_value": "n\/a" + "version_value": "n/a" } ] } @@ -49,7 +49,7 @@ "description_data": [ { "lang": "eng", - "value": "A vulnerability was found in luckyshot CRMx and classified as critical. This issue affects the function get\/save\/delete\/comment\/commentdelete of the file index.php. The manipulation leads to sql injection. The attack may be initiated remotely. The name of the patch is 8c62d274986137d6a1d06958a6f75c3553f45f8f. It is recommended to apply a patch to fix this issue. The identifier VDB-216185 was assigned to this vulnerability." + "value": "A vulnerability was found in luckyshot CRMx and classified as critical. This issue affects the function get/save/delete/comment/commentdelete of the file index.php. The manipulation leads to sql injection. The attack may be initiated remotely. The name of the patch is 8c62d274986137d6a1d06958a6f75c3553f45f8f. It is recommended to apply a patch to fix this issue. The identifier VDB-216185 was assigned to this vulnerability." } ] }, @@ -57,16 +57,20 @@ "cvss": { "version": "3.1", "baseScore": "6.3", - "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:L\/A:L" + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } }, "references": { "reference_data": [ { - "url": "https:\/\/github.com\/luckyshot\/CRMx\/commit\/8c62d274986137d6a1d06958a6f75c3553f45f8f" + "url": "https://github.com/luckyshot/CRMx/commit/8c62d274986137d6a1d06958a6f75c3553f45f8f", + "refsource": "MISC", + "name": "https://github.com/luckyshot/CRMx/commit/8c62d274986137d6a1d06958a6f75c3553f45f8f" }, { - "url": "https:\/\/vuldb.com\/?id.216185" + "url": "https://vuldb.com/?id.216185", + "refsource": "MISC", + "name": "https://vuldb.com/?id.216185" } ] } diff --git a/2022/4xxx/CVE-2022-4593.json b/2022/4xxx/CVE-2022-4593.json index 89388820158..0211b705145 100644 --- a/2022/4xxx/CVE-2022-4593.json +++ b/2022/4xxx/CVE-2022-4593.json @@ -22,7 +22,7 @@ "version": { "version_data": [ { - "version_value": "n\/a" + "version_value": "n/a" } ] } @@ -57,16 +57,20 @@ "cvss": { "version": "3.1", "baseScore": "3.5", - "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:U\/C:N\/I:L\/A:N" + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N" } }, "references": { "reference_data": [ { - "url": "https:\/\/github.com\/retra\/retra-system\/commit\/a6d94ab88f4a6f631a14c59b72461140fb57ae1f" + "url": "https://github.com/retra/retra-system/commit/a6d94ab88f4a6f631a14c59b72461140fb57ae1f", + "refsource": "MISC", + "name": "https://github.com/retra/retra-system/commit/a6d94ab88f4a6f631a14c59b72461140fb57ae1f" }, { - "url": "https:\/\/vuldb.com\/?id.216186" + "url": "https://vuldb.com/?id.216186", + "refsource": "MISC", + "name": "https://vuldb.com/?id.216186" } ] } diff --git a/2022/4xxx/CVE-2022-4594.json b/2022/4xxx/CVE-2022-4594.json index bf2a28cba27..298a7252f0e 100644 --- a/2022/4xxx/CVE-2022-4594.json +++ b/2022/4xxx/CVE-2022-4594.json @@ -22,7 +22,7 @@ "version": { "version_data": [ { - "version_value": "n\/a" + "version_value": "n/a" } ] } @@ -49,7 +49,7 @@ "description_data": [ { "lang": "eng", - "value": "A vulnerability was found in drogatkin TJWS2. It has been declared as critical. Affected by this vulnerability is the function deployWar of the file 1.x\/src\/rogatkin\/web\/WarRoller.java. The manipulation leads to path traversal. The attack can be launched remotely. The name of the patch is 1bac15c496ec54efe21ad7fab4e17633778582fc. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216187." + "value": "A vulnerability was found in drogatkin TJWS2. It has been declared as critical. Affected by this vulnerability is the function deployWar of the file 1.x/src/rogatkin/web/WarRoller.java. The manipulation leads to path traversal. The attack can be launched remotely. The name of the patch is 1bac15c496ec54efe21ad7fab4e17633778582fc. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-216187." } ] }, @@ -57,16 +57,20 @@ "cvss": { "version": "3.1", "baseScore": "6.3", - "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:L\/A:L" + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } }, "references": { "reference_data": [ { - "url": "https:\/\/github.com\/drogatkin\/TJWS2\/commit\/1bac15c496ec54efe21ad7fab4e17633778582fc" + "url": "https://github.com/drogatkin/TJWS2/commit/1bac15c496ec54efe21ad7fab4e17633778582fc", + "refsource": "MISC", + "name": "https://github.com/drogatkin/TJWS2/commit/1bac15c496ec54efe21ad7fab4e17633778582fc" }, { - "url": "https:\/\/vuldb.com\/?id.216187" + "url": "https://vuldb.com/?id.216187", + "refsource": "MISC", + "name": "https://vuldb.com/?id.216187" } ] } diff --git a/2022/4xxx/CVE-2022-4595.json b/2022/4xxx/CVE-2022-4595.json new file mode 100644 index 00000000000..523104a12ef --- /dev/null +++ b/2022/4xxx/CVE-2022-4595.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2022-4595", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file