admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2022-04-19 23:01:37 +00:00
parent 5fe2a4f16f
commit 62f43e5640
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
6 changed files with 47 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
2021/3xxx/CVE-2021-3100.json
View File

@ -43,7 +43,7 @@
"description_data": [
{
"lang": "eng",
"value": "The Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.1-12 didnt mimic the permissions of the JVM being patched, allowing it to escalate privileges."
"value": "The Apache Log4j hotpatch package before log4j-cve-2021-44228-hotpatch-1.1-12 didn\u2019t mimic the permissions of the JVM being patched, allowing it to escalate privileges."
}
]
},
@ -81,16 +81,19 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1732.html"
"refsource": "MISC",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2021-1732.html",
"name": "https://alas.aws.amazon.com/AL2/ALAS-2021-1732.html"
},
{
"refsource": "CONFIRM",
"url": "https://alas.aws.amazon.com/ALAS-2021-1554.html"
"refsource": "MISC",
"url": "https://alas.aws.amazon.com/ALAS-2021-1554.html",
"name": "https://alas.aws.amazon.com/ALAS-2021-1554.html"
},
{
"refsource": "CONFIRM",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
"refsource": "MISC",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities",
"name": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
}
]
},

10
2021/3xxx/CVE-2021-3101.json
View File

@ -81,12 +81,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-qfhv-c5cc-mhgp"
"refsource": "MISC",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities",
"name": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
},
{
"refsource": "CONFIRM",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
"refsource": "MISC",
"url": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-qfhv-c5cc-mhgp",
"name": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-qfhv-c5cc-mhgp"
}
]
},

10
2022/0xxx/CVE-2022-0070.json
View File

@ -81,12 +81,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://alas.aws.amazon.com/cve/html/CVE-2022-0070.html"
"refsource": "MISC",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities",
"name": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
},
{
"refsource": "CONFIRM",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
"refsource": "MISC",
"url": "https://alas.aws.amazon.com/cve/html/CVE-2022-0070.html",
"name": "https://alas.aws.amazon.com/cve/html/CVE-2022-0070.html"
}
]
},

10
2022/0xxx/CVE-2022-0071.json
View File

@ -81,12 +81,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-jr96-7frv-3mpj"
"refsource": "MISC",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities",
"name": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
},
{
"refsource": "CONFIRM",
"url": "https://unit42.paloaltonetworks.com/aws-log4shell-hot-patch-vulnerabilities"
"refsource": "MISC",
"url": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-jr96-7frv-3mpj",
"name": "https://github.com/bottlerocket-os/hotdog/security/advisories/GHSA-jr96-7frv-3mpj"
}
]
},

18
2022/1xxx/CVE-2022-1406.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-1406",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

2
2022/24xxx/CVE-2022-24858.json
View File

@ -35,7 +35,7 @@
"description_data": [
{
"lang": "eng",
"value": "next-auth v3 users before version 3.29.2 are impacted. next-auth version 4 users before version 4.3.2 are also impacted. Upgrading to 3.29.2 or 4.3.2 will patch this vulnerability. If you are not able to upgrade for any reason, you can add a configuration to your callbacks option. If you already have a `redirect` callback, make sure that you match the incoming `url` origin against the `baseUrl`.\n"
"value": "next-auth v3 users before version 3.29.2 are impacted. next-auth version 4 users before version 4.3.2 are also impacted. Upgrading to 3.29.2 or 4.3.2 will patch this vulnerability. If you are not able to upgrade for any reason, you can add a configuration to your callbacks option. If you already have a `redirect` callback, make sure that you match the incoming `url` origin against the `baseUrl`."
}
]
},