admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-21 05:40:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2024-01-26 05:00:36 +00:00
parent 0697c65a20
commit 87b92ad026
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
5 changed files with 281 additions and 25 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

71
2023/38xxx/CVE-2023-38317.json
View File

@ -1,17 +1,76 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-38317",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-38317",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the network interface name entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds",
"refsource": "MISC",
"name": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3",
"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/blob/master/ChangeLog",
"url": "https://github.com/openNDS/openNDS/blob/master/ChangeLog"
},
{
"refsource": "MISC",
"name": "https://www.forescout.com/resources/sierra21-vulnerabilities",
"url": "https://www.forescout.com/resources/sierra21-vulnerabilities"
}
]
}

71
2023/38xxx/CVE-2023-38318.json
View File

@ -1,17 +1,76 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-38318",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-38318",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the gateway FQDN entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds",
"refsource": "MISC",
"name": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3",
"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/blob/master/ChangeLog",
"url": "https://github.com/openNDS/openNDS/blob/master/ChangeLog"
},
{
"refsource": "MISC",
"name": "https://www.forescout.com/resources/sierra21-vulnerabilities",
"url": "https://www.forescout.com/resources/sierra21-vulnerabilities"
}
]
}

71
2023/38xxx/CVE-2023-38319.json
View File

@ -1,17 +1,76 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-38319",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-38319",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the FAS key entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds",
"refsource": "MISC",
"name": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3",
"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/blob/master/ChangeLog",
"url": "https://github.com/openNDS/openNDS/blob/master/ChangeLog"
},
{
"refsource": "MISC",
"name": "https://www.forescout.com/resources/sierra21-vulnerabilities",
"url": "https://www.forescout.com/resources/sierra21-vulnerabilities"
}
]
}

71
2023/38xxx/CVE-2023-38323.json
View File

@ -1,17 +1,76 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-38323",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-38323",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in OpenNDS before 10.1.3. It fails to sanitize the status path script entry in the configuration file, allowing attackers that have direct or indirect access to this file to execute arbitrary OS commands."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds",
"refsource": "MISC",
"name": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3",
"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.3"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/blob/master/ChangeLog",
"url": "https://github.com/openNDS/openNDS/blob/master/ChangeLog"
},
{
"refsource": "MISC",
"name": "https://www.forescout.com/resources/sierra21-vulnerabilities",
"url": "https://www.forescout.com/resources/sierra21-vulnerabilities"
}
]
}

22
2023/38xxx/CVE-2023-38324.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in OpenNDS Captive Portal before version 10.1.2. It allows users to skip the splash page sequence when it is using the default FAS key and when OpenNDS is configured as FAS (default)."
"value": "An issue was discovered in OpenNDS before 10.1.2. It allows users to skip the splash page sequence (and directly authenticate) when it is using the default FAS key and OpenNDS is configured as FAS."
}
]
},
@ -52,10 +52,30 @@
},
"references": {
"reference_data": [
{
"url": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds",
"refsource": "MISC",
"name": "https://openwrt.org/docs/guide-user/services/captive-portal/opennds"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/releases/tag/v10.1.2",
"url": "https://github.com/openNDS/openNDS/releases/tag/v10.1.2"
},
{
"refsource": "MISC",
"name": "https://github.com/openNDS/openNDS/blob/master/ChangeLog",
"url": "https://github.com/openNDS/openNDS/blob/master/ChangeLog"
},
{
"refsource": "MISC",
"name": "https://www.forescout.com/resources/sierra21-vulnerabilities",
"url": "https://www.forescout.com/resources/sierra21-vulnerabilities"
},
{
"refsource": "MISC",
"name": "https://cwe.mitre.org/data/definitions/1390.html",
"url": "https://cwe.mitre.org/data/definitions/1390.html"
}
]
}