admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-21 05:40:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2023-02-10 18:00:40 +00:00
parent 8c759fbd50
commit a6d2e9ccee
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
13 changed files with 196 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2020/28xxx/CVE-2020-28871.json
View File

@ -66,6 +66,11 @@
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/163263/Monitorr-1.7.6m-Bypass-Information-Disclosure-Shell-Upload.html",
"url": "http://packetstormsecurity.com/files/163263/Monitorr-1.7.6m-Bypass-Information-Disclosure-Shell-Upload.html"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170974/Monitorr-1.7.6-Shell-Upload.html",
"url": "http://packetstormsecurity.com/files/170974/Monitorr-1.7.6-Shell-Upload.html"
}
]
}

60
2022/46xxx/CVE-2022-46649.json
View File

@ -4,14 +4,68 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-46649",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@sierrawireless.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "ALEOS",
"version": {
"version_data": [
{
"version_value": "all versions before 4.16"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-78 - Improper Neutralization of Special Elements used in an OS Command"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-001/",
"url": "https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-001/"
},
{
"refsource": "MISC",
"name": "https://www.otorio.com/blog/airlink-acemanager-vulnerabilities/",
"url": "https://www.otorio.com/blog/airlink-acemanager-vulnerabilities/"
},
{
"refsource": "MISC",
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-04",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-04"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Acemanager in ALEOS before version 4.16 allows a user with valid credentials to manipulate the IP logging operation to execute arbitrary shell commands on the device."
}
]
}

60
2022/46xxx/CVE-2022-46650.json
View File

@ -4,14 +4,68 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-46650",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@sierrawireless.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "ALEOS",
"version": {
"version_data": [
{
"version_value": "all versions before 4.16"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-001/",
"url": "https://source.sierrawireless.com/resources/security-bulletins/sierra-wireless-technical-bulletin---swi-psa-2023-001/"
},
{
"refsource": "MISC",
"name": "https://www.otorio.com/blog/airlink-acemanager-vulnerabilities/",
"url": "https://www.otorio.com/blog/airlink-acemanager-vulnerabilities/"
},
{
"refsource": "MISC",
"name": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-04",
"url": "https://www.cisa.gov/uscert/ics/advisories/icsa-23-026-04"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Acemanager in ALEOS before version 4.16 allows a user with valid credentials to reconfigure the device to expose the ACEManager credentials on the pre-login status page."
}
]
}

10
2023/21xxx/CVE-2023-21748.json
View File

@ -302,6 +302,16 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21748",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21748"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170949/Windows-Kernel-Registry-Virtualization-Incompatibility.html",
"url": "http://packetstormsecurity.com/files/170949/Windows-Kernel-Registry-Virtualization-Incompatibility.html"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html",
"url": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html"
}
]
},

5
2023/21xxx/CVE-2023-21749.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21749",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21749"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170947/Windows-Kernsl-SID-Table-Poisoning.html",
"url": "http://packetstormsecurity.com/files/170947/Windows-Kernsl-SID-Table-Poisoning.html"
}
]
},

5
2023/21xxx/CVE-2023-21750.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21750",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21750"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170948/Windows-Kernel-Virtualizable-Hive-Key-Deletion.html",
"url": "http://packetstormsecurity.com/files/170948/Windows-Kernel-Virtualizable-Hive-Key-Deletion.html"
}
]
},

5
2023/21xxx/CVE-2023-21772.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21772",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21772"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html",
"url": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html"
}
]
},

5
2023/21xxx/CVE-2023-21773.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21773",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21773"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html",
"url": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html"
}
]
},

5
2023/21xxx/CVE-2023-21774.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21774",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21774"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html",
"url": "http://packetstormsecurity.com/files/170946/Windows-Kernel-Key-Replication-Issues.html"
}
]
},

5
2023/21xxx/CVE-2023-21776.json
View File

@ -302,6 +302,11 @@
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21776",
"refsource": "MISC",
"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2023-21776"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/170947/Windows-Kernsl-SID-Table-Poisoning.html",
"url": "http://packetstormsecurity.com/files/170947/Windows-Kernsl-SID-Table-Poisoning.html"
}
]
},

2
2023/23xxx/CVE-2023-23489.json
View File

@ -55,7 +55,7 @@
"description_data": [
{
"lang": "eng",
"value": "The Easy Digital Downloads WordPress Plugin, version < 3.1.0.4, is affected by an unauthenticated SQL injection vulnerability in the 's' parameter of its 'edd_download_search' action."
"value": "The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerability in the 's' parameter of its 'edd_download_search' action."
}
]
}

18
2023/25xxx/CVE-2023-25677.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-25677",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2023/25xxx/CVE-2023-25678.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-25678",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}