From a7e698f18e162a88d8c8875112e6401cfdbccd50 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 10 Jan 2023 06:00:40 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2017/20xxx/CVE-2017-20166.json | 77 ++++++++++++++++++++++++++++++++++ 2021/46xxx/CVE-2021-46871.json | 67 +++++++++++++++++++++++++++++ 2023/22xxx/CVE-2023-22903.json | 62 +++++++++++++++++++++++++++ 3 files changed, 206 insertions(+) create mode 100644 2017/20xxx/CVE-2017-20166.json create mode 100644 2021/46xxx/CVE-2021-46871.json create mode 100644 2023/22xxx/CVE-2023-22903.json diff --git a/2017/20xxx/CVE-2017-20166.json b/2017/20xxx/CVE-2017-20166.json new file mode 100644 index 00000000000..96adf0af5ba --- /dev/null +++ b/2017/20xxx/CVE-2017-20166.json @@ -0,0 +1,77 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2017-20166", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Ecto 2.2.0 lacks a certain protection mechanism associated with the interaction between is_nil and raise." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/advisories/GHSA-2xxx-fhc8-9qvq", + "refsource": "MISC", + "name": "https://github.com/advisories/GHSA-2xxx-fhc8-9qvq" + }, + { + "url": "https://github.com/elixir-ecto/ecto/pull/2125", + "refsource": "MISC", + "name": "https://github.com/elixir-ecto/ecto/pull/2125" + }, + { + "url": "https://github.com/elixir-ecto/ecto/commit/db55b0cba6525c24ebddc88ef9ae0c1c00620250", + "refsource": "MISC", + "name": "https://github.com/elixir-ecto/ecto/commit/db55b0cba6525c24ebddc88ef9ae0c1c00620250" + }, + { + "url": "https://groups.google.com/forum/#!topic/elixir-ecto/0m4NPfg_MMU", + "refsource": "MISC", + "name": "https://groups.google.com/forum/#!topic/elixir-ecto/0m4NPfg_MMU" + } + ] + } +} \ No newline at end of file diff --git a/2021/46xxx/CVE-2021-46871.json b/2021/46xxx/CVE-2021-46871.json new file mode 100644 index 00000000000..6b434dff895 --- /dev/null +++ b/2021/46xxx/CVE-2021-46871.json @@ -0,0 +1,67 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2021-46871", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "tag.ex in Phoenix Phoenix.HTML (aka phoenix_html) before 3.0.4 allows XSS in HEEx class attributes." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/advisories/GHSA-j3gg-r6gp-95q2", + "refsource": "MISC", + "name": "https://github.com/advisories/GHSA-j3gg-r6gp-95q2" + }, + { + "url": "https://github.com/phoenixframework/phoenix_html/commit/62a0139fb716bcdce697f6221244bd81d321d620", + "refsource": "MISC", + "name": "https://github.com/phoenixframework/phoenix_html/commit/62a0139fb716bcdce697f6221244bd81d321d620" + } + ] + } +} \ No newline at end of file diff --git a/2023/22xxx/CVE-2023-22903.json b/2023/22xxx/CVE-2023-22903.json new file mode 100644 index 00000000000..ecbf8240105 --- /dev/null +++ b/2023/22xxx/CVE-2023-22903.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2023-22903", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "api/views/user.py in LibrePhotos before e19e539 has incorrect access control." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/LibrePhotos/librephotos/commit/e19e539356df77f6f59e7d1eea22d452b268e120", + "refsource": "MISC", + "name": "https://github.com/LibrePhotos/librephotos/commit/e19e539356df77f6f59e7d1eea22d452b268e120" + } + ] + } +} \ No newline at end of file