diff --git a/2022/23xxx/CVE-2022-23447.json b/2022/23xxx/CVE-2022-23447.json index c246bc0f1e6..c7e4e576b62 100644 --- a/2022/23xxx/CVE-2022-23447.json +++ b/2022/23xxx/CVE-2022-23447.json @@ -1,17 +1,117 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2022-23447", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@fortinet.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability [CWE-22] in FortiExtender management interface 7.0.0 through 7.0.3, 4.2.0 through 4.2.4, 4.1.1 through 4.1.8, 4.0.0 through 4.0.2, 3.3.0 through 3.3.2, 3.2.1 through 3.2.3, 5.3 all versions may allow an unauthenticated and remote attacker to retrieve\u00a0arbitrary files from the underlying filesystem via specially crafted web requests." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Information disclosure", + "cweId": "CWE-22" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Fortinet", + "product": { + "product_data": [ + { + "product_name": "FortiExtender", + "version": { + "version_data": [ + { + "version_affected": "<=", + "version_name": "7.0.0", + "version_value": "7.0.3" + }, + { + "version_affected": "=", + "version_value": "5.3.2" + }, + { + "version_affected": "<=", + "version_name": "4.2.0", + "version_value": "4.2.4" + }, + { + "version_affected": "<=", + "version_name": "4.1.1", + "version_value": "4.1.8" + }, + { + "version_affected": "<=", + "version_name": "4.0.0", + "version_value": "4.0.2" + }, + { + "version_affected": "<=", + "version_name": "3.3.0", + "version_value": "3.3.2" + }, + { + "version_affected": "<=", + "version_name": "3.2.1", + "version_value": "3.2.3" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://fortiguard.com/psirt/FG-IR-22-039", + "refsource": "MISC", + "name": "https://fortiguard.com/psirt/FG-IR-22-039" + } + ] + }, + "solution": [ + { + "lang": "en", + "value": "Please upgrade to FortiExtender version 7.2.0 or above Please upgrade to FortiExtender version 7.0.4 or above Please upgrade to FortiExtender version 4.2.5 or above Please upgrade to FortiExtender version 4.1.9 or above Please upgrade to FortiExtender version 4.0.3 or above Please upgrade to FortiExtender version 3.3.3 or above Please upgrade to FortiExtender version 3.2.4 or above " + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "NONE", + "baseScore": 7.3, + "baseSeverity": "HIGH", + "confidentialityImpact": "HIGH", + "integrityImpact": "NONE", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:F/RL:U/RC:C" } ] } diff --git a/2022/30xxx/CVE-2022-30130.json b/2022/30xxx/CVE-2022-30130.json index d2c840ae023..144caac2579 100644 --- a/2022/30xxx/CVE-2022-30130.json +++ b/2022/30xxx/CVE-2022-30130.json @@ -59,7 +59,7 @@ } }, { - "product_name": "Microsoft .NET Framework", + "product_name": "Microsoft .NET Framework 3.5 AND 4.6/4.6.2", "version": { "version_data": [ { diff --git a/2022/37xxx/CVE-2022-37026.json b/2022/37xxx/CVE-2022-37026.json index 61386729337..7bf5b5cb1ec 100644 --- a/2022/37xxx/CVE-2022-37026.json +++ b/2022/37xxx/CVE-2022-37026.json @@ -66,6 +66,11 @@ "refsource": "CONFIRM", "name": "https://erlangforums.com/t/otp-25-1-released/1854", "url": "https://erlangforums.com/t/otp-25-1-released/1854" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20230711 [SECURITY] [DLA 3491-1] erlang security update", + "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00012.html" } ] } diff --git a/2022/37xxx/CVE-2022-37966.json b/2022/37xxx/CVE-2022-37966.json index 5602727b1e8..2ca840fa52f 100644 --- a/2022/37xxx/CVE-2022-37966.json +++ b/2022/37xxx/CVE-2022-37966.json @@ -46,6 +46,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -71,7 +83,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -83,14 +107,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -111,6 +166,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -122,6 +189,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/37xxx/CVE-2022-37967.json b/2022/37xxx/CVE-2022-37967.json index abf11c06c3b..e168b6a4018 100644 --- a/2022/37xxx/CVE-2022-37967.json +++ b/2022/37xxx/CVE-2022-37967.json @@ -41,7 +41,19 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.17763.4499" + "version_value": "10.0.17763.4645" + } + ] + } + }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4645" } ] } @@ -53,7 +65,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.20348.1783" + "version_value": "10.0.20348.1850" } ] } @@ -65,36 +77,79 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.14393.5989" + "version_value": "10.0.14393.6085" } ] } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.6085" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.0.6003.22113" + "version_value": "6.0.6003.22175" } ] } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", - "version_value": "6.1.7601.26564" - }, + "version_value": "6.1.7601.26623" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.1.7601.26564" + "version_value": "6.1.7601.26623" } ] } @@ -106,7 +161,19 @@ { "version_affected": "<", "version_name": "6.2.0", - "version_value": "6.2.9200.24314" + "version_value": "6.2.9200.24374" + } + ] + } + }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24374" } ] } @@ -118,7 +185,19 @@ { "version_affected": "<", "version_name": "6.3.0", - "version_value": "6.3.9600.21013" + "version_value": "6.3.9600.21063" + } + ] + } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.21063" } ] } diff --git a/2022/37xxx/CVE-2022-37992.json b/2022/37xxx/CVE-2022-37992.json index 4b1faa53c24..d0491a781d9 100644 --- a/2022/37xxx/CVE-2022-37992.json +++ b/2022/37xxx/CVE-2022-37992.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/38xxx/CVE-2022-38015.json b/2022/38xxx/CVE-2022-38015.json index d0bfe90ba5b..ef39ee3da3c 100644 --- a/2022/38xxx/CVE-2022-38015.json +++ b/2022/38xxx/CVE-2022-38015.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -177,6 +189,18 @@ } ] } + }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } } ] } diff --git a/2022/38xxx/CVE-2022-38023.json b/2022/38xxx/CVE-2022-38023.json index dbb0f1cfa99..72e5cb4d53e 100644 --- a/2022/38xxx/CVE-2022-38023.json +++ b/2022/38xxx/CVE-2022-38023.json @@ -41,7 +41,19 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.17763.4252" + "version_value": "10.0.17763.4645" + } + ] + } + }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4645" } ] } @@ -53,7 +65,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.20348.1668" + "version_value": "10.0.20348.1850" } ] } @@ -65,36 +77,79 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.14393.5850" + "version_value": "10.0.14393.6085" } ] } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.6085" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.0.6003.22015" + "version_value": "6.0.6003.22175" } ] } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", - "version_value": "6.1.7601.26466" - }, + "version_value": "6.1.7601.26623" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.1.7601.26466" + "version_value": "6.1.7601.26623" } ] } @@ -106,7 +161,19 @@ { "version_affected": "<", "version_name": "6.2.0", - "version_value": "6.2.9200.24216" + "version_value": "6.2.9200.24374" + } + ] + } + }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24374" } ] } @@ -118,7 +185,19 @@ { "version_affected": "<", "version_name": "6.3.0", - "version_value": "6.3.9600.20919" + "version_value": "6.3.9600.21063" + } + ] + } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.21063" } ] } diff --git a/2022/41xxx/CVE-2022-41039.json b/2022/41xxx/CVE-2022-41039.json index c0f8584b1f4..5dad52139a4 100644 --- a/2022/41xxx/CVE-2022-41039.json +++ b/2022/41xxx/CVE-2022-41039.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,14 +239,21 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -231,6 +274,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -242,6 +297,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41044.json b/2022/41xxx/CVE-2022-41044.json index 13d674f152f..c98a0d261a4 100644 --- a/2022/41xxx/CVE-2022-41044.json +++ b/2022/41xxx/CVE-2022-41044.json @@ -47,7 +47,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -59,14 +71,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", diff --git a/2022/41xxx/CVE-2022-41045.json b/2022/41xxx/CVE-2022-41045.json index de806d16cbc..e909ef50d54 100644 --- a/2022/41xxx/CVE-2022-41045.json +++ b/2022/41xxx/CVE-2022-41045.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41047.json b/2022/41xxx/CVE-2022-41047.json index 3148e88100a..2e24e464a06 100644 --- a/2022/41xxx/CVE-2022-41047.json +++ b/2022/41xxx/CVE-2022-41047.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41048.json b/2022/41xxx/CVE-2022-41048.json index 7222c7a83a1..44216abfcbb 100644 --- a/2022/41xxx/CVE-2022-41048.json +++ b/2022/41xxx/CVE-2022-41048.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41049.json b/2022/41xxx/CVE-2022-41049.json index bcb11776bf5..79ebb8d494e 100644 --- a/2022/41xxx/CVE-2022-41049.json +++ b/2022/41xxx/CVE-2022-41049.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -154,6 +166,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 11 version 22H2", "version": { diff --git a/2022/41xxx/CVE-2022-41050.json b/2022/41xxx/CVE-2022-41050.json index 90c77f18997..b3e3cf81dab 100644 --- a/2022/41xxx/CVE-2022-41050.json +++ b/2022/41xxx/CVE-2022-41050.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -154,6 +166,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 11 version 22H2", "version": { diff --git a/2022/41xxx/CVE-2022-41051.json b/2022/41xxx/CVE-2022-41051.json index d425ba43ffb..8a580551d6a 100644 --- a/2022/41xxx/CVE-2022-41051.json +++ b/2022/41xxx/CVE-2022-41051.json @@ -35,7 +35,7 @@ "product": { "product_data": [ { - "product_name": "Azure Real Time Operating System GUIX", + "product_name": "Azure RTOS GUIX Studio", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41052.json b/2022/41xxx/CVE-2022-41052.json index de0cc4cf53f..2cda86feb7d 100644 --- a/2022/41xxx/CVE-2022-41052.json +++ b/2022/41xxx/CVE-2022-41052.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -165,6 +177,18 @@ } ] } + }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41053.json b/2022/41xxx/CVE-2022-41053.json index 3a5e5689f53..bf4a2f59834 100644 --- a/2022/41xxx/CVE-2022-41053.json +++ b/2022/41xxx/CVE-2022-41053.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41054.json b/2022/41xxx/CVE-2022-41054.json index ea8bbd2390b..9ff64f72332 100644 --- a/2022/41xxx/CVE-2022-41054.json +++ b/2022/41xxx/CVE-2022-41054.json @@ -131,7 +131,19 @@ } }, { - "product_name": "Windows Server 2016", + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, + { + "product_name": "Windows Server 2016 (Server Core installation)", "version": { "version_data": [ { @@ -165,6 +177,18 @@ } ] } + }, + { + "product_name": "Windows Server 2016", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41055.json b/2022/41xxx/CVE-2022-41055.json index 0b0d213d507..01b7e3c888a 100644 --- a/2022/41xxx/CVE-2022-41055.json +++ b/2022/41xxx/CVE-2022-41055.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { diff --git a/2022/41xxx/CVE-2022-41056.json b/2022/41xxx/CVE-2022-41056.json index 6025f075a99..2d45723564a 100644 --- a/2022/41xxx/CVE-2022-41056.json +++ b/2022/41xxx/CVE-2022-41056.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41057.json b/2022/41xxx/CVE-2022-41057.json index ffdb28041d3..d6dd5e3a308 100644 --- a/2022/41xxx/CVE-2022-41057.json +++ b/2022/41xxx/CVE-2022-41057.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41058.json b/2022/41xxx/CVE-2022-41058.json index 414b1fcd7e2..d26ca445b94 100644 --- a/2022/41xxx/CVE-2022-41058.json +++ b/2022/41xxx/CVE-2022-41058.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41060.json b/2022/41xxx/CVE-2022-41060.json index 4e6ff72bd26..41514c4724d 100644 --- a/2022/41xxx/CVE-2022-41060.json +++ b/2022/41xxx/CVE-2022-41060.json @@ -47,18 +47,13 @@ } }, { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office LTSC 2021", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.1", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, - { - "version_affected": "<", - "version_name": "19.0.0", - "version_value": "https://aka.ms/OfficeSecurityReleases" } ] } @@ -88,18 +83,25 @@ } }, { - "product_name": "Microsoft Word", + "product_name": "Microsoft Office 2019", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "19.0.0", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Word 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.1", "version_value": "16.0.5369.1000" - }, - { - "version_affected": "<", - "version_name": "15.0.1", - "version_value": "15.0.5501.1000" } ] } @@ -141,7 +143,43 @@ } }, { - "product_name": "Microsoft Office Web Apps Server", + "product_name": "Microsoft Word 2013 RT Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Office Web Apps Server 2013 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1 ", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41061.json b/2022/41xxx/CVE-2022-41061.json index 71b3418efa6..156894e068c 100644 --- a/2022/41xxx/CVE-2022-41061.json +++ b/2022/41xxx/CVE-2022-41061.json @@ -83,18 +83,13 @@ } }, { - "product_name": "Microsoft Word", + "product_name": "Microsoft Word 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.1", "version_value": "16.0.5369.1000" - }, - { - "version_affected": "<", - "version_name": "15.0.1", - "version_value": "15.0.5501.1000" } ] } @@ -124,18 +119,13 @@ } }, { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office LTSC for Mac 2021", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.1", "version_value": "16.67.22111300" - }, - { - "version_affected": "<", - "version_name": "16.0.0", - "version_value": "16.67.22111300" } ] } @@ -153,7 +143,55 @@ } }, { - "product_name": "Microsoft Office Web Apps Server", + "product_name": "Microsoft Office 2019 for Mac", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.0", + "version_value": "16.67.22111300" + } + ] + } + }, + { + "product_name": "Microsoft Office Web Apps Server 2013 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 RT Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5501.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1 ", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41063.json b/2022/41xxx/CVE-2022-41063.json index abe28d68d74..f8d132dbc83 100644 --- a/2022/41xxx/CVE-2022-41063.json +++ b/2022/41xxx/CVE-2022-41063.json @@ -35,18 +35,13 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, - { - "version_affected": "<", - "version_name": "16.0.1", - "version_value": "https://aka.ms/OfficeSecurityReleases" } ] } @@ -76,14 +71,33 @@ } }, { - "product_name": "Microsoft Excel", + "product_name": "Microsoft Office LTSC 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Excel 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.0.0", "version_value": "16.0.5369.1000" - }, + } + ] + } + }, + { + "product_name": "Microsoft Excel 2013 Service Pack 1", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "15.0.0.0", @@ -93,7 +107,7 @@ } }, { - "product_name": "Microsoft Office Web Apps Server", + "product_name": "Microsoft Office Web Apps Server 2013 Service Pack 1", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41064.json b/2022/41xxx/CVE-2022-41064.json index 43e3e135b68..be925cf1096 100644 --- a/2022/41xxx/CVE-2022-41064.json +++ b/2022/41xxx/CVE-2022-41064.json @@ -1,776 +1,17 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ASSIGNER": "secure@microsoft.com", "ID": "CVE-2022-41064", + "ASSIGNER": "secure@microsoft.com", "STATE": "PUBLIC" }, - "affects": { - "vendor": { - "vendor_data": [ - { - "product": { - "product_data": [ - { - "product_name": "Nuget 2.1.2", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Nuget 4.8.5", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H1 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 20H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H1 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows RT 8.1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 20H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 20H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H1 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.7.2", - "version": { - "version_data": [ - { - "version_value": "Windows 10 Version 1809 for x64-based Systems" - }, - { - "version_value": "Windows 10 Version 1809 for 32-bit Systems" - }, - { - "version_value": "Windows Server 2019" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.7.2 on Windows 10 Version 1809 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.7.2 on Windows Server 2019 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 21H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H1 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H1 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H1 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 21H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows Server 2019 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 11 Version 22H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 11 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 22H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows 7 for x64-based Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 22H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 11 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 22H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 22H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 11 Version 22H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 22H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 1809 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 20H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012 R2 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows 8.1 for x64-based systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows 8.1 for 32-bit systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows RT 8.1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 22H2 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 11 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 20H2 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 20H2 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows 7 for 32-bit Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 11 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 1809 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2012 R2", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2 on Windows Server 2008 R2 for x64-based Systems Service Pack 1", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8.1 on Windows 10 Version 1809 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2 on Windows Server 2008 for x64-based Systems Service Pack 2", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2 on Windows Server 2008 for 32-bit Systems Service Pack 2", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for 32-bit Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2 on Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.6.2 on Windows 10 for x64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - }, - { - "product_name": "Microsoft .NET Framework 4.8 on Windows 10 Version 1809 for ARM64-based Systems", - "version": { - "version_data": [ - { - "version_value": "" - } - ] - } - } - ] - }, - "vendor_name": "Microsoft" - } - ] - } - }, "description": { "description_data": [ { "lang": "eng", - "value": ".NET Framework Information Disclosure Vulnerability." + "value": ".NET Framework Information Disclosure Vulnerability" } ] }, @@ -786,6 +27,127 @@ } ] }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Microsoft", + "product": { + "product_data": [ + { + "product_name": "Nuget 2.1.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "1.0.0", + "version_value": "2.1.2" + } + ] + } + }, + { + "product_name": "Nuget 4.8.5", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "1.0.0", + "version_value": "4.8.4" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.8", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "4.8.0", + "version_value": "4.8.04584.08" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "3.0.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.7.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0.0", + "version_value": "10.0.04005.02" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.8.1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "4.8.0.0", + "version_value": "4.8.09110.07" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.6.2/4.7/4.7.1/4.7.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "4.7.0", + "version_value": "4.7.04005.02" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.6.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "4.7.0", + "version_value": "4.7.04005.02" + } + ] + } + }, + { + "product_name": "Microsoft .NET Framework 4.6/4.6.2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0.0", + "version_value": "10.0.10240.19567" + } + ] + } + } + ] + } + } + ] + } + }, "references": { "reference_data": [ { @@ -796,11 +158,13 @@ ] }, "impact": { - "cvss": { - "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C", - "baseScore": "5.8", - "temporalScore": "5.1", - "version": "3.1" - } + "cvss": [ + { + "version": "3.1", + "baseSeverity": "HIGH", + "baseScore": 5.8, + "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N/E:U/RL:O/RC:C" + } + ] } } \ No newline at end of file diff --git a/2022/41xxx/CVE-2022-41073.json b/2022/41xxx/CVE-2022-41073.json index c79ba0ec87f..8f71b58f5fd 100644 --- a/2022/41xxx/CVE-2022-41073.json +++ b/2022/41xxx/CVE-2022-41073.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41078.json b/2022/41xxx/CVE-2022-41078.json index 39b0b5fe55f..e4bfed4286d 100644 --- a/2022/41xxx/CVE-2022-41078.json +++ b/2022/41xxx/CVE-2022-41078.json @@ -47,7 +47,7 @@ } }, { - "product_name": "Microsoft Exchange Server", + "product_name": "Microsoft Exchange Server 2016 Cumulative Update 22", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41079.json b/2022/41xxx/CVE-2022-41079.json index 6542b14e6a8..26d4d2548e2 100644 --- a/2022/41xxx/CVE-2022-41079.json +++ b/2022/41xxx/CVE-2022-41079.json @@ -59,7 +59,7 @@ } }, { - "product_name": "Microsoft Exchange Server", + "product_name": "Microsoft Exchange Server 2016 Cumulative Update 22", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41080.json b/2022/41xxx/CVE-2022-41080.json index 11b503de78b..8b79f8df60b 100644 --- a/2022/41xxx/CVE-2022-41080.json +++ b/2022/41xxx/CVE-2022-41080.json @@ -83,7 +83,7 @@ } }, { - "product_name": "Microsoft Exchange Server", + "product_name": "Microsoft Exchange Server 2016 Cumulative Update 22", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41085.json b/2022/41xxx/CVE-2022-41085.json index 2b68ace453e..bde316576a2 100644 --- a/2022/41xxx/CVE-2022-41085.json +++ b/2022/41xxx/CVE-2022-41085.json @@ -35,14 +35,21 @@ "product": { "product_data": [ { - "product_name": "Azure CycleCloud", + "product_name": "Azure CycleCloud 8", "version": { "version_data": [ { "version_affected": "<", "version_name": "8.0", "version_value": "8.3.0" - }, + } + ] + } + }, + { + "product_name": "Azure CycleCloud 7", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "7.0", diff --git a/2022/41xxx/CVE-2022-41086.json b/2022/41xxx/CVE-2022-41086.json index 00de11db297..a0a339e8175 100644 --- a/2022/41xxx/CVE-2022-41086.json +++ b/2022/41xxx/CVE-2022-41086.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41088.json b/2022/41xxx/CVE-2022-41088.json index df0b0efa49b..3aa7a61b662 100644 --- a/2022/41xxx/CVE-2022-41088.json +++ b/2022/41xxx/CVE-2022-41088.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -202,6 +226,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -213,6 +249,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41090.json b/2022/41xxx/CVE-2022-41090.json index 7631564af8b..77d09c1dfc0 100644 --- a/2022/41xxx/CVE-2022-41090.json +++ b/2022/41xxx/CVE-2022-41090.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,14 +239,21 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -231,6 +274,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -242,6 +297,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41091.json b/2022/41xxx/CVE-2022-41091.json index d02caff46ce..0ce86adb4a1 100644 --- a/2022/41xxx/CVE-2022-41091.json +++ b/2022/41xxx/CVE-2022-41091.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -154,6 +166,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 11 version 22H2", "version": { diff --git a/2022/41xxx/CVE-2022-41093.json b/2022/41xxx/CVE-2022-41093.json index cdfaaefe471..6dbb319fbc2 100644 --- a/2022/41xxx/CVE-2022-41093.json +++ b/2022/41xxx/CVE-2022-41093.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -201,6 +225,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41095.json b/2022/41xxx/CVE-2022-41095.json index 82cfd7e651b..905bebd7e44 100644 --- a/2022/41xxx/CVE-2022-41095.json +++ b/2022/41xxx/CVE-2022-41095.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41096.json b/2022/41xxx/CVE-2022-41096.json index f3e7d55d024..d4af496dae3 100644 --- a/2022/41xxx/CVE-2022-41096.json +++ b/2022/41xxx/CVE-2022-41096.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { diff --git a/2022/41xxx/CVE-2022-41097.json b/2022/41xxx/CVE-2022-41097.json index feaf34455d4..777a4221485 100644 --- a/2022/41xxx/CVE-2022-41097.json +++ b/2022/41xxx/CVE-2022-41097.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41098.json b/2022/41xxx/CVE-2022-41098.json index 115fc695683..9f7a5fe4397 100644 --- a/2022/41xxx/CVE-2022-41098.json +++ b/2022/41xxx/CVE-2022-41098.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41105.json b/2022/41xxx/CVE-2022-41105.json index 168081f84b1..6f4051c992d 100644 --- a/2022/41xxx/CVE-2022-41105.json +++ b/2022/41xxx/CVE-2022-41105.json @@ -35,14 +35,21 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, + } + ] + } + }, + { + "product_name": "Microsoft 365 Apps for Enterprise", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "16.0.1", @@ -52,7 +59,7 @@ } }, { - "product_name": "Microsoft 365 Apps for Enterprise", + "product_name": "Microsoft Office LTSC 2021", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41106.json b/2022/41xxx/CVE-2022-41106.json index 0921a8a6eef..15c4f40889e 100644 --- a/2022/41xxx/CVE-2022-41106.json +++ b/2022/41xxx/CVE-2022-41106.json @@ -35,18 +35,13 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, - { - "version_affected": "<", - "version_name": "16.0.1", - "version_value": "https://aka.ms/OfficeSecurityReleases" } ] } @@ -76,14 +71,33 @@ } }, { - "product_name": "Microsoft Excel", + "product_name": "Microsoft Office LTSC 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Excel 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.0.0", "version_value": "16.0.5369.1000" - }, + } + ] + } + }, + { + "product_name": "Microsoft Excel 2013 Service Pack 1", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "15.0.0.0", @@ -93,7 +107,7 @@ } }, { - "product_name": "Microsoft Office Web Apps Server", + "product_name": "Microsoft Office Web Apps Server 2013 Service Pack 1", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41107.json b/2022/41xxx/CVE-2022-41107.json index b5186ed52c8..2f060ba628b 100644 --- a/2022/41xxx/CVE-2022-41107.json +++ b/2022/41xxx/CVE-2022-41107.json @@ -35,19 +35,45 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, + } + ] + } + }, + { + "product_name": "Microsoft Office 2019 for Mac", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "16.0.0", "version_value": "16.67.22111300" - }, + } + ] + } + }, + { + "product_name": "Microsoft 365 Apps for Enterprise", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Office LTSC for Mac 2021", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "16.0.1", @@ -57,7 +83,7 @@ } }, { - "product_name": "Microsoft 365 Apps for Enterprise", + "product_name": "Microsoft Office LTSC 2021", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41109.json b/2022/41xxx/CVE-2022-41109.json index 40fc766fea8..3ff9e924d36 100644 --- a/2022/41xxx/CVE-2022-41109.json +++ b/2022/41xxx/CVE-2022-41109.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 7", "version": { @@ -190,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +239,7 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -215,14 +251,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.21768" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -243,6 +310,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -254,6 +333,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41113.json b/2022/41xxx/CVE-2022-41113.json index 6dde260d356..8e91244abe0 100644 --- a/2022/41xxx/CVE-2022-41113.json +++ b/2022/41xxx/CVE-2022-41113.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3887" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { diff --git a/2022/41xxx/CVE-2022-41116.json b/2022/41xxx/CVE-2022-41116.json index ed82f8e41e5..1ca4b81c980 100644 --- a/2022/41xxx/CVE-2022-41116.json +++ b/2022/41xxx/CVE-2022-41116.json @@ -47,14 +47,33 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows 7 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26221" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", diff --git a/2022/41xxx/CVE-2022-41118.json b/2022/41xxx/CVE-2022-41118.json index c66cbc7713f..ae45d3f8221 100644 --- a/2022/41xxx/CVE-2022-41118.json +++ b/2022/41xxx/CVE-2022-41118.json @@ -179,7 +179,7 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { @@ -214,6 +214,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { diff --git a/2022/41xxx/CVE-2022-41119.json b/2022/41xxx/CVE-2022-41119.json index 7c15ebf7757..5fb91655dd6 100644 --- a/2022/41xxx/CVE-2022-41119.json +++ b/2022/41xxx/CVE-2022-41119.json @@ -35,19 +35,45 @@ "product": { "product_data": [ { - "product_name": "Microsoft Visual Studio", + "product_name": "Microsoft Visual Studio 2022 version 17.2", "version": { "version_data": [ { "version_affected": "<", "version_name": "17.2.0", "version_value": "17.2.10" - }, + } + ] + } + }, + { + "product_name": "Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "15.9.0", "version_value": "15.9.51" - }, + } + ] + } + }, + { + "product_name": "Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.11.0", + "version_value": "16.11.21" + } + ] + } + }, + { + "product_name": "Microsoft Visual Studio 2022 version 17.3", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "17.0.0", @@ -57,13 +83,13 @@ } }, { - "product_name": "Microsoft Visual Studio 2019", + "product_name": "Microsoft Visual Studio 2022 version 17.0", "version": { "version_data": [ { "version_affected": "<", - "version_name": "16.11.0", - "version_value": "16.11.21" + "version_name": "17.0.0", + "version_value": "17.0.16" } ] } diff --git a/2022/41xxx/CVE-2022-41123.json b/2022/41xxx/CVE-2022-41123.json index 1fc1041758f..334fc8a8eec 100644 --- a/2022/41xxx/CVE-2022-41123.json +++ b/2022/41xxx/CVE-2022-41123.json @@ -71,7 +71,7 @@ } }, { - "product_name": "Microsoft Exchange Server", + "product_name": "Microsoft Exchange Server 2016 Cumulative Update 22", "version": { "version_data": [ { diff --git a/2022/41xxx/CVE-2022-41125.json b/2022/41xxx/CVE-2022-41125.json index 37ca823bdc9..8e66a5f647f 100644 --- a/2022/41xxx/CVE-2022-41125.json +++ b/2022/41xxx/CVE-2022-41125.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.3650" + } + ] + } + }, { "product_name": "Windows 10 Version 21H1", "version": { @@ -178,6 +190,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5501" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -202,6 +226,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.23968" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -213,6 +249,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20671" + } + ] + } } ] } diff --git a/2022/41xxx/CVE-2022-41128.json b/2022/41xxx/CVE-2022-41128.json index 06ca7196a16..253e19605f4 100644 --- a/2022/41xxx/CVE-2022-41128.json +++ b/2022/41xxx/CVE-2022-41128.json @@ -190,6 +190,18 @@ ] } }, + { + "product_name": "Windows 7 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.1.0", + "version_value": "6.1.7601.26221" + } + ] + } + }, { "product_name": "Windows 8.1", "version": { @@ -203,7 +215,7 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { diff --git a/2023/24xxx/CVE-2023-24881.json b/2023/24xxx/CVE-2023-24881.json index 68c7cbce261..679e61e8b0a 100644 --- a/2023/24xxx/CVE-2023-24881.json +++ b/2023/24xxx/CVE-2023-24881.json @@ -1,17 +1,73 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-24881", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "secure@microsoft.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Microsoft Teams Information Disclosure Vulnerability" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Information Disclosure" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Microsoft", + "product": { + "product_data": [ + { + "product_name": "Microsoft Teams", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "2.0.0", + "version_value": "2.10.1" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24881", + "refsource": "MISC", + "name": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24881" + } + ] + }, + "impact": { + "cvss": [ + { + "version": "3.1", + "baseSeverity": "HIGH", + "baseScore": 6.5, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C" } ] } diff --git a/2023/24xxx/CVE-2023-24900.json b/2023/24xxx/CVE-2023-24900.json index de3d64d3c6f..5fc39ef260d 100644 --- a/2023/24xxx/CVE-2023-24900.json +++ b/2023/24xxx/CVE-2023-24900.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24901.json b/2023/24xxx/CVE-2023-24901.json index 398958f5b74..cfaab2a8e2f 100644 --- a/2023/24xxx/CVE-2023-24901.json +++ b/2023/24xxx/CVE-2023-24901.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -166,6 +178,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, { "product_name": "Windows Server 2012", "version": { @@ -178,6 +202,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -189,6 +225,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24903.json b/2023/24xxx/CVE-2023-24903.json index 6c188c6be9b..cc1f1ebdb71 100644 --- a/2023/24xxx/CVE-2023-24903.json +++ b/2023/24xxx/CVE-2023-24903.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24904.json b/2023/24xxx/CVE-2023-24904.json index 460fd0de4ae..d17315b1838 100644 --- a/2023/24xxx/CVE-2023-24904.json +++ b/2023/24xxx/CVE-2023-24904.json @@ -35,7 +35,7 @@ "product": { "product_data": [ { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -47,14 +47,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", diff --git a/2023/24xxx/CVE-2023-24932.json b/2023/24xxx/CVE-2023-24932.json index 2481649644a..96b9837a288 100644 --- a/2023/24xxx/CVE-2023-24932.json +++ b/2023/24xxx/CVE-2023-24932.json @@ -41,7 +41,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.17763.4377" + "version_value": "10.0.17763.4645" } ] } @@ -53,7 +53,19 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.17763.4377" + "version_value": "10.0.17763.4645" + } + ] + } + }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4645" } ] } @@ -65,7 +77,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.20348.1726" + "version_value": "10.0.20348.1850" } ] } @@ -89,7 +101,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.22000.1936" + "version_value": "10.0.22000.2176" } ] } @@ -101,7 +113,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.19044.2965" + "version_value": "10.0.19041.3208" } ] } @@ -113,7 +125,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.22621.1702" + "version_value": "10.0.22621.1992" } ] } @@ -125,7 +137,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.19045.2965" + "version_value": "10.0.19045.3208" } ] } @@ -137,7 +149,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.10240.19926" + "version_value": "10.0.10240.20048" } ] } @@ -149,7 +161,7 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.14393.5921" + "version_value": "10.0.14393.6085" } ] } @@ -161,36 +173,79 @@ { "version_affected": "<", "version_name": "10.0.0", - "version_value": "10.0.14393.5921" + "version_value": "10.0.14393.6085" } ] } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.6085" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.0.6003.22070" + "version_value": "6.0.6003.22175" } ] } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22175" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", - "version_value": "6.1.7601.26519" - }, + "version_value": "6.1.7601.26623" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", - "version_value": "6.1.7601.26519" + "version_value": "6.1.7601.26623" } ] } @@ -202,7 +257,19 @@ { "version_affected": "<", "version_name": "6.2.0", - "version_value": "6.2.9200.24266" + "version_value": "6.2.9200.24374" + } + ] + } + }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24374" } ] } @@ -214,7 +281,19 @@ { "version_affected": "<", "version_name": "6.3.0", - "version_value": "6.3.9600.20969" + "version_value": "6.3.9600.21063" + } + ] + } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.21063" } ] } diff --git a/2023/24xxx/CVE-2023-24939.json b/2023/24xxx/CVE-2023-24939.json index e6dd9ee3253..408061d929d 100644 --- a/2023/24xxx/CVE-2023-24939.json +++ b/2023/24xxx/CVE-2023-24939.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -166,6 +178,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, { "product_name": "Windows Server 2012", "version": { @@ -178,6 +202,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -189,6 +225,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24940.json b/2023/24xxx/CVE-2023-24940.json index 995967bd83c..15e027056d8 100644 --- a/2023/24xxx/CVE-2023-24940.json +++ b/2023/24xxx/CVE-2023-24940.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24941.json b/2023/24xxx/CVE-2023-24941.json index 2cb65e01eb3..01ab34c65a1 100644 --- a/2023/24xxx/CVE-2023-24941.json +++ b/2023/24xxx/CVE-2023-24941.json @@ -46,6 +46,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -70,6 +82,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, { "product_name": "Windows Server 2012", "version": { @@ -82,6 +106,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -93,6 +129,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24942.json b/2023/24xxx/CVE-2023-24942.json index 9673d17a361..c4aaf112aae 100644 --- a/2023/24xxx/CVE-2023-24942.json +++ b/2023/24xxx/CVE-2023-24942.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24943.json b/2023/24xxx/CVE-2023-24943.json index b39d9313e93..8371b250f9d 100644 --- a/2023/24xxx/CVE-2023-24943.json +++ b/2023/24xxx/CVE-2023-24943.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24944.json b/2023/24xxx/CVE-2023-24944.json index 8e29aabb84a..8294e03b4fc 100644 --- a/2023/24xxx/CVE-2023-24944.json +++ b/2023/24xxx/CVE-2023-24944.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { diff --git a/2023/24xxx/CVE-2023-24945.json b/2023/24xxx/CVE-2023-24945.json index 80ad79582e7..a8bf3026243 100644 --- a/2023/24xxx/CVE-2023-24945.json +++ b/2023/24xxx/CVE-2023-24945.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24946.json b/2023/24xxx/CVE-2023-24946.json index bcad8f87e43..d6a5d80e03c 100644 --- a/2023/24xxx/CVE-2023-24946.json +++ b/2023/24xxx/CVE-2023-24946.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows 10 Version 20H2", "version": { @@ -155,14 +167,33 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", diff --git a/2023/24xxx/CVE-2023-24947.json b/2023/24xxx/CVE-2023-24947.json index b4c25e8fb23..77208539bee 100644 --- a/2023/24xxx/CVE-2023-24947.json +++ b/2023/24xxx/CVE-2023-24947.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows 10 Version 20H2", "version": { @@ -117,6 +129,18 @@ } ] } + }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24948.json b/2023/24xxx/CVE-2023-24948.json index 9c16e913bff..98d4f4b366d 100644 --- a/2023/24xxx/CVE-2023-24948.json +++ b/2023/24xxx/CVE-2023-24948.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows 10 Version 20H2", "version": { @@ -142,6 +154,18 @@ ] } }, + { + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, { "product_name": "Windows Server 2012", "version": { @@ -154,6 +178,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -165,6 +201,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/24xxx/CVE-2023-24949.json b/2023/24xxx/CVE-2023-24949.json index 3620ceabebc..07b1d2c3183 100644 --- a/2023/24xxx/CVE-2023-24949.json +++ b/2023/24xxx/CVE-2023-24949.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { diff --git a/2023/24xxx/CVE-2023-24953.json b/2023/24xxx/CVE-2023-24953.json index 973565fa2a1..637250b378f 100644 --- a/2023/24xxx/CVE-2023-24953.json +++ b/2023/24xxx/CVE-2023-24953.json @@ -35,23 +35,25 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, + } + ] + } + }, + { + "product_name": "Microsoft Office 2019 for Mac", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "16.0.0", "version_value": "16.73.23051401" - }, - { - "version_affected": "<", - "version_name": "16.0.1", - "version_value": "16.73.23051401" } ] } @@ -81,14 +83,45 @@ } }, { - "product_name": "Microsoft Excel", + "product_name": "Microsoft Office LTSC for Mac 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "16.73.23051401" + } + ] + } + }, + { + "product_name": "Microsoft Office LTSC 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Excel 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.0.0", "version_value": "16.0.5395.1000" - }, + } + ] + } + }, + { + "product_name": "Microsoft Excel 2013 Service Pack 1", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "15.0.0.0", diff --git a/2023/25xxx/CVE-2023-25606.json b/2023/25xxx/CVE-2023-25606.json index 3fb1ea051e3..efe0057afd2 100644 --- a/2023/25xxx/CVE-2023-25606.json +++ b/2023/25xxx/CVE-2023-25606.json @@ -1,17 +1,120 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-25606", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@fortinet.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An improper limitation of a pathname to a restricted directory ('Path Traversal')\u00a0vulnerability [CWE-23] in FortiAnalyzer and FortiManager management interface\u00a07.2.0 through 7.2.1, 7.0.0 through 7.0.5, 6.4 \u00a0all versions may allow a remote and\u00a0authenticated attacker to retrieve arbitrary files from the underlying filesystem via specially crafted web requests." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Information disclosure", + "cweId": "CWE-22" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Fortinet", + "product": { + "product_data": [ + { + "product_name": "FortiManager", + "version": { + "version_data": [ + { + "version_affected": "<=", + "version_name": "7.2.0", + "version_value": "7.2.1" + }, + { + "version_affected": "<=", + "version_name": "7.0.0", + "version_value": "7.0.5" + }, + { + "version_affected": "<=", + "version_name": "6.4.0", + "version_value": "6.4.10" + } + ] + } + }, + { + "product_name": "FortiAnalyzer", + "version": { + "version_data": [ + { + "version_affected": "<=", + "version_name": "7.2.0", + "version_value": "7.2.1" + }, + { + "version_affected": "<=", + "version_name": "7.0.0", + "version_value": "7.0.5" + }, + { + "version_affected": "<=", + "version_name": "6.4.0", + "version_value": "6.4.10" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://fortiguard.com/psirt/FG-IR-22-471", + "refsource": "MISC", + "name": "https://fortiguard.com/psirt/FG-IR-22-471" + } + ] + }, + "solution": [ + { + "lang": "en", + "value": "Please upgrade to FortiManager version 7.2.2 or above Please upgrade to FortiManager version 7.0.7 or above Please upgrade to FortiManager version 6.4.12 or above Please upgrade to FortiAnalyzer version 7.2.2 or above Please upgrade to FortiAnalyzer version 7.0.7 or above Please upgrade to FortiAnalyzer version 6.4.12 or above " + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "NONE", + "baseScore": 6.2, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "HIGH", + "integrityImpact": "NONE", + "privilegesRequired": "LOW", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:P/RL:X/RC:C" } ] } diff --git a/2023/26xxx/CVE-2023-26861.json b/2023/26xxx/CVE-2023-26861.json index 4f3cf546e32..230c7819358 100644 --- a/2023/26xxx/CVE-2023-26861.json +++ b/2023/26xxx/CVE-2023-26861.json @@ -1,17 +1,71 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2023-26861", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2023-26861", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "SQL injection vulnerability found in PrestaShop vivawallet v.1.7.10 and before allows a remote attacker to gain privileges via the vivawallet() module." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/VivaPayments/API/commit/c1169680508c6e144d3e102ebdb257612e4cd84a", + "refsource": "MISC", + "name": "https://github.com/VivaPayments/API/commit/c1169680508c6e144d3e102ebdb257612e4cd84a" + }, + { + "url": "https://addons.prestashop.com/fr/paiement/89363-viva-wallet-smart-checkout.html", + "refsource": "MISC", + "name": "https://addons.prestashop.com/fr/paiement/89363-viva-wallet-smart-checkout.html" + }, + { + "refsource": "CONFIRM", + "name": "https://security.friendsofpresta.org/modules/2023/07/11/vivawallet.html", + "url": "https://security.friendsofpresta.org/modules/2023/07/11/vivawallet.html" } ] } diff --git a/2023/28xxx/CVE-2023-28001.json b/2023/28xxx/CVE-2023-28001.json index 18ccb92f441..ad1f82cbf6e 100644 --- a/2023/28xxx/CVE-2023-28001.json +++ b/2023/28xxx/CVE-2023-28001.json @@ -1,17 +1,93 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-28001", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "psirt@fortinet.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An insufficient session expiration in Fortinet FortiOS 7.0.0 - 7.0.12 and 7.2.0 - 7.2.4 allows an attacker to execute unauthorized code or commands via reusing the session of a deleted user in the REST API." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Execute unauthorized code or commands", + "cweId": "CWE-613" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Fortinet", + "product": { + "product_data": [ + { + "product_name": "FortiOS", + "version": { + "version_data": [ + { + "version_affected": "<=", + "version_name": "7.2.0", + "version_value": "7.2.4" + }, + { + "version_affected": "<=", + "version_name": "7.0.0", + "version_value": "7.0.12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://fortiguard.com/psirt/FG-IR-23-028", + "refsource": "MISC", + "name": "https://fortiguard.com/psirt/FG-IR-23-028" + } + ] + }, + "solution": [ + { + "lang": "en", + "value": "Please upgrade to FortiOS version 7.4.0 or above" + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "attackComplexity": "HIGH", + "attackVector": "NETWORK", + "availabilityImpact": "LOW", + "baseScore": 4.1, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "privilegesRequired": "HIGH", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L/E:U/RL:X/RC:X" } ] } diff --git a/2023/28xxx/CVE-2023-28251.json b/2023/28xxx/CVE-2023-28251.json index 3e568fb437e..a10dffa5f81 100644 --- a/2023/28xxx/CVE-2023-28251.json +++ b/2023/28xxx/CVE-2023-28251.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/28xxx/CVE-2023-28283.json b/2023/28xxx/CVE-2023-28283.json index fcaf1bd48fb..67a862ac050 100644 --- a/2023/28xxx/CVE-2023-28283.json +++ b/2023/28xxx/CVE-2023-28283.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/29xxx/CVE-2023-29324.json b/2023/29xxx/CVE-2023-29324.json index 2566ed068f2..bcede5829c9 100644 --- a/2023/29xxx/CVE-2023-29324.json +++ b/2023/29xxx/CVE-2023-29324.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/29xxx/CVE-2023-29325.json b/2023/29xxx/CVE-2023-29325.json index 1ca58cdf3e1..64acbe0845b 100644 --- a/2023/29xxx/CVE-2023-29325.json +++ b/2023/29xxx/CVE-2023-29325.json @@ -58,6 +58,18 @@ ] } }, + { + "product_name": "Windows Server 2019 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.17763.4377" + } + ] + } + }, { "product_name": "Windows Server 2022", "version": { @@ -167,7 +179,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -179,14 +203,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -207,6 +262,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -218,6 +285,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/29xxx/CVE-2023-29333.json b/2023/29xxx/CVE-2023-29333.json index b1fce54c53c..0cc69ea9015 100644 --- a/2023/29xxx/CVE-2023-29333.json +++ b/2023/29xxx/CVE-2023-29333.json @@ -35,14 +35,21 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, + } + ] + } + }, + { + "product_name": "Microsoft 365 Apps for Enterprise", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "16.0.1", @@ -52,7 +59,7 @@ } }, { - "product_name": "Microsoft 365 Apps for Enterprise", + "product_name": "Microsoft Office LTSC 2021", "version": { "version_data": [ { diff --git a/2023/29xxx/CVE-2023-29335.json b/2023/29xxx/CVE-2023-29335.json index de828d5188b..65bf2d53846 100644 --- a/2023/29xxx/CVE-2023-29335.json +++ b/2023/29xxx/CVE-2023-29335.json @@ -35,18 +35,13 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019", "version": { "version_data": [ { "version_affected": "<", "version_name": "19.0.0", "version_value": "https://aka.ms/OfficeSecurityReleases" - }, - { - "version_affected": "<", - "version_name": "16.0.1", - "version_value": "https://aka.ms/OfficeSecurityReleases" } ] } @@ -64,14 +59,57 @@ } }, { - "product_name": "Microsoft Word", + "product_name": "Microsoft Office LTSC 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "https://aka.ms/OfficeSecurityReleases" + } + ] + } + }, + { + "product_name": "Microsoft Word 2016", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.1", "version_value": "16.0.5395.1000" - }, + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 RT Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5553.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "15.0.1", + "version_value": "15.0.5553.1000" + } + ] + } + }, + { + "product_name": "Microsoft Word 2013 Service Pack 1 ", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "15.0.1", diff --git a/2023/29xxx/CVE-2023-29336.json b/2023/29xxx/CVE-2023-29336.json index 161c565a497..84043ed45a7 100644 --- a/2023/29xxx/CVE-2023-29336.json +++ b/2023/29xxx/CVE-2023-29336.json @@ -71,7 +71,19 @@ } }, { - "product_name": "Windows Server 2008", + "product_name": "Windows Server 2016 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "10.0.0", + "version_value": "10.0.14393.5921" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", "version": { "version_data": [ { @@ -83,14 +95,45 @@ } }, { - "product_name": "Windows Server 2008 R2", + "product_name": "Windows Server 2008 Service Pack 2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 Service Pack 2", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.0.0", + "version_value": "6.0.6003.22070" + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1", "version": { "version_data": [ { "version_affected": "<", "version_name": "6.1.0", "version_value": "6.1.7601.26519" - }, + } + ] + } + }, + { + "product_name": "Windows Server 2008 R2 Service Pack 1 (Server Core installation)", + "version": { + "version_data": [ { "version_affected": "<", "version_name": "6.0.0", @@ -111,6 +154,18 @@ ] } }, + { + "product_name": "Windows Server 2012 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.2.0", + "version_value": "6.2.9200.24266" + } + ] + } + }, { "product_name": "Windows Server 2012 R2", "version": { @@ -122,6 +177,18 @@ } ] } + }, + { + "product_name": "Windows Server 2012 R2 (Server Core installation)", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "6.3.0", + "version_value": "6.3.9600.20969" + } + ] + } } ] } diff --git a/2023/29xxx/CVE-2023-29344.json b/2023/29xxx/CVE-2023-29344.json index 3685a2c7d0f..3bcba881696 100644 --- a/2023/29xxx/CVE-2023-29344.json +++ b/2023/29xxx/CVE-2023-29344.json @@ -35,18 +35,13 @@ "product": { "product_data": [ { - "product_name": "Microsoft Office", + "product_name": "Microsoft Office 2019 for Mac", "version": { "version_data": [ { "version_affected": "<", "version_name": "16.0.0", "version_value": "16.73.23051401" - }, - { - "version_affected": "<", - "version_name": "16.0.1", - "version_value": "16.73.23051401" } ] } @@ -62,6 +57,18 @@ } ] } + }, + { + "product_name": "Microsoft Office LTSC for Mac 2021", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "16.0.1", + "version_value": "16.73.23051401" + } + ] + } } ] } diff --git a/2023/29xxx/CVE-2023-29350.json b/2023/29xxx/CVE-2023-29350.json index 47c2455b2c2..6936b89b9db 100644 --- a/2023/29xxx/CVE-2023-29350.json +++ b/2023/29xxx/CVE-2023-29350.json @@ -35,7 +35,7 @@ "product": { "product_data": [ { - "product_name": "Microsoft Edge", + "product_name": "Microsoft Edge (Chromium-based)", "version": { "version_data": [ { diff --git a/2023/29xxx/CVE-2023-29354.json b/2023/29xxx/CVE-2023-29354.json index 9be4d7c5cd1..eb2dcf31ab7 100644 --- a/2023/29xxx/CVE-2023-29354.json +++ b/2023/29xxx/CVE-2023-29354.json @@ -35,7 +35,7 @@ "product": { "product_data": [ { - "product_name": "Microsoft Edge", + "product_name": "Microsoft Edge (Chromium-based)", "version": { "version_data": [ { diff --git a/2023/32xxx/CVE-2023-32022.json b/2023/32xxx/CVE-2023-32022.json index 7d03ff658b3..9145ece497c 100644 --- a/2023/32xxx/CVE-2023-32022.json +++ b/2023/32xxx/CVE-2023-32022.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "
\n
Windows Server Service Security Feature Bypass Vulnerability
\n
\n" + "value": "Windows Server Service Security Feature Bypass Vulnerability" } ] }, diff --git a/2023/34xxx/CVE-2023-34116.json b/2023/34xxx/CVE-2023-34116.json index 5a9d56426ca..af23b271ad3 100644 --- a/2023/34xxx/CVE-2023-34116.json +++ b/2023/34xxx/CVE-2023-34116.json @@ -1,17 +1,87 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-34116", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@zoom.us", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Improper input validation in the Zoom Desktop Client for Windows before version 5.15.0 may allow an unauthorized user to enable an escalation of privilege via network access.\n" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-20 Improper Input Validation", + "cweId": "CWE-20" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Zoom Video Communications, Inc.", + "product": { + "product_data": [ + { + "product_name": "Zoom Desktop Client for Windows", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "before 5.15.0" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://explore.zoom.us/en/trust/security/security-bulletin/", + "refsource": "MISC", + "name": "https://explore.zoom.us/en/trust/security/security-bulletin/" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.1.0-dev" + }, + "source": { + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 8.2, + "baseSeverity": "HIGH", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "privilegesRequired": "NONE", + "scope": "CHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:H", + "version": "3.1" } ] } diff --git a/2023/34xxx/CVE-2023-34117.json b/2023/34xxx/CVE-2023-34117.json index c4db55cd374..2704f93523d 100644 --- a/2023/34xxx/CVE-2023-34117.json +++ b/2023/34xxx/CVE-2023-34117.json @@ -1,17 +1,86 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-34117", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@zoom.us", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Relative path traversal in the Zoom Client SDK before version 5.15.0 may allow an unauthorized user to enable information disclosure via local access.\n" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Relative Path Traversal" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Zoom Video Communications, Inc.", + "product": { + "product_data": [ + { + "product_name": "Zoom Client SDK", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "before 5.15.0" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://explore.zoom.us/en/trust/security/security-bulletin/", + "refsource": "MISC", + "name": "https://explore.zoom.us/en/trust/security/security-bulletin/" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.1.0-dev" + }, + "source": { + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "LOW", + "attackVector": "LOCAL", + "availabilityImpact": "NONE", + "baseScore": 3.3, + "baseSeverity": "LOW", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "version": "3.1" } ] } diff --git a/2023/36xxx/CVE-2023-36824.json b/2023/36xxx/CVE-2023-36824.json index 42931339e58..7d9c4478d6e 100644 --- a/2023/36xxx/CVE-2023-36824.json +++ b/2023/36xxx/CVE-2023-36824.json @@ -1,17 +1,99 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-36824", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security-advisories@github.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Redis is an in-memory database that persists on disk. In Redit 7.0 prior to 7.0.12, extracting key names from a command and a list of arguments may, in some cases, trigger a heap overflow and result in reading random heap memory, heap corruption and potentially remote code execution. Several scenarios that may lead to authenticated users executing a specially crafted `COMMAND GETKEYS` or `COMMAND GETKEYSANDFLAGS`and authenticated users who were set with ACL rules that match key names, executing a specially crafted command that refers to a variadic list of key names. The vulnerability is patched in Redis 7.0.12.\n\n" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-122: Heap-based Buffer Overflow", + "cweId": "CWE-122" + } + ] + }, + { + "description": [ + { + "lang": "eng", + "value": "CWE-131: Incorrect Calculation of Buffer Size", + "cweId": "CWE-131" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "redis", + "product": { + "product_data": [ + { + "product_name": "redis", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": ">= 7.0.0, < 7.0.12" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/redis/redis/security/advisories/GHSA-4cfx-h9gq-xpx3", + "refsource": "MISC", + "name": "https://github.com/redis/redis/security/advisories/GHSA-4cfx-h9gq-xpx3" + }, + { + "url": "https://github.com/redis/redis/releases/tag/7.0.12", + "refsource": "MISC", + "name": "https://github.com/redis/redis/releases/tag/7.0.12" + } + ] + }, + "source": { + "advisory": "GHSA-4cfx-h9gq-xpx3", + "discovery": "UNKNOWN" + }, + "impact": { + "cvss": [ + { + "attackComplexity": "HIGH", + "attackVector": "LOCAL", + "availabilityImpact": "HIGH", + "baseScore": 7.4, + "baseSeverity": "HIGH", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", + "version": "3.1" } ] } diff --git a/2023/37xxx/CVE-2023-37596.json b/2023/37xxx/CVE-2023-37596.json index 05ad5e68f3e..df47f091f76 100644 --- a/2023/37xxx/CVE-2023-37596.json +++ b/2023/37xxx/CVE-2023-37596.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2023-37596", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2023-37596", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Cross Site Request Forgery (CSRF) vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via a crafted script to the deleteuser function." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://reference1.example.com/index.php?menu=userlist", + "refsource": "MISC", + "name": "https://reference1.example.com/index.php?menu=userlist" + }, + { + "refsource": "CONFIRM", + "name": "https://github.com/sahiloj/CVE-2023-37596/blob/main/README.md", + "url": "https://github.com/sahiloj/CVE-2023-37596/blob/main/README.md" } ] } diff --git a/2023/37xxx/CVE-2023-37597.json b/2023/37xxx/CVE-2023-37597.json index d5e4cd47cb2..4f8e77528f8 100644 --- a/2023/37xxx/CVE-2023-37597.json +++ b/2023/37xxx/CVE-2023-37597.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2023-37597", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2023-37597", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Cross Site Request Forgery (CSRF) vulnerability in issabel-pbx v.4.0.0-6 allows a remote attacker to cause a denial of service via the delete user grouplist function." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://reference2.example.com/index.php?menu=grouplist", + "refsource": "MISC", + "name": "https://reference2.example.com/index.php?menu=grouplist" + }, + { + "refsource": "CONFIRM", + "name": "https://github.com/sahiloj/CVE-2023-37597/blob/main/README.md", + "url": "https://github.com/sahiloj/CVE-2023-37597/blob/main/README.md" } ] } diff --git a/2023/3xxx/CVE-2023-3354.json b/2023/3xxx/CVE-2023-3354.json index 1f9e3a77bc4..a14cd86b1f2 100644 --- a/2023/3xxx/CVE-2023-3354.json +++ b/2023/3xxx/CVE-2023-3354.json @@ -1,17 +1,218 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-3354", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "secalert@redhat.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a certain threshold and if so, cleans up the previous connection. If the previous connection happens to be in the handshake phase and fails, QEMU cleans up the connection again, resulting in a NULL pointer dereference issue. This could allow a remote unauthenticated client to cause a denial of service." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "NULL Pointer Dereference", + "cweId": "CWE-476" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "n/a", + "product": { + "product_data": [ + { + "product_name": "qemu", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + } + ] + } + }, + { + "vendor_name": "Red Hat", + "product": { + "product_data": [ + { + "product_name": "Red Hat Enterprise Linux 6", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unaffected" + } + } + ] + } + }, + { + "product_name": "Red Hat Enterprise Linux 7", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unaffected" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + }, + { + "product_name": "Red Hat Enterprise Linux 8", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + }, + { + "product_name": "Red Hat Enterprise Linux 8 Advanced Virtualization", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + }, + { + "product_name": "Red Hat Enterprise Linux 9", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + }, + { + "product_name": "Red Hat OpenStack Platform 13 (Queens)", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + } + ] + } + }, + { + "vendor_name": "Fedora", + "product": { + "product_data": [ + { + "product_name": "Fedora", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "affected" + } + } + ] + } + }, + { + "product_name": "Extra Packages for Enterprise Linux", + "version": { + "version_data": [ + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unaffected" + } + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://access.redhat.com/security/cve/CVE-2023-3354", + "refsource": "MISC", + "name": "https://access.redhat.com/security/cve/CVE-2023-3354" + }, + { + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478", + "refsource": "MISC", + "name": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Red Hat would like to thank jiangyegen (Huawei Vulnerability Management Center) and yexiao7 (Huawei Vulnerability Management Center) for reporting this issue." + } + ], + "impact": { + "cvss": [ + { + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "HIGH", + "baseScore": 7.5, + "baseSeverity": "HIGH", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.1" } ] } diff --git a/2023/3xxx/CVE-2023-3623.json b/2023/3xxx/CVE-2023-3623.json index 346b6468928..4ee347db65b 100644 --- a/2023/3xxx/CVE-2023-3623.json +++ b/2023/3xxx/CVE-2023-3623.json @@ -1,17 +1,105 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-3623", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "cna@vuldb.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A vulnerability was found in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System up to 20230704. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Duty/AjaxHandle/UploadHandler.ashx of the component Duty Module. The manipulation of the argument Filedata leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-233576. NOTE: The vendor was contacted early about this disclosure but did not respond in any way." + }, + { + "lang": "deu", + "value": "Eine kritische Schwachstelle wurde in Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System bis 20230704 ausgemacht. Es geht hierbei um eine nicht n\u00e4her spezifizierte Funktion der Datei /Duty/AjaxHandle/UploadHandler.ashx der Komponente Duty Module. Mit der Manipulation des Arguments Filedata mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-434 Unrestricted Upload", + "cweId": "CWE-434" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Suncreate", + "product": { + "product_data": [ + { + "product_name": "Mountain Flood Disaster Prevention Monitoring and Early Warning System", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "20230704" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://vuldb.com/?id.233576", + "refsource": "MISC", + "name": "https://vuldb.com/?id.233576" + }, + { + "url": "https://vuldb.com/?ctiid.233576", + "refsource": "MISC", + "name": "https://vuldb.com/?ctiid.233576" + }, + { + "url": "https://github.com/luoshaokai/cve/blob/main/one.md", + "refsource": "MISC", + "name": "https://github.com/luoshaokai/cve/blob/main/one.md" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "luoshaokai (VulDB User)" + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "baseScore": 6.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseSeverity": "MEDIUM" + }, + { + "version": "3.0", + "baseScore": 6.3, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseSeverity": "MEDIUM" + }, + { + "version": "2.0", + "baseScore": 6.5, + "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", + "baseSeverity": "MEDIUM" } ] } diff --git a/2023/3xxx/CVE-2023-3624.json b/2023/3xxx/CVE-2023-3624.json index 47bc08c3dce..b1b857b3542 100644 --- a/2023/3xxx/CVE-2023-3624.json +++ b/2023/3xxx/CVE-2023-3624.json @@ -1,17 +1,100 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2023-3624", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "cna@vuldb.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A vulnerability classified as critical has been found in Nesote Inout Blockchain FiatExchanger 3.0. This affects an unknown part of the file /index.php/coins/update_marketboxslider of the component POST Parameter Handler. The manipulation of the argument marketcurrency leads to sql injection. It is possible to initiate the attack remotely. The identifier VDB-233577 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way." + }, + { + "lang": "deu", + "value": "Es wurde eine Schwachstelle in Nesote Inout Blockchain FiatExchanger 3.0 entdeckt. Sie wurde als kritisch eingestuft. Es geht dabei um eine nicht klar definierte Funktion der Datei /index.php/coins/update_marketboxslider der Komponente POST Parameter Handler. Durch die Manipulation des Arguments marketcurrency mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-89 SQL Injection", + "cweId": "CWE-89" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Nesote", + "product": { + "product_data": [ + { + "product_name": "Inout Blockchain FiatExchanger", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "3.0" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://vuldb.com/?id.233577", + "refsource": "MISC", + "name": "https://vuldb.com/?id.233577" + }, + { + "url": "https://vuldb.com/?ctiid.233577", + "refsource": "MISC", + "name": "https://vuldb.com/?ctiid.233577" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "skalvin (VulDB User)" + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "baseScore": 6.3, + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseSeverity": "MEDIUM" + }, + { + "version": "3.0", + "baseScore": 6.3, + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseSeverity": "MEDIUM" + }, + { + "version": "2.0", + "baseScore": 6.5, + "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", + "baseSeverity": "MEDIUM" } ] } diff --git a/2023/3xxx/CVE-2023-3627.json b/2023/3xxx/CVE-2023-3627.json new file mode 100644 index 00000000000..cb7a0a34a90 --- /dev/null +++ b/2023/3xxx/CVE-2023-3627.json @@ -0,0 +1,92 @@ +{ + "data_version": "4.0", + "data_type": "CVE", + "data_format": "MITRE", + "CVE_data_meta": { + "ID": "CVE-2023-3627", + "ASSIGNER": "security@huntr.dev", + "STATE": "PUBLIC" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Cross-Site Request Forgery (CSRF) in GitHub repository salesagility/suitecrm-core prior to 8.3.1." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-352 Cross-Site Request Forgery (CSRF)", + "cweId": "CWE-352" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "salesagility", + "product": { + "product_data": [ + { + "product_name": "salesagility/suitecrm-core", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "unspecified", + "version_value": "8.3.1" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://huntr.dev/bounties/558b3dce-db03-47ba-b60b-c6eb578e04f1", + "refsource": "MISC", + "name": "https://huntr.dev/bounties/558b3dce-db03-47ba-b60b-c6eb578e04f1" + }, + { + "url": "https://github.com/salesagility/suitecrm-core/commit/78285702d76317f081b1fbc59cb2754e93b9a4c3", + "refsource": "MISC", + "name": "https://github.com/salesagility/suitecrm-core/commit/78285702d76317f081b1fbc59cb2754e93b9a4c3" + } + ] + }, + "source": { + "advisory": "558b3dce-db03-47ba-b60b-c6eb578e04f1", + "discovery": "EXTERNAL" + }, + "impact": { + "cvss": [ + { + "version": "3.0", + "attackComplexity": "LOW", + "attackVector": "NETWORK", + "availabilityImpact": "NONE", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "privilegesRequired": "NONE", + "scope": "UNCHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N", + "baseScore": 8.1, + "baseSeverity": "HIGH" + } + ] + } +} \ No newline at end of file