admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 19:17:10 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2022-10-25 16:47:12 +00:00
parent bc01278c21
commit b1a214ff33
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
3 changed files with 9 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2022/34xxx/CVE-2022-34870.json
View File

@ -64,8 +64,9 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://lists.apache.org/thread/zltlr7f2ymr2m6jj54k4z0c4foos5fwx"
"refsource": "MISC",
"url": "https://lists.apache.org/thread/zltlr7f2ymr2m6jj54k4z0c4foos5fwx",
"name": "https://lists.apache.org/thread/zltlr7f2ymr2m6jj54k4z0c4foos5fwx"
}
]
},

6
2022/38xxx/CVE-2022-38195.json
View File

@ -1,6 +1,6 @@
{
"CVE_data_meta": {
"ASSIGNER": "PSIRT@esri.com",
"ASSIGNER": "psirt@esri.com",
"DATE_PUBLIC": "2022-08-17T20:03:00.000Z",
"ID": "CVE-2022-38195",
"STATE": "PUBLIC",
@ -45,7 +45,7 @@
"description_data": [
{
"lang": "eng",
"value": "There is as reflected cross site scripting issue in Esri ArcGIS Server versions 10.9.1 and below which may allow a remote unauthorized attacker able to convince a user to click on a crafted link which could potentially execute arbitrary JavaScript code in the victims browser."
"value": "There is as reflected cross site scripting issue in Esri ArcGIS Server versions 10.9.1 and below which may allow a remote unauthorized attacker able to convince a user to click on a crafted link which could potentially execute arbitrary JavaScript code in the victim\u2019s browser."
}
]
},
@ -101,4 +101,4 @@
],
"discovery": "EXTERNAL"
}
}
}

6
2022/38xxx/CVE-2022-38196.json
View File

@ -1,6 +1,6 @@
{
"CVE_data_meta": {
"ASSIGNER": "PSIRT@esri.com",
"ASSIGNER": "psirt@esri.com",
"DATE_PUBLIC": "2022-08-17T20:15:00.000Z",
"ID": "CVE-2022-38196",
"STATE": "PUBLIC",
@ -45,7 +45,7 @@
"description_data": [
{
"lang": "eng",
"value": "Esri ArcGIS Server versions 10.9.1 and prior have a path traversal vulnerability that may result in a denial of service by allowing a remote, authenticated attacker to overwrite internal ArcGIS Server directory. "
"value": "Esri ArcGIS Server versions 10.9.1 and prior have a path traversal vulnerability that may result in a denial of service by allowing a remote, authenticated attacker to overwrite internal ArcGIS Server directory."
}
]
},
@ -101,4 +101,4 @@
],
"discovery": "UNKNOWN"
}
}
}