admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 11:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2023-10-26 00:00:35 +00:00
parent cc902f03cb
commit bf30ac23c0
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
53 changed files with 857 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2023/30xxx/CVE-2023-30774.json
View File

@ -68,6 +68,11 @@
"refsource": "CONFIRM",
"name": "https://support.apple.com/kb/HT213984",
"url": "https://support.apple.com/kb/HT213984"
},
{
"refsource": "FULLDISC",
"name": "20231025 APPLE-SA-10-25-2023-4 macOS Sonoma 14.1",
"url": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

80
2023/30xxx/CVE-2023-30967.json
View File

@ -1,17 +1,89 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-30967",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "cve-coordination@palantir.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Gotham Orbital-Simulator service prior to 0.692.0 was found to be vulnerable to a Path traversal issue allowing an unauthenticated user to read arbitrary files on the file system. "
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.",
"cweId": "CWE-22"
}
]
},
{
"description": [
{
"lang": "eng",
"value": "When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.",
"cweId": "CWE-287"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Palantir",
"product": {
"product_data": [
{
"product_name": "com.palantir.meta:orbital-simulator",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "*",
"version_value": "0.692.0"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://palantir.safebase.us/?tcuUid=8fd5809f-26f8-406e-b36f-4a6596a19d79",
"refsource": "MISC",
"name": "https://palantir.safebase.us/?tcuUid=8fd5809f-26f8-406e-b36f-4a6596a19d79"
}
]
},
"source": {
"discovery": "INTERNAL",
"defect": [
"PLTRSEC-2023-36"
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseSeverity": "CRITICAL",
"baseScore": 9.8
}
]
}

71
2023/30xxx/CVE-2023-30969.json
View File

@ -1,17 +1,80 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-30969",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "cve-coordination@palantir.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "The Palantir Tiles1 service was found to be vulnerable to an API wide issue where the service was not performing authentication/authorization on all the endpoints.\n\n"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.",
"cweId": "CWE-284"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Palantir",
"product": {
"product_data": [
{
"product_name": "com.palantir.tiles:tiles",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "*",
"version_value": "4.326.0"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://palantir.safebase.us/?tcuUid=afcbc9b2-de62-44b9-b28b-2ebf0684fbf7",
"refsource": "MISC",
"name": "https://palantir.safebase.us/?tcuUid=afcbc9b2-de62-44b9-b28b-2ebf0684fbf7"
}
]
},
"source": {
"discovery": "INTERNAL",
"defect": [
"PLTRSEC-2023-35"
]
},
"impact": {
"cvss": [
{
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"baseSeverity": "HIGH",
"baseScore": 8.2
}
]
}

10
2023/38xxx/CVE-2023-38403.json
View File

@ -106,6 +106,16 @@
"refsource": "CONFIRM",
"name": "https://support.apple.com/kb/HT213985",
"url": "https://support.apple.com/kb/HT213985"
},
{
"refsource": "FULLDISC",
"name": "20231025 APPLE-SA-10-25-2023-4 macOS Sonoma 14.1",
"url": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"refsource": "FULLDISC",
"name": "20231025 APPLE-SA-10-25-2023-5 macOS Ventura 13.6.1",
"url": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/40xxx/CVE-2023-40401.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213985",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213985"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/40xxx/CVE-2023-40404.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

5
2023/40xxx/CVE-2023-40405.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

15
2023/40xxx/CVE-2023-40408.json
View File

@ -122,6 +122,21 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

25
2023/40xxx/CVE-2023-40413.json
View File

@ -142,6 +142,31 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

20
2023/40xxx/CVE-2023-40416.json
View File

@ -120,6 +120,26 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

10
2023/40xxx/CVE-2023-40421.json
View File

@ -88,6 +88,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

20
2023/40xxx/CVE-2023-40423.json
View File

@ -120,6 +120,26 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/40xxx/CVE-2023-40444.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

25
2023/40xxx/CVE-2023-40447.json
View File

@ -136,6 +136,31 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/22",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/22"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/27",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/27"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

20
2023/40xxx/CVE-2023-40449.json
View File

@ -120,6 +120,26 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/41xxx/CVE-2023-41072.json
View File

@ -90,6 +90,11 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

5
2023/41xxx/CVE-2023-41077.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213985",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213985"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

20
2023/41xxx/CVE-2023-41254.json
View File

@ -132,6 +132,26 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

10
2023/41xxx/CVE-2023-41975.json
View File

@ -88,6 +88,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

25
2023/41xxx/CVE-2023-41976.json
View File

@ -136,6 +136,31 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/22",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/22"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/27",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/27"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

5
2023/41xxx/CVE-2023-41977.json
View File

@ -90,6 +90,11 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

15
2023/41xxx/CVE-2023-41982.json
View File

@ -122,6 +122,21 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

15
2023/41xxx/CVE-2023-41983.json
View File

@ -102,6 +102,21 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/27",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/27"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

10
2023/41xxx/CVE-2023-41988.json
View File

@ -112,6 +112,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

5
2023/41xxx/CVE-2023-41989.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

15
2023/41xxx/CVE-2023-41997.json
View File

@ -122,6 +122,21 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

5
2023/42xxx/CVE-2023-42438.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

15
2023/42xxx/CVE-2023-42841.json
View File

@ -110,6 +110,21 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/42xxx/CVE-2023-42842.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

10
2023/42xxx/CVE-2023-42844.json
View File

@ -88,6 +88,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/42xxx/CVE-2023-42845.json
View File

@ -90,6 +90,11 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

10
2023/42xxx/CVE-2023-42846.json
View File

@ -127,6 +127,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/22",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/22"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

5
2023/42xxx/CVE-2023-42847.json
View File

@ -90,6 +90,11 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

25
2023/42xxx/CVE-2023-42849.json
View File

@ -142,6 +142,31 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

5
2023/42xxx/CVE-2023-42850.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

25
2023/42xxx/CVE-2023-42852.json
View File

@ -136,6 +136,31 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/23",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/23"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/22",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/22"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/27",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/27"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/25",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/25"
}
]
}

10
2023/42xxx/CVE-2023-42854.json
View File

@ -88,6 +88,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

10
2023/42xxx/CVE-2023-42856.json
View File

@ -88,6 +88,16 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/21",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/21"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/26",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/26"
}
]
}

5
2023/42xxx/CVE-2023-42857.json
View File

@ -90,6 +90,11 @@
"url": "http://seclists.org/fulldisclosure/2023/Oct/19",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/19"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

5
2023/42xxx/CVE-2023-42861.json
View File

@ -63,6 +63,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
}

56
2023/43xxx/CVE-2023-43905.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-43905",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-43905",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Incorrect access control in writercms v1.1.0 allows attackers to directly obtain backend account passwords via unspecified vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/Playful-CR/CVE-paddle-/blob/main/CVE-2023-43905..md",
"url": "https://github.com/Playful-CR/CVE-paddle-/blob/main/CVE-2023-43905..md"
}
]
}

56
2023/43xxx/CVE-2023-43906.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-43906",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-43906",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Xolo CMS v0.11 was discovered to contain a reflected cross-site scripting (XSS) vulnerability."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/Playful-CR/CVE-paddle-/blob/main/CVE-2023-43906",
"url": "https://github.com/Playful-CR/CVE-paddle-/blob/main/CVE-2023-43906"
}
]
}

56
2023/46xxx/CVE-2023-46345.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46345",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46345",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Catdoc v0.95 was discovered to contain a NULL pointer dereference via the component xls2csv at src/xlsparse.c."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://gist.github.com/rycbar77/d747b2c37b544ece30b2353a65ab41f9",
"refsource": "MISC",
"name": "https://gist.github.com/rycbar77/d747b2c37b544ece30b2353a65ab41f9"
}
]
}

83
2023/46xxx/CVE-2023-46668.json
View File

@ -1,17 +1,92 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46668",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@elastic.co",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "If Elastic Endpoint (v7.9.0 - v8.10.3) is configured to use a non-default option in which the logging level is explicitly set to debug, and when Elastic Agent is simultaneously configured to collect and send those logs to Elasticsearch, then Elastic Agent API keys can be viewed in Elasticsearch in plaintext. These API keys could be used to write arbitrary data and read Elastic Endpoint user artifacts."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-532: Insertion of Sensitive Information into Log File",
"cweId": "CWE-532"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Elastic",
"product": {
"product_data": [
{
"product_name": "Endpoint",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "7.9.0, 8.10.3"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://discuss.elastic.co/t/endpoint-v8-10-4-security-update/345203",
"refsource": "MISC",
"name": "https://discuss.elastic.co/t/endpoint-v8-10-4-security-update/345203"
},
{
"url": "https://www.elastic.co/community/security",
"refsource": "MISC",
"name": "https://www.elastic.co/community/security"
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"source": {
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 4.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
}
]
}

5
2023/4xxx/CVE-2023-4733.json
View File

@ -84,6 +84,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4734.json
View File

@ -69,6 +69,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4735.json
View File

@ -69,6 +69,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4736.json
View File

@ -69,6 +69,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4738.json
View File

@ -69,6 +69,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4750.json
View File

@ -84,6 +84,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4751.json
View File

@ -69,6 +69,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4752.json
View File

@ -89,6 +89,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},

5
2023/4xxx/CVE-2023-4781.json
View File

@ -74,6 +74,11 @@
"url": "https://support.apple.com/kb/HT213984",
"refsource": "MISC",
"name": "https://support.apple.com/kb/HT213984"
},
{
"url": "http://seclists.org/fulldisclosure/2023/Oct/24",
"refsource": "MISC",
"name": "http://seclists.org/fulldisclosure/2023/Oct/24"
}
]
},