"-Synchronized-Data."

2021/34xxx/CVE-2021-34141.json

@@ -34,7 +34,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "** DISPUTED ** Incomplete string comparison in the numpy.core component in NumPy1.9.x, which allows attackers to fail the APIs via constructing specific string objects. NOTE: the vendor states that this reported code behavior is \"completely harmless.\""
+                "value": "An incomplete string comparison in the numpy.core component in NumPy before 1.22.0 allows attackers to trigger slightly incorrect copying by constructing specific string objects. NOTE: the vendor states that this reported code behavior is \"completely harmless.\""
             }
         ]
     },

2021/44xxx/CVE-2021-44832.json

@@ -120,6 +120,11 @@
                 "refsource": "CONFIRM",
                 "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf",
                 "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-784507.pdf"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://security.netapp.com/advisory/ntap-20220104-0001/",
+                "url": "https://security.netapp.com/advisory/ntap-20220104-0001/"
             }
         ]
     },

2022/0xxx/CVE-2022-0127.json

@@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2022-0127",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}

2022/22xxx/CVE-2022-22107.json

@@ -99,12 +99,14 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b"
+                "refsource": "MISC",
+                "url": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b",
+                "name": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b"
             },
             {
                 "refsource": "MISC",
-                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22107"
+                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22107",
+                "name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22107"
             }
         ]
     },
@@ -118,4 +120,4 @@
         "advisory": "https://www.whitesourcesoftware.com/vulnerability-database/",
         "discovery": "UNKNOWN"
     }
-}
+}

2022/22xxx/CVE-2022-22108.json

@@ -99,12 +99,14 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b"
+                "refsource": "MISC",
+                "url": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b",
+                "name": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b"
             },
             {
                 "refsource": "MISC",
-                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22108"
+                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22108",
+                "name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22108"
             }
         ]
     },
@@ -118,4 +120,4 @@
         "advisory": "https://www.whitesourcesoftware.com/vulnerability-database/",
         "discovery": "UNKNOWN"
     }
-}
+}

2022/22xxx/CVE-2022-22109.json

@@ -53,7 +53,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "In Daybyday CRM, version 2.2.0 is vulnerable to Stored Cross-Site Scripting (XSS) vulnerability that allows low privileged application users to store malicious scripts in the title field of new tasks. These scripts are executed in a victim’s browser when they open the “/tasks” page to view all the tasks."
+                "value": "In Daybyday CRM, version 2.2.0 is vulnerable to Stored Cross-Site Scripting (XSS) vulnerability that allows low privileged application users to store malicious scripts in the title field of new tasks. These scripts are executed in a victim\u2019s browser when they open the \u201c/tasks\u201d page to view all the tasks."
             }
         ]
     },
@@ -91,12 +91,14 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/Bottelet/DaybydayCRM/commit/002dc75f400cf307bd00b71a5a93f1e26e52cee2"
+                "refsource": "MISC",
+                "url": "https://github.com/Bottelet/DaybydayCRM/commit/002dc75f400cf307bd00b71a5a93f1e26e52cee2",
+                "name": "https://github.com/Bottelet/DaybydayCRM/commit/002dc75f400cf307bd00b71a5a93f1e26e52cee2"
             },
             {
                 "refsource": "MISC",
-                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22109"
+                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22109",
+                "name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22109"
             }
         ]
     },
@@ -110,4 +112,4 @@
         "advisory": "https://www.whitesourcesoftware.com/vulnerability-database/",
         "discovery": "UNKNOWN"
     }
-}
+}

2022/22xxx/CVE-2022-22110.json

@@ -61,7 +61,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "In Daybyday CRM, versions 1.1 through 2.2.0 enforce weak password requirements in the user update functionality. A user with privileges to update his password could change it to a weak password, such as those with a length of a single character. This may allow an attacker to brute-force users’ passwords with minimal to no computational effort."
+                "value": "In Daybyday CRM, versions 1.1 through 2.2.0 enforce weak password requirements in the user update functionality. A user with privileges to update his password could change it to a weak password, such as those with a length of a single character. This may allow an attacker to brute-force users\u2019 passwords with minimal to no computational effort."
             }
         ]
     },
@@ -99,12 +99,14 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b"
+                "refsource": "MISC",
+                "url": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b",
+                "name": "https://github.com/Bottelet/DaybydayCRM/commit/a0392f4a4a14e1e3fedaf6817aefce69b6bd661b"
             },
             {
                 "refsource": "MISC",
-                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22110"
+                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22110",
+                "name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22110"
             }
         ]
     },
@@ -118,4 +120,4 @@
         "advisory": "https://www.whitesourcesoftware.com/vulnerability-database/",
         "discovery": "UNKNOWN"
     }
-}
+}

2022/22xxx/CVE-2022-22111.json

@@ -53,7 +53,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "In DayByDay CRM, version 2.2.0 is vulnerable to missing authorization. Any application user in the application who has update user permission enabled is able to change the password of other users, including the administrator’s. This allows the attacker to gain access to the highest privileged user in the application."
+                "value": "In DayByDay CRM, version 2.2.0 is vulnerable to missing authorization. Any application user in the application who has update user permission enabled is able to change the password of other users, including the administrator\u2019s. This allows the attacker to gain access to the highest privileged user in the application."
             }
         ]
     },
@@ -91,12 +91,14 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b"
+                "refsource": "MISC",
+                "url": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b",
+                "name": "https://github.com/Bottelet/DaybydayCRM/commit/fe842ea5ede237443f1f45a99aeb839133115d8b"
             },
             {
                 "refsource": "MISC",
-                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22111"
+                "url": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22111",
+                "name": "https://www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22111"
             }
         ]
     },
@@ -110,4 +112,4 @@
         "advisory": "https://www.whitesourcesoftware.com/vulnerability-database/",
         "discovery": "UNKNOWN"
     }
-}
+}