admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2023-12-08 20:00:32 +00:00
parent 3fb6893f2f
commit d3c976a16e
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
22 changed files with 521 additions and 43 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2023/34xxx/CVE-2023-34969.json
View File

@ -66,6 +66,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20231023 [SECURITY] [DLA 3628-1] dbus security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00033.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20231208-0007/",
"url": "https://security.netapp.com/advisory/ntap-20231208-0007/"
}
]
}

5
2023/3xxx/CVE-2023-3138.json
View File

@ -63,6 +63,11 @@
"refsource": "MISC",
"name": "https://lists.x.org/archives/xorg-announce/2023-June/003407.html",
"url": "https://lists.x.org/archives/xorg-announce/2023-June/003407.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20231208-0008/",
"url": "https://security.netapp.com/advisory/ntap-20231208-0008/"
}
]
},

5
2023/46xxx/CVE-2023-46246.json
View File

@ -72,6 +72,11 @@
"url": "https://github.com/vim/vim/commit/9198c1f2b1ddecde22af918541e0de2a32f0f45a",
"refsource": "MISC",
"name": "https://github.com/vim/vim/commit/9198c1f2b1ddecde22af918541e0de2a32f0f45a"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0006/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0006/"
}
]
},

61
2023/46xxx/CVE-2023-46493.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46493",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46493",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the readDirSync function in fileBrowser/browser.js."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cxa4d94170-be41/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cxa4d94170-be41/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/CVE-2023-46493/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2023-46493/"
}
]
}

61
2023/46xxx/CVE-2023-46494.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46494",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46494",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5 allows a remote attacker to obtain sensitive information via a crafted request to the ProductGrid function in admin/productGrid/Grid.jsx."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cx8ecec391-2014/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cx8ecec391-2014/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/CVE-2023-46494/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2023-46494/"
}
]
}

61
2023/46xxx/CVE-2023-46495.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46495",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46495",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the sortBy parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cxbc6d4599-c1bd/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cxbc6d4599-c1bd/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/CVE-2023-46495/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2023-46495/"
}
]
}

61
2023/46xxx/CVE-2023-46496.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46496",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46496",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the DELETE function in api/files endpoint."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cx943be66a-54cc/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cx943be66a-54cc/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/CVE-2023-46496/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2023-46496/"
}
]
}

61
2023/46xxx/CVE-2023-46497.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46497",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46497",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Directory Traversal vulnerability in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information via a crafted request to the mkdirSync function in the folderCreate/createFolder.js endpoint."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cx16846793-56b6/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cx16846793-56b6/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/CVE-2023-46497/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2023-46497/"
}
]
}

61
2023/46xxx/CVE-2023-46498.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46498",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46498",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue in EverShop NPM versions before v.1.0.0-rc.8 allows a remote attacker to obtain sensitive information and execute arbitrary code via the /deleteCustomer/route.json file."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cx8b24ace3-0c9a/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cx8b24ace3-0c9a/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/cve-2023-46498/",
"url": "https://devhub.checkmarx.com/cve-details/cve-2023-46498/"
}
]
}

61
2023/46xxx/CVE-2023-46499.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-46499",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2023-46499",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cross Site Scripting vulnerability in EverShop NPM versions before v.1.0.0-rc.5 allows a remote attacker to obtain sensitive information via a crafted scripts to the Admin Panel."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://devhub.checkmarx.com/cve-details/Cx0f8b38be-d5de/",
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/Cx0f8b38be-d5de/"
},
{
"refsource": "MISC",
"name": "https://devhub.checkmarx.com/cve-details/cve-2023-46499/",
"url": "https://devhub.checkmarx.com/cve-details/cve-2023-46499/"
}
]
}

5
2023/46xxx/CVE-2023-46724.json
View File

@ -109,6 +109,11 @@
"url": "http://www.squid-cache.org/Versions/v6/SQUID-2023_4.patch",
"refsource": "MISC",
"name": "http://www.squid-cache.org/Versions/v6/SQUID-2023_4.patch"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0001/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0001/"
}
]
},

5
2023/4xxx/CVE-2023-4399.json
View File

@ -74,6 +74,11 @@
"url": "https://grafana.com/security/security-advisories/cve-2023-4399/",
"refsource": "MISC",
"name": "https://grafana.com/security/security-advisories/cve-2023-4399/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0003/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0003/"
}
]
},

5
2023/4xxx/CVE-2023-4692.json
View File

@ -151,6 +151,11 @@
"url": "https://security.gentoo.org/glsa/202311-14",
"refsource": "MISC",
"name": "https://security.gentoo.org/glsa/202311-14"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0002/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0002/"
}
]
},

5
2023/4xxx/CVE-2023-4693.json
View File

@ -151,6 +151,11 @@
"url": "https://security.gentoo.org/glsa/202311-14",
"refsource": "MISC",
"name": "https://security.gentoo.org/glsa/202311-14"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0002/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0002/"
}
]
},

5
2023/5xxx/CVE-2023-5088.json
View File

@ -168,6 +168,11 @@
"url": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/",
"refsource": "MISC",
"name": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0005/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0005/"
}
]
},

5
2023/5xxx/CVE-2023-5178.json
View File

@ -363,6 +363,11 @@
"url": "https://lore.kernel.org/linux-nvme/20231002105428.226515-1-sagi@grimberg.me/",
"refsource": "MISC",
"name": "https://lore.kernel.org/linux-nvme/20231002105428.226515-1-sagi@grimberg.me/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231208-0004/",
"refsource": "MISC",
"name": "https://security.netapp.com/advisory/ntap-20231208-0004/"
}
]
},

2
2023/5xxx/CVE-2023-5808.json
View File

@ -11,7 +11,7 @@
"description_data": [
{
"lang": "eng",
"value": "SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in Storage, Server or combined Server+Storage administrative roles are able to access HNAS configuration backup and diagnostic data, that would normally be barred to those specific administrative roles."
"value": "SMU versions prior to 14.8.7825.01 are susceptible to unintended information disclosure, through URL manipulation. Authenticated users in a Storage administrative role are able to access HNAS configuration backup and diagnostic data, that would normally be barred to that specific administrative role."
}
]
},

18
2023/6xxx/CVE-2023-6634.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-6634",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2023/6xxx/CVE-2023-6635.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-6635",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2023/6xxx/CVE-2023-6636.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-6636",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2023/6xxx/CVE-2023-6637.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-6637",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2023/6xxx/CVE-2023-6638.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-6638",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}