admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2022-09-06 21:00:36 +00:00
parent d91b9be090
commit e940fc2de8
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
7 changed files with 123 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2022/26xxx/CVE-2022-26858.json
View File

@ -63,8 +63,9 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000202194"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000202194",
"name": "https://www.dell.com/support/kbdoc/000202194"
}
]
}

5
2022/26xxx/CVE-2022-26859.json
View File

@ -63,8 +63,9 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000202194"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000202194",
"name": "https://www.dell.com/support/kbdoc/000202194"
}
]
}

5
2022/26xxx/CVE-2022-26860.json
View File

@ -63,8 +63,9 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000202194"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000202194",
"name": "https://www.dell.com/support/kbdoc/000202194"
}
]
}

5
2022/26xxx/CVE-2022-26861.json
View File

@ -63,8 +63,9 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000202194"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000202194",
"name": "https://www.dell.com/support/kbdoc/000202194"
}
]
}

2
2022/36xxx/CVE-2022-36061.json
View File

@ -35,7 +35,7 @@
"description_data": [
{
"lang": "eng",
"value": "Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.35, read only calls between contracts can generate smart contracts results. For example, if contract A calls in read only mode contract B and the called function will make changes upon the contract's B state, the state will be altered for contract B as if the call was not made in the read-only mode. This can lead to some effects not designed by the original smart contracts programmers. This issue was patched in version 1.3.35. There are no known workarounds. "
"value": "Elrond go is the go implementation for the Elrond Network protocol. In versions prior to 1.3.35, read only calls between contracts can generate smart contracts results. For example, if contract A calls in read only mode contract B and the called function will make changes upon the contract's B state, the state will be altered for contract B as if the call was not made in the read-only mode. This can lead to some effects not designed by the original smart contracts programmers. This issue was patched in version 1.3.35. There are no known workarounds."
}
]
},

61
2022/36xxx/CVE-2022-36663.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-36663",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-36663",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Gluu Oxauth before v4.4.1 allows attackers to execute blind SSRF (Server-Side Request Forgery) attacks via a crafted request_uri parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/GluuFederation/oxAuth/releases/tag/4.4.1",
"refsource": "MISC",
"name": "https://github.com/GluuFederation/oxAuth/releases/tag/4.4.1"
},
{
"refsource": "MISC",
"name": "https://gluu.org/gluu-4-4-1/",
"url": "https://gluu.org/gluu-4-4-1/"
}
]
}

61
2022/38xxx/CVE-2022-38176.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2022-38176",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2022-38176",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in YSoft SAFEQ 6 before 6.0.72. Incorrect privileges were configured as part of the installer package for the Client V3 services, allowing for local user privilege escalation by overwriting the executable file via an alternative data stream. NOTE: this is not the same as CVE-2021-31859."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://ysoft.com",
"refsource": "MISC",
"name": "https://ysoft.com"
},
{
"refsource": "MISC",
"name": "https://www.ysoft.com/en/legal/ysoft-safeq-client-v3-local-privilege-escalation",
"url": "https://www.ysoft.com/en/legal/ysoft-safeq-client-v3-local-privilege-escalation"
}
]
}