"-Synchronized-Data."

2025-05-07 03:02:46 +00:00 · 2022-05-23 18:01:27 +00:00 · 2022-05-23 18:01:27 +00:00 · f7ae1a48b9
commit f7ae1a48b9
parent 01392a0e46
4 changed files with 72 additions and 13 deletions
--- a/2021/3xxx/CVE-2021-3623.json
+++ b/2021/3xxx/CVE-2021-3623.json
@ -36,7 +36,7 @@
                "description": [
                    {
                        "lang": "eng",
-                        "value": "CWE-119"
+                        "value": " CWE-787"
                    }
                ]
            }
@ -44,6 +44,11 @@
    },
    "references": {
        "reference_data": [
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2021-465b5c3b67",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z7KZSYMTE7Z4BBEZUWO2DIMQDWMGEP46/"
+            },
            {
                "refsource": "MISC",
                "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1976806",
--- a/2021/41xxx/CVE-2021-41945.json
+++ b/2021/41xxx/CVE-2021-41945.json
@ -34,7 +34,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Encode OSS httpx <=1.0.0.beta0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`."
+                "value": "Encode OSS httpx < 0.23.0 is affected by improper input validation in `httpx.URL`, `httpx.Client` and some functions using `httpx.URL.copy_with`."
            }
        ]
    },
@ -76,6 +76,11 @@
                "refsource": "MISC",
                "name": "https://github.com/encode/httpx/issues/2184",
                "url": "https://github.com/encode/httpx/issues/2184"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://github.com/encode/httpx/releases/tag/0.23.0",
+                "url": "https://github.com/encode/httpx/releases/tag/0.23.0"
            }
        ]
    }
--- a/2022/28xxx/CVE-2022-28874.json
+++ b/2022/28xxx/CVE-2022-28874.json
@ -82,11 +82,6 @@
                "refsource": "MISC",
                "url": "https://www.withsecure.com/en/support/security-advisories",
                "name": "https://www.withsecure.com/en/support/security-advisories"
-            },
-            {
-                "refsource": "MISC",
-                "name": "https://www.f-secure.com/en/home/support/security-advisories/cve-2022-28874",
-                "url": "https://www.f-secure.com/en/home/support/security-advisories/cve-2022-28874"
            }
        ]
    },
--- a/2022/28xxx/CVE-2022-28944.json
+++ b/2022/28xxx/CVE-2022-28944.json
@ -1,17 +1,71 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
-        "ID": "CVE-2022-28944",
        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ID": "CVE-2022-28944",
+        "STATE": "PUBLIC"
    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Certain EMCO Software products are affected by: CWE-494: Download of Code Without Integrity Check. This affects MSI Package Builder for Windows 9.1.4 and Remote Installer for Windows 6.0.13 and Ping Monitor for Windows 8.0.18 and Remote Shutdown for Windows 7.2.2 and WakeOnLan 2.0.8 and Network Inventory for Windows 5.8.22 and Network Software Scanner for Windows 2.0.8 and UnLock IT for Windows 6.1.1. The impact is: execute arbitrary code (remote). The component is: Updater. The attack vector is: To exploit this vulnerability, a user must trigger an update of an affected installation of EMCO Software. \u00b6\u00b6 Multiple products from EMCO Software are affected by a remote code execution vulnerability during the update process."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "http://msi.com",
+                "refsource": "MISC",
+                "name": "http://msi.com"
+            },
+            {
+                "url": "http://emco.com",
+                "refsource": "MISC",
+                "name": "http://emco.com"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://github.com/gerr-re/cve-2022-28944/blob/main/cve-2022-28944_public-advisory.pdf",
+                "url": "https://github.com/gerr-re/cve-2022-28944/blob/main/cve-2022-28944_public-advisory.pdf"
            }
        ]
    }