admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-08 19:46:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

CVE Submission

Browse Source 
SonicWall CVE-2023-0656 CVE-2023-1101 submission.
This commit is contained in:
swpsirt 2023-03-02 13:14:46 -08:00
parent 987cb351a8
commit fb359aa11c
2 changed files with 133 additions and 30 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

80
2023/0xxx/CVE-2023-0656.json
View File

@ -1,18 +1,68 @@
{ {
"data_type": "CVE", "CVE_data_meta": {
"data_format": "MITRE", "ASSIGNER": "PSIRT@sonicwall.com",
"data_version": "4.0", "ID": "CVE-2023-0656",
"CVE_data_meta": { "STATE": "PUBLIC"
"ID": "CVE-2023-0656", },
"ASSIGNER": "cve@mitre.org", "affects": {
"STATE": "RESERVED" "vendor": {
}, "vendor_data": [
"description": { {
"description_data": [ "product": {
{ "product_data": [
"lang": "eng", {
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "product_name": "SonicOS",
} "version": {
] "version_data": [
{
"version_value": "SonicOS NSv 6.5.4.4-44v-21-1551 and earlier"
},
{
"version_value": "SonicOS NSsp 7.0.1-5083 and earlier"
},
{
"version_value": "SonicOS 7.0.1-5095 and earlier"
}
]
}
}
]
},
"vendor_name": "SonicWall"
}
]
} }
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-121: Stack-based Buffer Overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004",
"refsource": "CONFIRM",
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0004"
}
]
}
} }

83
2023/1xxx/CVE-2023-1101.json
View File

@ -1,18 +1,71 @@
{ {
"data_type": "CVE", "CVE_data_meta": {
"data_format": "MITRE", "ASSIGNER": "PSIRT@sonicwall.com",
"data_version": "4.0", "ID": "CVE-2023-1101",
"CVE_data_meta": { "STATE": "PUBLIC"
"ID": "CVE-2023-1101", },
"ASSIGNER": "cve@mitre.org", "affects": {
"STATE": "RESERVED" "vendor": {
}, "vendor_data": [
"description": { {
"description_data": [ "product": {
{ "product_data": [
"lang": "eng", {
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." "product_name": "SonicOS",
} "version": {
] "version_data": [
{
"version_value": "SonicOS 6.5.4.11-97n and earlier"
},
{
"version_value": "SonicOS NSv 6.5.4.4-44v-21-1551 and earlier"
},
{
"version_value": "SonicOS NSsp 7.0.1-5083 and earlier"
},
{
"version_value": "SonicOS 7.0.1-5095 and earlier"
}
]
}
}
]
},
"vendor_name": "SonicWall"
}
]
} }
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "SonicOS SSLVPN improper restriction of excessive MFA attempts vulnerability allows an authenticated attacker to use excessive MFA codes."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-307: Improper Restriction of Excessive Authentication Attempts"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0005",
"refsource": "CONFIRM",
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0005"
}
]
}
} }