"-Synchronized-Data."

2025-05-07 11:06:39 +00:00 · 2022-10-10 15:00:32 +00:00 · 2022-10-10 15:00:32 +00:00 · fdb3a55f44
commit fdb3a55f44
parent 6ecbbd2a21
5 changed files with 63 additions and 5 deletions
--- a/2022/26xxx/CVE-2022-26121.json
+++ b/2022/26xxx/CVE-2022-26121.json
@ -71,7 +71,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "An exposure of resource to wrong sphere\u00a0vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an unauthenticated and remote attacker to access report template images via referencing the\u00a0name in the URL path."
+                "value": "An exposure of resource to wrong sphere vulnerability [CWE-668] in FortiAnalyzer and FortiManager GUI 7.0.0 through 7.0.3, 6.4.0 through 6.4.8, 6.2.0 through 6.2.9, 6.0.0 through 6.0.11, 5.6.0 through 5.6.11 may allow an unauthenticated and remote attacker to access report template images via referencing the name in the URL path."
            }
        ]
    }
--- a/2022/3xxx/CVE-2022-3442.json
+++ b/2022/3xxx/CVE-2022-3442.json
@ -49,7 +49,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "A vulnerability was found in Crealogix EBICS 7.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file \/ebics-server\/ebics.aspx. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 7.1 is able to address this issue. It is recommended to upgrade the affected component. VDB-210374 is the identifier assigned to this vulnerability."
+                "value": "A vulnerability was found in Crealogix EBICS 7.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /ebics-server/ebics.aspx. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 7.1 is able to address this issue. It is recommended to upgrade the affected component. VDB-210374 is the identifier assigned to this vulnerability."
            }
        ]
    },
@ -57,16 +57,20 @@
        "cvss": {
            "version": "3.1",
            "baseScore": "3.5",
-            "vectorString": "CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:R\/S:U\/C:N\/I:L\/A:N"
+            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N"
        }
    },
    "references": {
        "reference_data": [
            {
-                "url": "https:\/\/www.pentagrid.ch\/en\/blog\/reflected-xss-vulnerability-in-crealogix-ebics-implementation\/"
+                "url": "https://www.pentagrid.ch/en/blog/reflected-xss-vulnerability-in-crealogix-ebics-implementation/",
+                "refsource": "MISC",
+                "name": "https://www.pentagrid.ch/en/blog/reflected-xss-vulnerability-in-crealogix-ebics-implementation/"
            },
            {
-                "url": "https:\/\/vuldb.com\/?id.210374"
+                "url": "https://vuldb.com/?id.210374",
+                "refsource": "MISC",
+                "name": "https://vuldb.com/?id.210374"
            }
        ]
    }
--- a/2022/3xxx/CVE-2022-3443.json
+++ b/2022/3xxx/CVE-2022-3443.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2022-3443",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2022/3xxx/CVE-2022-3444.json
+++ b/2022/3xxx/CVE-2022-3444.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2022-3444",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2022/42xxx/CVE-2022-42735.json
+++ b/2022/42xxx/CVE-2022-42735.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2022-42735",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}