admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-30 18:21:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2023/CVE-2023-422xx/CVE-2023-42222.json

28 lines
891 B
JSON
Raw Normal View History

Auto-Update: 2023-09-28T04:00:24.373808+00:00
2023-09-28 04:00:27 +00:00
{
"id": "CVE-2023-42222",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-09-28T03:15:11.643",
Auto-Update: 2023-09-28T14:00:24.814526+00:00
2023-09-28 14:00:28 +00:00
"lastModified": "2023-09-28T12:44:04.973",
"vulnStatus": "Awaiting Analysis",
Auto-Update: 2023-09-28T04:00:24.373808+00:00
2023-09-28 04:00:27 +00:00
"descriptions": [
{
"lang": "en",
"value": "WebCatalog before 49.0 is vulnerable to Incorrect Access Control. WebCatalog calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/itssixtyn3in/CVE-2023-42222",
"source": "cve@mitre.org"
},
{
"url": "https://webcatalog.io/changelog/",
"source": "cve@mitre.org"
},
{
"url": "https://www.electronjs.org/docs/latest/tutorial/security#15-do-not-use-shellopenexternal-with-untrusted-content",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue Copy Permalink