admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-07-09 16:05:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-06-05T20:01:46.572484+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-06-05 20:01:50 +00:00
parent dad7e2ba9e
commit 1184304b14
17 changed files with 913 additions and 126 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

88
CVE-2015/CVE-2015-101xx/CVE-2015-10115.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2015-10115",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-06-05T18:15:09.417",
"lastModified": "2023-06-05T18:15:09.417",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability, which was classified as problematic, was found in WooSidebars Sidebar Manager Converter Plugin up to 1.1.1 on WordPress. This affects the function process_request of the file classes/class-woosidebars-sbm-converter.php. The manipulation leads to open redirect. It is possible to initiate the attack remotely. Upgrading to version 1.1.2 is able to address this issue. The patch is named a0efb4ffb9dfe2925b889c1aa5ea40b4abbbda8a. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-230655."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-601"
}
]
}
],
"references": [
{
"url": "https://github.com/wp-plugins/woosidebars-sbm-converter/commit/a0efb4ffb9dfe2925b889c1aa5ea40b4abbbda8a",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.230655",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.230655",
"source": "cna@vuldb.com"
}
]
}

8
CVE-2021/CVE-2021-36xx/CVE-2021-3610.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2021-3610",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-02-24T19:15:09.213",
"lastModified": "2023-05-29T21:15:09.307",
"vulnStatus": "Modified",
"lastModified": "2023-06-05T18:15:09.593",
"vulnStatus": "Undergoing Analysis",
"descriptions": [
{
"lang": "en",
@ -138,6 +138,10 @@
"url": "http://www.openwall.com/lists/oss-security/2023/05/29/4",
"source": "secalert@redhat.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2023/06/05/1",
"source": "secalert@redhat.com"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973689",
"source": "secalert@redhat.com",

56
CVE-2022/CVE-2022-301xx/CVE-2022-30130.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2022-30130",
"sourceIdentifier": "secure@microsoft.com",
"published": "2022-05-10T21:15:13.350",
"lastModified": "2022-05-19T17:50:23.723",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-05T19:15:09.593",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": ".NET Framework Denial of Service Vulnerability."
"value": ".NET Framework Denial of Service Vulnerability"
},
{
"lang": "es",
@ -16,29 +16,9 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "secure@microsoft.com",
"type": "Secondary",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
@ -55,6 +35,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
],
"cvssMetricV2": [
@ -841,12 +841,8 @@
],
"references": [
{
"url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30130",
"source": "secure@microsoft.com",
"tags": [
"Patch",
"Vendor Advisory"
]
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30130",
"source": "secure@microsoft.com"
}
]
}

148
CVE-2023/CVE-2023-208xx/CVE-2023-20884.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-20884",
"sourceIdentifier": "security@vmware.com",
"published": "2023-05-30T16:15:09.390",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:42:23.287",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "security@vmware.com",
"type": "Secondary",
@ -34,10 +54,132 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-601"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:identity_manager:3.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "5EBB8190-2101-4EE5-844E-B46E7FB78FD7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:identity_manager:3.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "A6085F21-481D-4853-9EA6-26497FAB1A03"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:workspace_one_access:*:*:*:*:*:*:*:*",
"versionStartIncluding": "21.0.8.0",
"versionEndIncluding": "22.09.1.0",
"matchCriteriaId": "9C226C8E-9B48-43F7-8692-66F204957899"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:cloud_foundation:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31A7BB38-3238-413E-9736-F1A165D40867"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:identity_manager_connector:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E75DB1CB-C921-421E-B793-0C48AB15C574"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
}
]
}
]
}
],
"references": [
{
"url": "https://www.vmware.com/security/advisories/VMSA-2023-0011.html",
"source": "security@vmware.com"
"source": "security@vmware.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

16
CVE-2023/CVE-2023-248xx/CVE-2023-24838.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-24838",
"sourceIdentifier": "twcert@cert.org.tw",
"published": "2023-03-27T04:15:09.917",
"lastModified": "2023-05-15T03:15:08.943",
"vulnStatus": "Modified",
"lastModified": "2023-06-05T18:59:13.603",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -37,20 +37,20 @@
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
"impactScore": 5.9
}
]
},

43
CVE-2023/CVE-2023-293xx/CVE-2023-29344.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29344",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-05T19:15:10.190",
"lastModified": "2023-06-05T19:15:10.190",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Office Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29344",
"source": "secure@microsoft.com"
}
]
}

69
CVE-2023/CVE-2023-29xx/CVE-2023-2970.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2970",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-30T06:16:30.853",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:01:58.623",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,22 +93,57 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mindspore:mindspore:2.0.0:alpha:*:*:*:*:*:*",
"matchCriteriaId": "05B517AD-3FC7-4D69-8363-EC68AA775567"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mindspore:mindspore:2.0.0:rc1:*:*:*:*:*:*",
"matchCriteriaId": "589AF81E-B22E-450E-AFCE-8570A317FEA5"
}
]
}
]
}
],
"references": [
{
"url": "https://gitee.com/mindspore/mindspore/commit/30f4729ea2c01e1ed437ba92a81e2fc098d608a9",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
},
{
"url": "https://gitee.com/mindspore/mindspore/issues/I73DOS",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.230176",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
},
{
"url": "https://vuldb.com/?id.230176",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
}
]
}

62
CVE-2023/CVE-2023-29xx/CVE-2023-2978.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2978",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-30T14:15:09.763",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:02:38.967",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,48 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:abstrium:pydio_cells:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F91BC0DD-B5C1-498D-A228-6839AA7E313B"
}
]
}
]
}
],
"references": [
{
"url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://vuldb.com/?ctiid.230210",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.230210",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

62
CVE-2023/CVE-2023-29xx/CVE-2023-2979.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2979",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-30T14:15:09.843",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:03:03.957",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,48 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:abstrium:pydio_cells:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F91BC0DD-B5C1-498D-A228-6839AA7E313B"
}
]
}
]
}
],
"references": [
{
"url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://vuldb.com/?ctiid.230211",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.230211",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

62
CVE-2023/CVE-2023-29xx/CVE-2023-2980.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2980",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-30T15:15:09.467",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:03:52.583",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,48 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:abstrium:pydio_cells:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F91BC0DD-B5C1-498D-A228-6839AA7E313B"
}
]
}
]
}
],
"references": [
{
"url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://vuldb.com/?ctiid.230212",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.230212",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

62
CVE-2023/CVE-2023-29xx/CVE-2023-2981.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2981",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-30T15:15:09.553",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:04:19.170",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,48 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:abstrium:pydio_cells:4.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F91BC0DD-B5C1-498D-A228-6839AA7E313B"
}
]
}
]
}
],
"references": [
{
"url": "https://pydio.com/en/community/releases/pydio-cells/pydio-cells-enterprise-421",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://vuldb.com/?ctiid.230213",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.230213",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

55
CVE-2023/CVE-2023-29xx/CVE-2023-2983.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2983",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-05-30T15:15:09.630",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:04:44.993",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "security@huntr.dev",
@ -46,14 +68,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.5.23",
"matchCriteriaId": "A626732C-272A-4FD3-9078-5D4FBFB910F5"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/pimcore/pimcore/commit/c8f37b19c99cd82e4e558857d3e4d5476ea7228a",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Patch"
]
},
{
"url": "https://huntr.dev/bounties/6b2f33d3-2fd0-4d2d-ad7b-2c1e2417eeb1",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Exploit",
"Patch"
]
}
]
}

69
CVE-2023/CVE-2023-29xx/CVE-2023-2984.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2984",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-05-30T15:15:09.700",
"lastModified": "2023-05-30T16:36:55.623",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:16:42.443",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "security@huntr.dev",
@ -46,14 +68,53 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pimcore:pimcore:*:*:*:*:*:*:*:*",
"versionEndExcluding": "10.5.22",
"matchCriteriaId": "F6F9FCC7-1EC6-4C10-9CEC-1F8E27BD7001"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/pimcore/pimcore/commit/e8dbc4da58ae86618bceb67ed35ce23e5e54d2ed",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Patch"
]
},
{
"url": "https://huntr.dev/bounties/5df8b951-e2f1-4548-a7e3-601186e1b191",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Exploit",
"Mitigation",
"Patch",
"Third Party Advisory"
]
}
]
}

69
CVE-2023/CVE-2023-331xx/CVE-2023-33183.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-33183",
"sourceIdentifier": "security-advisories@github.com",
"published": "2023-05-30T06:16:35.080",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:11:44.057",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
@ -46,14 +76,45 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:nextcloud:calendar:*:*:*:*:*:*:*:*",
"versionEndExcluding": "3.5.5",
"matchCriteriaId": "3670BD84-649F-4B16-8F7B-80A70F56D345"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:nextcloud:calendar:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.0.0",
"versionEndExcluding": "4.2.3",
"matchCriteriaId": "2A1232F9-5064-488D-96C6-F63D6D48D188"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/nextcloud/calendar/pull/4938",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Patch"
]
},
{
"url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-2792-2734-hr7j",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Vendor Advisory"
]
}
]
}

104
CVE-2023/CVE-2023-332xx/CVE-2023-33245.json
View File

@ -2,27 +2,119 @@
"id": "CVE-2023-33245",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-30T05:15:12.120",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-05T18:34:45.270",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Minecraft through 1.19 and 1.20 pre-releases before 7 (Java) allow arbitrary file overwrite, and possibly code execution, via crafted world data that contains a symlink."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-59"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:*:*:*:*:java:*:*:*",
"versionEndIncluding": "1.19",
"matchCriteriaId": "A571DE7F-0DF8-4DEA-8F0C-FF778268BBEB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release1:*:*:java:*:*:*",
"matchCriteriaId": "ABE61DF5-1D28-4A9E-B8A3-E2527ED1C9D2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release2:*:*:java:*:*:*",
"matchCriteriaId": "0D581D3D-68E5-4913-9096-50F6FED273CA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release3:*:*:java:*:*:*",
"matchCriteriaId": "B62CDE85-6C18-4ACB-B638-CF27F5124F93"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release4:*:*:java:*:*:*",
"matchCriteriaId": "E6FE2F58-B0BE-4B95-B0B9-47DCD940918A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release5:*:*:java:*:*:*",
"matchCriteriaId": "8CE3DC1D-3E8F-4988-828A-107B90B56F7B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:minecraft:minecraft:1.20:pre-release6:*:*:java:*:*:*",
"matchCriteriaId": "84124E34-2471-4866-AACA-46EAD5683673"
}
]
}
]
}
],
"references": [
{
"url": "https://help.minecraft.net/hc/en-us/articles/16165590199181",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://vuln.ryotak.net/advisories/67",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://www.minecraft.net/ja-jp/article/minecraft-1-20-pre-release-7",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Release Notes"
]
}
]
}

8
CVE-2023/CVE-2023-335xx/CVE-2023-33524.json
View File

@ -2,16 +2,20 @@
"id": "CVE-2023-33524",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-05T17:15:08.940",
"lastModified": "2023-06-05T17:15:08.940",
"lastModified": "2023-06-05T19:15:10.277",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Advent/SSC Inc. Tamale RMS < 23.1 is vulnerable to Directory Traversal. The configuration backup file, which contains username hashes, cleartext passwords, and API keys, can be downloaded. This could allow a malicious actor to crack the passwords offline and/or utilize the API keys to control the remote application."
"value": "Advent/SSC Inc. Tamale RMS < 23.1 is vulnerable to Directory Traversal. If one traverses to the affected URL, one enumerates Contact information on the host which contains usernames, e-mail addresses, and other internal information stored within the web app."
}
],
"metrics": {},
"references": [
{
"url": "https://cve.report/CVE-2023-33524",
"source": "cve@mitre.org"
},
{
"url": "https://gist.github.com/barrett092/9ed092e4b14b9145f4d046556eb9dab7",
"source": "cve@mitre.org"

58
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-06-05T18:00:25.788781+00:00
2023-06-05T20:01:46.572484+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-06-05T17:42:12.797000+00:00
2023-06-05T19:15:10.277000+00:00
```
### Last Data Feed Release
@ -29,51 +29,35 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
216868
216870
```
### CVEs added in the last Commit
Recently added CVEs: `7`
Recently added CVEs: `2`
* [CVE-2015-10113](CVE-2015/CVE-2015-101xx/CVE-2015-10113.json) (`2023-06-05T16:15:09.207`)
* [CVE-2015-10114](CVE-2015/CVE-2015-101xx/CVE-2015-10114.json) (`2023-06-05T16:15:09.280`)
* [CVE-2023-33690](CVE-2023/CVE-2023-336xx/CVE-2023-33690.json) (`2023-06-05T16:15:09.447`)
* [CVE-2023-33693](CVE-2023/CVE-2023-336xx/CVE-2023-33693.json) (`2023-06-05T16:15:09.500`)
* [CVE-2023-33733](CVE-2023/CVE-2023-337xx/CVE-2023-33733.json) (`2023-06-05T16:15:09.550`)
* [CVE-2023-3109](CVE-2023/CVE-2023-31xx/CVE-2023-3109.json) (`2023-06-05T16:15:09.600`)
* [CVE-2023-33524](CVE-2023/CVE-2023-335xx/CVE-2023-33524.json) (`2023-06-05T17:15:08.940`)
* [CVE-2015-10115](CVE-2015/CVE-2015-101xx/CVE-2015-10115.json) (`2023-06-05T18:15:09.417`)
* [CVE-2023-29344](CVE-2023/CVE-2023-293xx/CVE-2023-29344.json) (`2023-06-05T19:15:10.190`)
### CVEs modified in the last Commit
Recently modified CVEs: `25`
Recently modified CVEs: `14`
* [CVE-2014-125102](CVE-2014/CVE-2014-1251xx/CVE-2014-125102.json) (`2023-06-05T17:32:16.907`)
* [CVE-2015-20108](CVE-2015/CVE-2015-201xx/CVE-2015-20108.json) (`2023-06-05T16:03:03.603`)
* [CVE-2019-19791](CVE-2019/CVE-2019-197xx/CVE-2019-19791.json) (`2023-06-05T16:34:43.737`)
* [CVE-2020-29547](CVE-2020/CVE-2020-295xx/CVE-2020-29547.json) (`2023-06-05T16:37:54.740`)
* [CVE-2021-27825](CVE-2021/CVE-2021-278xx/CVE-2021-27825.json) (`2023-06-05T16:38:37.423`)
* [CVE-2021-37845](CVE-2021/CVE-2021-378xx/CVE-2021-37845.json) (`2023-06-05T16:40:08.417`)
* [CVE-2023-28153](CVE-2023/CVE-2023-281xx/CVE-2023-28153.json) (`2023-06-05T16:32:24.133`)
* [CVE-2023-2808](CVE-2023/CVE-2023-28xx/CVE-2023-2808.json) (`2023-06-05T16:33:44.327`)
* [CVE-2023-30571](CVE-2023/CVE-2023-305xx/CVE-2023-30571.json) (`2023-06-05T16:40:57.930`)
* [CVE-2023-30601](CVE-2023/CVE-2023-306xx/CVE-2023-30601.json) (`2023-06-05T16:41:46.257`)
* [CVE-2023-33955](CVE-2023/CVE-2023-339xx/CVE-2023-33955.json) (`2023-06-05T16:42:23.013`)
* [CVE-2023-32766](CVE-2023/CVE-2023-327xx/CVE-2023-32766.json) (`2023-06-05T16:42:43.303`)
* [CVE-2023-33386](CVE-2023/CVE-2023-333xx/CVE-2023-33386.json) (`2023-06-05T16:42:43.303`)
* [CVE-2023-33518](CVE-2023/CVE-2023-335xx/CVE-2023-33518.json) (`2023-06-05T16:42:43.303`)
* [CVE-2023-2972](CVE-2023/CVE-2023-29xx/CVE-2023-2972.json) (`2023-06-05T16:44:03.170`)
* [CVE-2023-33191](CVE-2023/CVE-2023-331xx/CVE-2023-33191.json) (`2023-06-05T16:44:08.867`)
* [CVE-2023-33198](CVE-2023/CVE-2023-331xx/CVE-2023-33198.json) (`2023-06-05T16:45:14.337`)
* [CVE-2023-33193](CVE-2023/CVE-2023-331xx/CVE-2023-33193.json) (`2023-06-05T16:45:20.157`)
* [CVE-2023-33234](CVE-2023/CVE-2023-332xx/CVE-2023-33234.json) (`2023-06-05T16:45:22.593`)
* [CVE-2023-30196](CVE-2023/CVE-2023-301xx/CVE-2023-30196.json) (`2023-06-05T16:47:00.217`)
* [CVE-2023-33182](CVE-2023/CVE-2023-331xx/CVE-2023-33182.json) (`2023-06-05T16:57:53.903`)
* [CVE-2023-33189](CVE-2023/CVE-2023-331xx/CVE-2023-33189.json) (`2023-06-05T17:04:41.190`)
* [CVE-2023-1077](CVE-2023/CVE-2023-10xx/CVE-2023-1077.json) (`2023-06-05T17:23:45.357`)
* [CVE-2023-32691](CVE-2023/CVE-2023-326xx/CVE-2023-32691.json) (`2023-06-05T17:37:04.097`)
* [CVE-2023-2650](CVE-2023/CVE-2023-26xx/CVE-2023-2650.json) (`2023-06-05T17:42:12.797`)
* [CVE-2021-3610](CVE-2021/CVE-2021-36xx/CVE-2021-3610.json) (`2023-06-05T18:15:09.593`)
* [CVE-2022-30130](CVE-2022/CVE-2022-301xx/CVE-2022-30130.json) (`2023-06-05T19:15:09.593`)
* [CVE-2023-2970](CVE-2023/CVE-2023-29xx/CVE-2023-2970.json) (`2023-06-05T18:01:58.623`)
* [CVE-2023-2978](CVE-2023/CVE-2023-29xx/CVE-2023-2978.json) (`2023-06-05T18:02:38.967`)
* [CVE-2023-2979](CVE-2023/CVE-2023-29xx/CVE-2023-2979.json) (`2023-06-05T18:03:03.957`)
* [CVE-2023-2980](CVE-2023/CVE-2023-29xx/CVE-2023-2980.json) (`2023-06-05T18:03:52.583`)
* [CVE-2023-2981](CVE-2023/CVE-2023-29xx/CVE-2023-2981.json) (`2023-06-05T18:04:19.170`)
* [CVE-2023-2983](CVE-2023/CVE-2023-29xx/CVE-2023-2983.json) (`2023-06-05T18:04:44.993`)
* [CVE-2023-33183](CVE-2023/CVE-2023-331xx/CVE-2023-33183.json) (`2023-06-05T18:11:44.057`)
* [CVE-2023-2984](CVE-2023/CVE-2023-29xx/CVE-2023-2984.json) (`2023-06-05T18:16:42.443`)
* [CVE-2023-33245](CVE-2023/CVE-2023-332xx/CVE-2023-33245.json) (`2023-06-05T18:34:45.270`)
* [CVE-2023-20884](CVE-2023/CVE-2023-208xx/CVE-2023-20884.json) (`2023-06-05T18:42:23.287`)
* [CVE-2023-24838](CVE-2023/CVE-2023-248xx/CVE-2023-24838.json) (`2023-06-05T18:59:13.603`)
* [CVE-2023-33524](CVE-2023/CVE-2023-335xx/CVE-2023-33524.json) (`2023-06-05T19:15:10.277`)
## Download and Usage