admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-08 11:37:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-08-21T02:00:32.282531+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-08-21 02:00:36 +00:00
parent 7ec861ce1d
commit 179c1c266f
16 changed files with 702 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
CVE-2023/CVE-2023-397xx/CVE-2023-39784.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39784",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:08.927",
"lastModified": "2023-08-21T01:15:08.927",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the save_virtualser_data function."
}
],
"metrics": {},
"references": [
{
"url": "http://tenda.com",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/Xunflash/IOT/tree/main/Tenda_AC8_V4",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-397xx/CVE-2023-39785.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39785",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:09.273",
"lastModified": "2023-08-21T01:15:09.273",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the list parameter in the set_qosMib_list function."
}
],
"metrics": {},
"references": [
{
"url": "http://tenda.com",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/Xunflash/IOT/tree/main/Tenda_AC8_V4/2",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-397xx/CVE-2023-39786.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39786",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:09.357",
"lastModified": "2023-08-21T01:15:09.357",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Tenda AC8V4 V16.03.34.06 was discovered to contain a stack overflow via the time parameter in the sscanf function."
}
],
"metrics": {},
"references": [
{
"url": "http://tenda.com",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/Xunflash/IOT/tree/main/Tenda_AC8_V4/3",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-398xx/CVE-2023-39807.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39807",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:09.417",
"lastModified": "2023-08-21T01:15:09.417",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a SQL injection vulnerability via the a_passwd parameter at /portal/user-register.php."
}
],
"metrics": {},
"references": [
{
"url": "http://ibsg.com",
"source": "cve@mitre.org"
},
{
"url": "http://nvkinter.com",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-398xx/CVE-2023-39808.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39808",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:09.477",
"lastModified": "2023-08-21T01:15:09.477",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a hardcoded root password which allows attackers to login with root privileges via the SSH service."
}
],
"metrics": {},
"references": [
{
"url": "http://ibsg.com",
"source": "cve@mitre.org"
},
{
"url": "http://nvkinter.com",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-398xx/CVE-2023-39809.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-39809",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-21T01:15:09.550",
"lastModified": "2023-08-21T01:15:09.550",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a command injection vulnerability via the system_hostname parameter at /manage/network-basic.php."
}
],
"metrics": {},
"references": [
{
"url": "http://ibsg.com",
"source": "cve@mitre.org"
},
{
"url": "http://nvkinter.com",
"source": "cve@mitre.org"
}
]
}

10
CVE-2023/CVE-2023-402xx/CVE-2023-40252.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-40252",
"sourceIdentifier": "vuln@krcert.or.kr",
"published": "2023-08-17T07:15:43.847",
"lastModified": "2023-08-17T12:53:44.537",
"lastModified": "2023-08-21T01:15:09.617",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
@ -17,19 +17,19 @@
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseScore": 8.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.1,
"exploitabilityScore": 1.5,
"impactScore": 6.0
}
]

10
CVE-2023/CVE-2023-402xx/CVE-2023-40253.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-40253",
"sourceIdentifier": "vuln@krcert.or.kr",
"published": "2023-08-11T06:15:10.673",
"lastModified": "2023-08-17T07:15:43.933",
"lastModified": "2023-08-21T01:15:09.810",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
@ -17,19 +17,19 @@
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.7,
"baseScore": 8.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.1,
"exploitabilityScore": 1.5,
"impactScore": 6.0
}
]

6
CVE-2023/CVE-2023-402xx/CVE-2023-40254.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2023-40254",
"sourceIdentifier": "vuln@krcert.or.kr",
"published": "2023-08-11T07:15:09.423",
"lastModified": "2023-08-17T07:15:44.060",
"lastModified": "2023-08-21T01:15:09.913",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Improper Control of Generation of Code ('Code Injection') vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Replace Trusted Executable.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.\n\n"
"value": "Download of Code Without Integrity Check vulnerability in Genians Genian NAC V4.0, Genians Genian NAC V5.0, Genians Genian NAC Suite V5.0, Genians Genian ZTNA allows Malicious Software Update.This issue affects Genian NAC V4.0: from V4.0.0 through V4.0.155; Genian NAC V5.0: from V5.0.0 through V5.0.42 (Revision 117460); Genian NAC Suite V5.0: from V5.0.0 through V5.0.54; Genian ZTNA: from V6.0.0 through V6.0.15.\n\n"
}
],
"metrics": {
@ -41,7 +41,7 @@
"description": [
{
"lang": "en",
"value": "CWE-94"
"value": "CWE-494"
}
]
}

84
CVE-2023/CVE-2023-44xx/CVE-2023-4441.json Normal file
View File

@ -0,0 +1,84 @@
{
"id": "CVE-2023-4441",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T00:15:09.457",
"lastModified": "2023-08-21T00:15:09.457",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /patient/appointment.php. The manipulation of the argument sheduledate leads to sql injection. The attack can be initiated remotely. VDB-237562 is the identifier assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://vuldb.com/?ctiid.237562",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237562",
"source": "cna@vuldb.com"
}
]
}

88
CVE-2023/CVE-2023-44xx/CVE-2023-4442.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4442",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T00:15:09.860",
"lastModified": "2023-08-21T00:15:09.860",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in SourceCodester Free Hospital Management System for Small Practices 1.0. It has been rated as critical. This issue affects some unknown processing of the file \\vm\\patient\\booking-complete.php. The manipulation of the argument userid/apponum/scheduleid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-237563."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/CookedMelon/cve/tree/master/hospital/patient-book",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.237563",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237563",
"source": "cna@vuldb.com"
}
]
}

88
CVE-2023/CVE-2023-44xx/CVE-2023-4443.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4443",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T01:15:10.013",
"lastModified": "2023-08-21T01:15:10.013",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical has been found in SourceCodester Free Hospital Management System for Small Practices 1.0/5.0.12. Affected is an unknown function of the file vm\\doctor\\edit-doc.php. The manipulation of the argument id00/nic/oldemail/email/spec/Tele leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-237564."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/CookedMelon/cve/tree/master/hospital/doctor-edit",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.237564",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237564",
"source": "cna@vuldb.com"
}
]
}

88
CVE-2023/CVE-2023-44xx/CVE-2023-4444.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4444",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T01:15:10.117",
"lastModified": "2023-08-21T01:15:10.117",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical was found in SourceCodester Free Hospital Management System for Small Practices 1.0. Affected by this vulnerability is an unknown functionality of the file vm\\patient\\edit-user.php. The manipulation of the argument id00/nic/oldemail/email/spec/Tele leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-237565 was assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/CookedMelon/cve/tree/master/hospital/patient-edit",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.237565",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237565",
"source": "cna@vuldb.com"
}
]
}

88
CVE-2023/CVE-2023-44xx/CVE-2023-4445.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4445",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T01:15:10.210",
"lastModified": "2023-08-21T01:15:10.210",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability, which was classified as critical, has been found in Mini-Tmall up to 20230811. Affected by this issue is some unknown functionality of the file product/1/1?test=1&test2=2&. The manipulation of the argument orderBy leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-237566 is the identifier assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/FFR66/Mini-Tmall_SQL/blob/main/README.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.237566",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237566",
"source": "cna@vuldb.com"
}
]
}

88
CVE-2023/CVE-2023-44xx/CVE-2023-4446.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4446",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-08-21T01:15:10.320",
"lastModified": "2023-08-21T01:15:10.320",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-237567."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.1,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "ADJACENT_NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 5.2
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 5.1,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/OpenRapid/rapidcms/issues/3",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.237567",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.237567",
"source": "cna@vuldb.com"
}
]
}

32
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-08-20T23:55:26.075298+00:00
2023-08-21T02:00:32.282531+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-08-20T23:15:10.693000+00:00
2023-08-21T01:15:10.320000+00:00
```
### Last Data Feed Release
@ -23,30 +23,40 @@ Repository synchronizes with the NVD every 2 hours.
Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest)
```plain
2023-08-20T00:00:13.554013+00:00
2023-08-21T00:00:13.547021+00:00
```
### Total Number of included CVEs
```plain
223022
223034
```
### CVEs added in the last Commit
Recently added CVEs: `5`
Recently added CVEs: `12`
* [CVE-2023-4436](CVE-2023/CVE-2023-44xx/CVE-2023-4436.json) (`2023-08-20T22:15:10.273`)
* [CVE-2023-4437](CVE-2023/CVE-2023-44xx/CVE-2023-4437.json) (`2023-08-20T22:15:11.027`)
* [CVE-2023-4438](CVE-2023/CVE-2023-44xx/CVE-2023-4438.json) (`2023-08-20T23:15:09.493`)
* [CVE-2023-4439](CVE-2023/CVE-2023-44xx/CVE-2023-4439.json) (`2023-08-20T23:15:10.440`)
* [CVE-2023-4440](CVE-2023/CVE-2023-44xx/CVE-2023-4440.json) (`2023-08-20T23:15:10.693`)
* [CVE-2023-4441](CVE-2023/CVE-2023-44xx/CVE-2023-4441.json) (`2023-08-21T00:15:09.457`)
* [CVE-2023-4442](CVE-2023/CVE-2023-44xx/CVE-2023-4442.json) (`2023-08-21T00:15:09.860`)
* [CVE-2023-39784](CVE-2023/CVE-2023-397xx/CVE-2023-39784.json) (`2023-08-21T01:15:08.927`)
* [CVE-2023-39785](CVE-2023/CVE-2023-397xx/CVE-2023-39785.json) (`2023-08-21T01:15:09.273`)
* [CVE-2023-39786](CVE-2023/CVE-2023-397xx/CVE-2023-39786.json) (`2023-08-21T01:15:09.357`)
* [CVE-2023-39807](CVE-2023/CVE-2023-398xx/CVE-2023-39807.json) (`2023-08-21T01:15:09.417`)
* [CVE-2023-39808](CVE-2023/CVE-2023-398xx/CVE-2023-39808.json) (`2023-08-21T01:15:09.477`)
* [CVE-2023-39809](CVE-2023/CVE-2023-398xx/CVE-2023-39809.json) (`2023-08-21T01:15:09.550`)
* [CVE-2023-4443](CVE-2023/CVE-2023-44xx/CVE-2023-4443.json) (`2023-08-21T01:15:10.013`)
* [CVE-2023-4444](CVE-2023/CVE-2023-44xx/CVE-2023-4444.json) (`2023-08-21T01:15:10.117`)
* [CVE-2023-4445](CVE-2023/CVE-2023-44xx/CVE-2023-4445.json) (`2023-08-21T01:15:10.210`)
* [CVE-2023-4446](CVE-2023/CVE-2023-44xx/CVE-2023-4446.json) (`2023-08-21T01:15:10.320`)
### CVEs modified in the last Commit
Recently modified CVEs: `0`
Recently modified CVEs: `3`
* [CVE-2023-40252](CVE-2023/CVE-2023-402xx/CVE-2023-40252.json) (`2023-08-21T01:15:09.617`)
* [CVE-2023-40253](CVE-2023/CVE-2023-402xx/CVE-2023-40253.json) (`2023-08-21T01:15:09.810`)
* [CVE-2023-40254](CVE-2023/CVE-2023-402xx/CVE-2023-40254.json) (`2023-08-21T01:15:09.913`)
## Download and Usage