admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-19 17:31:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2025-04-07T18:00:20.221566+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2025-04-07 18:04:16 +00:00
parent a5aae315de
commit 257ac99c17
71 changed files with 3308 additions and 973 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
CVE-2021/CVE-2021-476xx/CVE-2021-47667.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2021-47667",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-05T05:15:43.223",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:32.873",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -55,6 +55,10 @@
{
"url": "https://projectblack.io/blog/zendto-nday-vulnerabilities/",
"source": "cve@mitre.org"
},
{
"url": "https://projectblack.io/blog/zendto-nday-vulnerabilities/",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

22
CVE-2022/CVE-2022-418xx/CVE-2022-41858.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-41858",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-01-17T18:15:11.140",
"lastModified": "2024-11-21T07:23:57.000",
"lastModified": "2025-04-07T17:15:33.760",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.2
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.2
}
]
},

22
CVE-2022/CVE-2022-418xx/CVE-2022-41859.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-41859",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-01-17T18:15:11.287",
"lastModified": "2024-11-21T07:23:57.130",
"lastModified": "2025-04-07T17:15:34.067",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},

24
CVE-2022/CVE-2022-418xx/CVE-2022-41860.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-41860",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-01-17T18:15:11.387",
"lastModified": "2024-11-21T07:23:57.257",
"lastModified": "2025-04-07T17:15:34.360",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,13 +36,33 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "secalert@redhat.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

22
CVE-2022/CVE-2022-418xx/CVE-2022-41861.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-41861",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-01-17T18:15:11.480",
"lastModified": "2024-11-21T07:23:57.380",
"lastModified": "2025-04-07T17:15:34.670",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},

24
CVE-2022/CVE-2022-437xx/CVE-2022-43718.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-43718",
"sourceIdentifier": "security@apache.org",
"published": "2023-01-16T11:15:10.443",
"lastModified": "2024-11-21T07:27:07.510",
"lastModified": "2025-04-07T16:15:18.047",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,13 +36,33 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "security@apache.org",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

32
CVE-2022/CVE-2022-439xx/CVE-2022-43975.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-43975",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-17T21:15:13.590",
"lastModified": "2024-11-21T07:27:27.873",
"lastModified": "2025-04-07T17:15:34.940",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-22"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-439xx/CVE-2022-43976.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-43976",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-17T21:15:13.867",
"lastModified": "2024-11-21T07:27:28.013",
"lastModified": "2025-04-07T16:15:18.280",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
],
"configurations": [

22
CVE-2022/CVE-2022-43xx/CVE-2022-4309.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-4309",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-01-16T16:15:11.350",
"lastModified": "2024-11-21T07:34:59.443",
"lastModified": "2025-04-07T17:15:35.277",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.6,
"impactScore": 1.4
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N",
"baseScore": 3.1,
"baseSeverity": "LOW",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 1.6,
"impactScore": 1.4
}
]
},

22
CVE-2022/CVE-2022-44xx/CVE-2022-4478.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-4478",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-01-16T16:15:12.513",
"lastModified": "2024-11-21T07:35:20.630",
"lastModified": "2025-04-07T17:15:35.497",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},

22
CVE-2022/CVE-2022-44xx/CVE-2022-4481.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-4481",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-01-16T16:15:12.647",
"lastModified": "2024-11-21T07:35:21.013",
"lastModified": "2025-04-07T17:15:35.713",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},

32
CVE-2022/CVE-2022-469xx/CVE-2022-46951.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-46951",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-13T20:15:11.107",
"lastModified": "2024-11-21T07:31:19.383",
"lastModified": "2025-04-07T16:15:18.493",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-89"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-469xx/CVE-2022-46952.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-46952",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-13T20:15:11.267",
"lastModified": "2024-11-21T07:31:19.540",
"lastModified": "2025-04-07T16:15:18.693",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-89"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-482xx/CVE-2022-48256.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-48256",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-13T01:15:10.143",
"lastModified": "2024-11-21T07:33:03.627",
"lastModified": "2025-04-07T16:15:18.900",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-835"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-835"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-482xx/CVE-2022-48258.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-48258",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-13T01:15:10.243",
"lastModified": "2024-11-21T07:33:04.027",
"lastModified": "2025-04-07T16:15:19.130",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},
@ -49,6 +69,16 @@
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-205xx/CVE-2023-20522.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-20522",
"sourceIdentifier": "psirt@amd.com",
"published": "2023-01-11T08:15:13.643",
"lastModified": "2024-11-21T07:41:04.570",
"lastModified": "2025-04-07T16:15:20.183",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-20"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-205xx/CVE-2023-20523.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-20523",
"sourceIdentifier": "psirt@amd.com",
"published": "2023-01-11T08:15:13.697",
"lastModified": "2024-11-21T07:41:04.690",
"lastModified": "2025-04-07T16:15:20.400",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 0.5,
"impactScore": 5.2
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"attackVector": "PHYSICAL",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 0.5,
"impactScore": 5.2
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-367"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-367"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-205xx/CVE-2023-20525.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-20525",
"sourceIdentifier": "psirt@amd.com",
"published": "2023-01-11T08:15:13.747",
"lastModified": "2024-11-21T07:41:04.990",
"lastModified": "2025-04-07T16:15:20.640",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-20"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-205xx/CVE-2023-20527.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-20527",
"sourceIdentifier": "psirt@amd.com",
"published": "2023-01-11T08:15:13.797",
"lastModified": "2024-11-21T07:41:05.310",
"lastModified": "2025-04-07T16:15:20.870",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-20"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-235xx/CVE-2023-23566.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-23566",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-13T04:15:09.377",
"lastModified": "2024-11-21T07:46:26.393",
"lastModified": "2025-04-07T16:15:22.377",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "NVD-CWE-Other"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-276"
}
]
}
],
"configurations": [

32
CVE-2023/CVE-2023-235xx/CVE-2023-23590.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-23590",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-01-15T05:15:09.857",
"lastModified": "2024-11-21T07:46:29.520",
"lastModified": "2025-04-07T16:15:22.590",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
],
"configurations": [

52
CVE-2023/CVE-2023-383xx/CVE-2023-38386.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-38386",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-06-19T13:15:53.440",
"lastModified": "2024-11-21T08:13:27.407",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T17:55:07.990",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 4.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
@ -51,14 +71,38 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ninjaforms:ninja_forms:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "3.6.26",
"matchCriteriaId": "CD598414-0E33-4984-84D8-92A633BAD957"
}
]
}
]
}
],
"references": [
{
"url": "https://patchstack.com/database/vulnerability/ninja-forms/wordpress-ninja-forms-plugin-3-6-25-contributor-broken-access-control-vulnerability?_s_id=cve",
"source": "audit@patchstack.com"
"source": "audit@patchstack.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://patchstack.com/database/vulnerability/ninja-forms/wordpress-ninja-forms-plugin-3-6-25-contributor-broken-access-control-vulnerability?_s_id=cve",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
}
]
}

104
CVE-2023/CVE-2023-72xx/CVE-2023-7250.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-7250",
"sourceIdentifier": "secalert@redhat.com",
"published": "2024-03-18T13:15:06.910",
"lastModified": "2024-11-21T08:45:36.653",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-07T16:57:33.430",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,34 +51,120 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:es:iperf3:*:*:*:*:*:*:*:*",
"versionEndExcluding": "3.15",
"matchCriteriaId": "960228C7-0351-4815-8EC0-6D612D65C040"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:8.0_aarch64:*:*:*:*:*:*:*",
"matchCriteriaId": "5A47EF78-A5B6-4B89-8B74-EEB0647C549F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_arm_64:9.0_aarch64:*:*:*:*:*:*:*",
"matchCriteriaId": "2F7DAD7C-9369-4A87-A1D0-4208D3AF0CDC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:8.0_s390x:*:*:*:*:*:*:*",
"matchCriteriaId": "32AF225E-94C0-4D07-900C-DD868C05F554"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:9.0_s390x:*:*:*:*:*:*:*",
"matchCriteriaId": "FB056B47-1F45-4CE4-81F6-872F66C24C29"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:8.0_ppc64le:*:*:*:*:*:*:*",
"matchCriteriaId": "23D471AC-7DCA-4425-AD91-E5D928753A8C"
}
]
}
]
}
],
"references": [
{
"url": "https://access.redhat.com/errata/RHSA-2024:4241",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2024:9185",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/security/cve/CVE-2023-7250",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244707",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2024:4241",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/security/cve/CVE-2023-7250",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244707",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
]
}
]
}

163
CVE-2024/CVE-2024-202xx/CVE-2024-20296.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-20296",
"sourceIdentifier": "psirt@cisco.com",
"published": "2024-07-17T17:15:12.367",
"lastModified": "2024-11-21T08:52:14.977",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-07T17:37:19.620",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.2,
"impactScore": 3.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
@ -49,16 +69,151 @@
"value": "CWE-434"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.0.0",
"versionEndExcluding": "3.1",
"matchCriteriaId": "52347B52-0D70-4438-AC9C-52B72BB5E98D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:-:*:*:*:*:*:*",
"matchCriteriaId": "7A789B44-7E6C-4FE9-BD40-702A871AB8AC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch1:*:*:*:*:*:*",
"matchCriteriaId": "93920663-445E-4456-A905-81CEC6CA1833"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch2:*:*:*:*:*:*",
"matchCriteriaId": "33DA5BB8-4CFE-44BD-9CEB-BC26577E8477"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch3:*:*:*:*:*:*",
"matchCriteriaId": "D3AEFA85-66B5-4145-A4AD-96D1FF86B46D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch4:*:*:*:*:*:*",
"matchCriteriaId": "7A6A0697-6A9E-48EF-82D8-36C75E0CDFDC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch5:*:*:*:*:*:*",
"matchCriteriaId": "E939B65A-7912-4C36-8799-03A1526D7BD3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch6:*:*:*:*:*:*",
"matchCriteriaId": "833B438F-0869-4C0D-9952-750C00702E8D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch7:*:*:*:*:*:*",
"matchCriteriaId": "E8B2588D-01F9-450B-B2E3-ADC4125E354E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch8:*:*:*:*:*:*",
"matchCriteriaId": "E41016C0-19E6-4BCC-A8DD-F6C9A2B0003E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.1.0:patch9:*:*:*:*:*:*",
"matchCriteriaId": "654E946A-07C5-4036-BC54-85EF42B808DD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:-:*:*:*:*:*:*",
"matchCriteriaId": "7932D5D5-83E1-4BEF-845A-D0783D4BB750"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch1:*:*:*:*:*:*",
"matchCriteriaId": "1B818846-4A6E-4256-B344-281E8C786C43"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch2:*:*:*:*:*:*",
"matchCriteriaId": "A44858A2-922A-425A-8B38-0C47DB911A3C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch3:*:*:*:*:*:*",
"matchCriteriaId": "53484A32-757B-42F8-B655-554C34222060"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch4:*:*:*:*:*:*",
"matchCriteriaId": "0CCAC61F-C273-49B3-A631-31D3AE3EB148"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch5:*:*:*:*:*:*",
"matchCriteriaId": "51AEFCE6-FB4A-4B1C-A23D-83CC3CF3FBBD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.2.0:patch6:*:*:*:*:*:*",
"matchCriteriaId": "B452B4F0-8510-475E-9AE8-B48FABB4D7D3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:-:*:*:*:*:*:*",
"matchCriteriaId": "F1B9C2C1-59A4-49A0-9B74-83CCB063E55D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch1:*:*:*:*:*:*",
"matchCriteriaId": "DFD29A0B-0D75-4EAB-BCE0-79450EC75DD0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:identity_services_engine:3.3.0:patch2:*:*:*:*:*:*",
"matchCriteriaId": "E6C94CC4-CC08-4DAF-A606-FDAFC92720A9"
}
]
}
]
}
],
"references": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-krW2TxA9",
"source": "psirt@cisco.com"
"source": "psirt@cisco.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise-file-upload-krW2TxA9",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
}
]
}

33
CVE-2024/CVE-2024-309xx/CVE-2024-30979.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-30979",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-17T16:15:08.577",
"lastModified": "2024-11-21T09:12:39.327",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T16:52:12.710",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "076A2810-A876-4B7D-B728-BCCE977A7225"
}
]
}
]
}
],
"references": [
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30979-stored-cross-site-scripting-xss-in-cyber-cafe-management-system-project-ccms-1-44b10f50817b",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30979-stored-cross-site-scripting-xss-in-cyber-cafe-management-system-project-ccms-1-44b10f50817b",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

33
CVE-2024/CVE-2024-309xx/CVE-2024-30980.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-30980",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-17T17:15:15.117",
"lastModified": "2024-11-21T09:12:39.540",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T16:52:09.683",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "076A2810-A876-4B7D-B728-BCCE977A7225"
}
]
}
]
}
],
"references": [
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30980-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-30bffd26dab7",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30980-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-30bffd26dab7",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

53
CVE-2024/CVE-2024-309xx/CVE-2024-30981.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-30981",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-17T17:15:15.193",
"lastModified": "2025-03-28T20:15:22.830",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-07T16:52:04.923",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -17,6 +17,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
@ -51,14 +71,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "076A2810-A876-4B7D-B728-BCCE977A7225"
}
]
}
]
}
],
"references": [
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30981-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-534676f9bdeb",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30981-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-534676f9bdeb",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

31
CVE-2024/CVE-2024-309xx/CVE-2024-30982.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-30982",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-17T18:15:16.037",
"lastModified": "2024-11-21T09:12:39.890",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T16:51:50.190",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,37 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "076A2810-A876-4B7D-B728-BCCE977A7225"
}
]
}
]
}
],
"references": [
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30982-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-2024a9eed6d7",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30982-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-2024a9eed6d7",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
}
]
}

31
CVE-2024/CVE-2024-309xx/CVE-2024-30983.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-30983",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-17T17:15:15.257",
"lastModified": "2024-11-21T09:12:40.107",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T16:51:56.873",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,37 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpgurukul:cyber_cafe_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "076A2810-A876-4B7D-B728-BCCE977A7225"
}
]
}
]
}
],
"references": [
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30983-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-e67289ffb08a",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://medium.com/%40shanunirwan/cve-2024-30983-sql-injection-vulnerability-in-cyber-cafe-management-system-using-php-mysql-v1-0-e67289ffb08a",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
}
]
}

45
CVE-2024/CVE-2024-331xx/CVE-2024-33181.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-33181",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-16T18:15:07.617",
"lastModified": "2024-11-21T09:16:36.363",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T17:42:20.880",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,51 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:tenda:ac18_firmware:15.03.3.10_en:*:*:*:*:*:*:*",
"matchCriteriaId": "4E6582D7-0296-4A4C-962A-BE2BAE5C5858"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:tenda:ac18:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CF9F8AF9-F921-4348-922B-EE5E6037E7AC"
}
]
}
]
}
],
"references": [
{
"url": "https://palm-vertebra-fe9.notion.site/addWifiMacFilter_2-0f7fab42d4254867b46fe92b25dc7c40",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://palm-vertebra-fe9.notion.site/addWifiMacFilter_2-0f7fab42d4254867b46fe92b25dc7c40",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

43
CVE-2024/CVE-2024-404xx/CVE-2024-40417.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-40417",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-10T16:15:04.373",
"lastModified": "2024-11-21T09:31:04.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T17:44:12.810",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,49 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:tenda:ax1806_firmware:1.0.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "578F9769-EF24-4B52-83D3-9AA2C91A503D"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:tenda:ax1806:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ACA44369-A513-474F-8DD0-A81B598F5B07"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/Feng-ZZ-pwn/IOT/blob/main/Tenda%20AX_1806/1/SetIpMacBind.md",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Broken Link"
]
},
{
"url": "https://github.com/Feng-ZZ-pwn/IOT/blob/main/Tenda%20AX_1806/1/SetIpMacBind.md",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Broken Link"
]
}
]
}

45
CVE-2024/CVE-2024-414xx/CVE-2024-41492.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41492",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-19T17:15:03.410",
"lastModified": "2024-11-21T09:32:43.510",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T17:27:14.087",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,51 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:tenda:ax1806_firmware:1.0.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "578F9769-EF24-4B52-83D3-9AA2C91A503D"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:tenda:ax1806:-:*:*:*:*:*:*:*",
"matchCriteriaId": "ACA44369-A513-474F-8DD0-A81B598F5B07"
}
]
}
]
}
],
"references": [
{
"url": "https://gist.github.com/Swind1er/4176fdc25e415296904c9fb19e2f8293",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://gist.github.com/Swind1er/4176fdc25e415296904c9fb19e2f8293",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

49
CVE-2024/CVE-2024-416xx/CVE-2024-41630.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41630",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-31T19:15:12.390",
"lastModified": "2024-08-21T21:35:09.060",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-07T17:13:22.310",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,18 +51,57 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:tenda:ac18_firmware:15.03.3.10_en:*:*:*:*:*:*:*",
"matchCriteriaId": "4E6582D7-0296-4A4C-962A-BE2BAE5C5858"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:tenda:ac18:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CF9F8AF9-F921-4348-922B-EE5E6037E7AC"
}
]
}
]
}
],
"references": [
{
"url": "https://palm-vertebra-fe9.notion.site/form_fast_setting_wifi_set-fd47294cf4bb460bb95f804d39e53f34",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://www.tendacn.com/hk/download/detail-3852.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Broken Link"
]
},
{
"url": "https://www.tendacn.com/hk/download/detail-3863.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Broken Link"
]
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28400.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28400",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.137",
"lastModified": "2025-04-07T16:15:24.137",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the postID parameter in the edit method"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28400.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

21
CVE-2025/CVE-2025-284xx/CVE-2025-28401.json Normal file
View File

@ -0,0 +1,21 @@
{
"id": "CVE-2025-28401",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.270",
"lastModified": "2025-04-07T16:15:24.270",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the menuId parameter"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28402.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28402",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.383",
"lastModified": "2025-04-07T16:15:24.383",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobId parameter"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28402.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28403.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28403",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.493",
"lastModified": "2025-04-07T16:15:24.493",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method does not properly validate whether the requesting user has administrative privileges before allowing modifications to system configuration settings"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28403.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28405.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28405",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.603",
"lastModified": "2025-04-07T16:15:24.603",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the changeStatus method"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28405.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28406.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28406",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.710",
"lastModified": "2025-04-07T16:15:24.710",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the jobLogId parameter"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28406.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28407.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28407",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.827",
"lastModified": "2025-04-07T16:15:24.827",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the edit method of the /edit/{dictId} endpoint does not properly validate whether the requesting user has permission to modify the specified dictId"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28407.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28408.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28408",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:24.947",
"lastModified": "2025-04-07T16:15:24.947",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the selectDeptTree method of the /selectDeptTree/{deptId} endpoint does not properly validate the deptId parameter"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28408.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28409.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28409",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:25.057",
"lastModified": "2025-04-07T16:15:25.057",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the add method of the /add/{parentId} endpoint does not properly validate whether the requesting user has permission to add a menu item under the specified parentId"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28408.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28410.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28410",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:25.170",
"lastModified": "2025-04-07T16:15:25.170",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the cancelAuthUserAll method does not properly validate whether the requesting user has administrative privileges"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28409.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28411.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28411",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:25.300",
"lastModified": "2025-04-07T16:15:25.300",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the editSave method in /tool/gen/editSave"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28411.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28412.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28412",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:25.433",
"lastModified": "2025-04-07T16:15:25.433",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the /editSave method in SysNoticeController"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28412.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

25
CVE-2025/CVE-2025-284xx/CVE-2025-28413.json Normal file
View File

@ -0,0 +1,25 @@
{
"id": "CVE-2025-28413",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-07T16:15:25.543",
"lastModified": "2025-04-07T16:15:25.543",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in RUoYi v.4.8.0 allows a remote attacker to escalate privileges via the SysDictTypeController component"
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/20210607/cve_public/blob/main/ruoyi_case/CVE-2025-28413.md",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yangzongzhuan/RuoYi",
"source": "cve@mitre.org"
}
]
}

18
CVE-2025/CVE-2025-28xx/CVE-2025-2877.json
View File

@ -2,20 +2,24 @@
"id": "CVE-2025-2877",
"sourceIdentifier": "secalert@redhat.com",
"published": "2025-03-28T14:15:21.877",
"lastModified": "2025-03-28T18:11:40.180",
"lastModified": "2025-04-07T16:15:25.720",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in the Ansible Automation Platform's Event-Driven Ansible. In configurations where verbosity is set to \"debug\", inventory passwords are exposed in plain text when starting a rulebook activation. This issue exists for any \"debug\" action in a rulebook and also affects Event Streams."
},
{
"lang": "es",
"value": "Se detect\u00f3 una falla en Ansible Automation Platform's Event-Driven Ansible. En configuraciones donde el nivel de detalle est\u00e1 configurado como \"depuraci\u00f3n\", las contrase\u00f1as de inventario se exponen en texto plano al iniciar la activaci\u00f3n de un libro de reglas. Este problema existe para cualquier acci\u00f3n de \"depuraci\u00f3n\" en un libro de reglas y tambi\u00e9n afecta a los flujos de eventos."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secalert@redhat.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
@ -38,7 +42,7 @@
"weaknesses": [
{
"source": "secalert@redhat.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -48,6 +52,14 @@
}
],
"references": [
{
"url": "https://access.redhat.com/errata/RHSA-2025:3636",
"source": "secalert@redhat.com"
},
{
"url": "https://access.redhat.com/errata/RHSA-2025:3637",
"source": "secalert@redhat.com"
},
{
"url": "https://access.redhat.com/security/cve/CVE-2025-2877",
"source": "secalert@redhat.com"

6
CVE-2025/CVE-2025-301xx/CVE-2025-30195.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-30195",
"sourceIdentifier": "security@open-xchange.com",
"published": "2025-04-07T14:15:24.813",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:25.850",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -51,6 +51,10 @@
{
"url": "https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2025-01.html",
"source": "security@open-xchange.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/04/07/1",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}

29
CVE-2025/CVE-2025-304xx/CVE-2025-30473.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-30473",
"sourceIdentifier": "security@apache.org",
"published": "2025-04-07T09:15:16.667",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:25.960",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,11 +15,34 @@
"value": "Vulnerabilidad de neutralizaci\u00f3n incorrecta de elementos especiales utilizados en una vulnerabilidad de comando SQL ('Inyecci\u00f3n SQL') en el proveedor SQL com\u00fan de Apache Airflow. Al usar la cl\u00e1usula de partici\u00f3n en SQLTableCheckOperator como par\u00e1metro (un patr\u00f3n recomendado), el usuario autenticado de la interfaz de usuario pod\u00eda inyectar un comando SQL arbitrario al activar el DAG, exponiendo la cl\u00e1usula de partici\u00f3n al usuario. Esto permit\u00eda al usuario que activaba el DAG escalar privilegios para ejecutar dichos comandos arbitrarios, algo que normalmente no tendr\u00eda. Este problema afecta al proveedor SQL com\u00fan de Apache Airflow: versiones anteriores a la 1.24.1. Se recomienda actualizar a la versi\u00f3n 1.24.1, que soluciona el problema."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "security@apache.org",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

10
CVE-2025/CVE-2025-31xx/CVE-2025-3181.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3181",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-03T22:15:21.350",
"lastModified": "2025-04-07T14:18:34.453",
"lastModified": "2025-04-07T17:15:37.707",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -140,6 +140,10 @@
{
"url": "https://vuldb.com/?submit.543841",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/p1026/CVE/issues/15",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-31xx/CVE-2025-3182.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3182",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-03T22:15:21.533",
"lastModified": "2025-04-07T14:18:34.453",
"lastModified": "2025-04-07T17:15:37.897",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -140,6 +140,10 @@
{
"url": "https://vuldb.com/?submit.543842",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/p1026/CVE/issues/16",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-31xx/CVE-2025-3183.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3183",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-03T22:15:21.723",
"lastModified": "2025-04-07T14:18:34.453",
"lastModified": "2025-04-07T17:15:38.060",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -140,6 +140,10 @@
{
"url": "https://vuldb.com/?submit.543843",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/p1026/CVE/issues/17",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

6
CVE-2025/CVE-2025-323xx/CVE-2025-32352.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-32352",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-05T05:15:44.693",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:37.147",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -55,6 +55,10 @@
{
"url": "https://projectblack.io/blog/zendto-nday-vulnerabilities/",
"source": "cve@mitre.org"
},
{
"url": "https://projectblack.io/blog/zendto-nday-vulnerabilities/",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-32xx/CVE-2025-3268.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3268",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-04T21:15:51.557",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:26.430",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -136,6 +136,10 @@
{
"url": "https://vuldb.com/?submit.549229",
"source": "cna@vuldb.com"
},
{
"url": "https://magnificent-dill-351.notion.site/Improper-Authentication-in-TinyWebServer-1-0-1c9c693918ed80cfa0f5db1a1d03c5e7",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-32xx/CVE-2025-3296.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3296",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T08:15:13.787",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:38.227",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/foreverfeifei/cve/blob/main/sql.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-32xx/CVE-2025-3297.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3297",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T09:15:15.237",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:38.387",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/foreverfeifei/cve/blob/main/xss.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-32xx/CVE-2025-3298.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3298",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T11:15:40.917",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:38.550",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/foreverfeifei/cve/blob/main/user.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-32xx/CVE-2025-3299.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3299",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T11:15:41.180",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T17:15:38.713",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://vuldb.com/?submit.550185",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/LaneyYu/cve/issues/1",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-33xx/CVE-2025-3303.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3303",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T21:15:40.990",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:26.560",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://vuldb.com/?submit.549644",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/hyfhacker/cve/blob/main/README.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-33xx/CVE-2025-3305.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3305",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-05T23:15:41.780",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:26.767",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -140,6 +140,10 @@
{
"url": "https://vuldb.com/?submit.550186",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/buluorifu/Vulnerability-recurrence/blob/main/Refer/IKUN_Library-authority.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-33xx/CVE-2025-3306.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3306",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-06T01:15:40.663",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:26.893",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://vuldb.com/?submit.550190",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/p1026/CVE/issues/22",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

10
CVE-2025/CVE-2025-33xx/CVE-2025-3307.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3307",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-06T03:15:15.603",
"lastModified": "2025-04-07T14:17:50.220",
"lastModified": "2025-04-07T16:15:27.020",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -63,7 +63,7 @@
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
@ -111,7 +111,7 @@
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -144,6 +144,10 @@
{
"url": "https://vuldb.com/?submit.550192",
"source": "cna@vuldb.com"
},
{
"url": "https://github.com/p1026/CVE/issues/24",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

141
CVE-2025/CVE-2025-33xx/CVE-2025-3373.json Normal file
View File

@ -0,0 +1,141 @@
{
"id": "CVE-2025-3373",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-07T16:15:27.340",
"lastModified": "2025-04-07T16:15:27.340",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component SITE CHMOD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"baseScore": 7.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-119"
},
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"references": [
{
"url": "https://fitoxs.com/exploit/exploit2.txt",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.303619",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.303619",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.552274",
"source": "cna@vuldb.com"
}
]
}

145
CVE-2025/CVE-2025-33xx/CVE-2025-3374.json Normal file
View File

@ -0,0 +1,145 @@
{
"id": "CVE-2025-3374",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-07T16:15:27.530",
"lastModified": "2025-04-07T17:15:39.303",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this issue is some unknown functionality of the component CCC Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"baseScore": 7.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-119"
},
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"references": [
{
"url": "https://fitoxs.com/exploit/exploit-e4f29cda8e801f1b0e7fcf539e4352b4.txt",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.303620",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.303620",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.552336",
"source": "cna@vuldb.com"
},
{
"url": "https://fitoxs.com/exploit/exploit-e4f29cda8e801f1b0e7fcf539e4352b4.txt",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

141
CVE-2025/CVE-2025-33xx/CVE-2025-3375.json Normal file
View File

@ -0,0 +1,141 @@
{
"id": "CVE-2025-3375",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-07T17:15:39.457",
"lastModified": "2025-04-07T17:15:39.457",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in PCMan FTP Server 2.0.7. It has been classified as critical. This affects an unknown part of the component CDUP Command Handler. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"baseScore": 7.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-119"
},
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"references": [
{
"url": "https://fitoxs.com/exploit/exploit-b81a4a56b5d867bc810b183e3c9791ef.txt",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.303621",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.303621",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.552337",
"source": "cna@vuldb.com"
}
]
}

141
CVE-2025/CVE-2025-33xx/CVE-2025-3376.json Normal file
View File

@ -0,0 +1,141 @@
{
"id": "CVE-2025-3376",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-07T17:15:39.680",
"lastModified": "2025-04-07T17:15:39.680",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in PCMan FTP Server 2.0.7. It has been declared as critical. This vulnerability affects unknown code of the component CONF Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"baseScore": 6.9,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "LOW",
"vulnAvailabilityImpact": "LOW",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"baseScore": 7.5,
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL"
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-119"
},
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"references": [
{
"url": "https://fitoxs.com/exploit/exploit-f14d986820a0a41f23e061b41b5c6f61.txt",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.303622",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.303622",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.552338",
"source": "cna@vuldb.com"
}
]
}

78
CVE-2025/CVE-2025-34xx/CVE-2025-3424.json Normal file
View File

@ -0,0 +1,78 @@
{
"id": "CVE-2025-3424",
"sourceIdentifier": "20705f08-db8b-4497-8f94-7eea62317651",
"published": "2025-04-07T16:15:27.703",
"lastModified": "2025-04-07T16:15:27.703",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The IntelliSpace portal application utilizes .NET\nRemoting for its functionality. The vulnerability arises from the exploitation\nof port 755 through the \"Object Marshalling\" technique, which allows\nan attacker to read internal files without any authentication. This is possible\nby crafting specific .NET Remoting URLs derived from information enumerated in\nthe client-side configuration files.\n\n\n\n\n\n\n\nThis issue affects IntelliSpace Portal: 12 and prior."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Green",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"attackVector": "ADJACENT",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "PRESENT",
"Automatable": "YES",
"Recovery": "USER",
"valueDensity": "CONCENTRATED",
"vulnerabilityResponseEffort": "MODERATE",
"providerUrgency": "GREEN"
}
}
]
},
"weaknesses": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
}
],
"references": [
{
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3424",
"source": "20705f08-db8b-4497-8f94-7eea62317651"
}
]
}

78
CVE-2025/CVE-2025-34xx/CVE-2025-3425.json Normal file
View File

@ -0,0 +1,78 @@
{
"id": "CVE-2025-3425",
"sourceIdentifier": "20705f08-db8b-4497-8f94-7eea62317651",
"published": "2025-04-07T16:15:27.963",
"lastModified": "2025-04-07T16:15:27.963",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The IntelliSpace portal application utilizes .NET Remoting for its functionality. The vulnerability arises from the exploitation of port 755 through the deserialization vulnerability. After analyzing the configuration files, we observed that the server had set the TypeFilterLevel to Full which is dangerous as it can potentially lead to remote code execution using deserialization. This issue affects IntelliSpace Portal: 12 and prior."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Green",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "ADJACENT",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "ACTIVE",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnAvailabilityImpact": "HIGH",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"subAvailabilityImpact": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "PRESENT",
"Automatable": "YES",
"Recovery": "USER",
"valueDensity": "CONCENTRATED",
"vulnerabilityResponseEffort": "MODERATE",
"providerUrgency": "GREEN"
}
}
]
},
"weaknesses": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-502"
}
]
}
],
"references": [
{
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3425",
"source": "20705f08-db8b-4497-8f94-7eea62317651"
}
]
}

78
CVE-2025/CVE-2025-34xx/CVE-2025-3426.json Normal file
View File

@ -0,0 +1,78 @@
{
"id": "CVE-2025-3426",
"sourceIdentifier": "20705f08-db8b-4497-8f94-7eea62317651",
"published": "2025-04-07T17:15:40.073",
"lastModified": "2025-04-07T17:15:40.073",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "We observed that Intellispace Portal binaries doesn\u2019t have any protection mechanisms to prevent reverse engineering. Specifically, the app\u2019s code is not obfuscated, and no measures are in place to protect against decompilation, disassembly, or debugging. As a result, attackers can reverse-engineer the application to gain insights into its internal workings, which can potentially lead to the discovery of sensitive information, business logic flaws, and other vulnerabilities.\nUtilizing this flaw, the attacker was able to identify the Hardcoded credentials from PortalUsersDatabase.dll, which contains .NET remoting definition. Inside the namespace PortalUsersDatabase, the class Users contains the functions CreateAdmin and CreateService that are used to initialize accounts in the Portal service. Both CreateAdmin and CreateService functions contain a hardcoded encrypted password along with its respective salt that are set with the function SetInitialPasswordAndSalt.\nThis issue affects IntelliSpace Portal: 12 and prior; Advanced Visualization Workspace: 15."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:Y/R:U/V:C/RE:M/U:Green",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "NONE",
"vulnAvailabilityImpact": "NONE",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "HIGH",
"subAvailabilityImpact": "HIGH",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirement": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"availabilityRequirement": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"Safety": "PRESENT",
"Automatable": "YES",
"Recovery": "USER",
"valueDensity": "CONCENTRATED",
"vulnerabilityResponseEffort": "MODERATE",
"providerUrgency": "GREEN"
}
}
]
},
"weaknesses": [
{
"source": "20705f08-db8b-4497-8f94-7eea62317651",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-798"
}
]
}
],
"references": [
{
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3426",
"source": "20705f08-db8b-4497-8f94-7eea62317651"
}
]
}

97
README.md
View File

@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2025-04-07T16:00:21.301749+00:00
2025-04-07T18:00:20.221566+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2025-04-07T15:19:34.960000+00:00
2025-04-07T17:55:07.990000+00:00
```
### Last Data Feed Release
@ -33,61 +33,64 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
288855
288875
```
### CVEs added in the last Commit
Recently added CVEs: `17`
Recently added CVEs: `20`
- [CVE-2025-2251](CVE-2025/CVE-2025-22xx/CVE-2025-2251.json) (`2025-04-07T14:15:24.400`)
- [CVE-2025-27686](CVE-2025/CVE-2025-276xx/CVE-2025-27686.json) (`2025-04-07T14:15:24.210`)
- [CVE-2025-30195](CVE-2025/CVE-2025-301xx/CVE-2025-30195.json) (`2025-04-07T14:15:24.813`)
- [CVE-2025-30373](CVE-2025/CVE-2025-303xx/CVE-2025-30373.json) (`2025-04-07T15:15:43.887`)
- [CVE-2025-31126](CVE-2025/CVE-2025-311xx/CVE-2025-31126.json) (`2025-04-03T18:15:45.803`)
- [CVE-2025-31127](CVE-2025/CVE-2025-311xx/CVE-2025-31127.json) (`2025-04-03T18:15:46.037`)
- [CVE-2025-31138](CVE-2025/CVE-2025-311xx/CVE-2025-31138.json) (`2025-04-07T15:15:44.047`)
- [CVE-2025-31475](CVE-2025/CVE-2025-314xx/CVE-2025-31475.json) (`2025-04-07T15:15:44.220`)
- [CVE-2025-31476](CVE-2025/CVE-2025-314xx/CVE-2025-31476.json) (`2025-04-07T15:15:44.370`)
- [CVE-2025-31483](CVE-2025/CVE-2025-314xx/CVE-2025-31483.json) (`2025-04-03T18:15:47.270`)
- [CVE-2025-3172](CVE-2025/CVE-2025-31xx/CVE-2025-3172.json) (`2025-04-03T18:15:48.723`)
- [CVE-2025-32014](CVE-2025/CVE-2025-320xx/CVE-2025-32014.json) (`2025-04-07T15:15:44.593`)
- [CVE-2025-3248](CVE-2025/CVE-2025-32xx/CVE-2025-3248.json) (`2025-04-07T15:15:44.897`)
- [CVE-2025-3369](CVE-2025/CVE-2025-33xx/CVE-2025-3369.json) (`2025-04-07T14:15:28.843`)
- [CVE-2025-3370](CVE-2025/CVE-2025-33xx/CVE-2025-3370.json) (`2025-04-07T14:15:29.047`)
- [CVE-2025-3371](CVE-2025/CVE-2025-33xx/CVE-2025-3371.json) (`2025-04-07T15:15:46.097`)
- [CVE-2025-3372](CVE-2025/CVE-2025-33xx/CVE-2025-3372.json) (`2025-04-07T15:15:46.300`)
- [CVE-2025-28400](CVE-2025/CVE-2025-284xx/CVE-2025-28400.json) (`2025-04-07T16:15:24.137`)
- [CVE-2025-28401](CVE-2025/CVE-2025-284xx/CVE-2025-28401.json) (`2025-04-07T16:15:24.270`)
- [CVE-2025-28402](CVE-2025/CVE-2025-284xx/CVE-2025-28402.json) (`2025-04-07T16:15:24.383`)
- [CVE-2025-28403](CVE-2025/CVE-2025-284xx/CVE-2025-28403.json) (`2025-04-07T16:15:24.493`)
- [CVE-2025-28405](CVE-2025/CVE-2025-284xx/CVE-2025-28405.json) (`2025-04-07T16:15:24.603`)
- [CVE-2025-28406](CVE-2025/CVE-2025-284xx/CVE-2025-28406.json) (`2025-04-07T16:15:24.710`)
- [CVE-2025-28407](CVE-2025/CVE-2025-284xx/CVE-2025-28407.json) (`2025-04-07T16:15:24.827`)
- [CVE-2025-28408](CVE-2025/CVE-2025-284xx/CVE-2025-28408.json) (`2025-04-07T16:15:24.947`)
- [CVE-2025-28409](CVE-2025/CVE-2025-284xx/CVE-2025-28409.json) (`2025-04-07T16:15:25.057`)
- [CVE-2025-28410](CVE-2025/CVE-2025-284xx/CVE-2025-28410.json) (`2025-04-07T16:15:25.170`)
- [CVE-2025-28411](CVE-2025/CVE-2025-284xx/CVE-2025-28411.json) (`2025-04-07T16:15:25.300`)
- [CVE-2025-28412](CVE-2025/CVE-2025-284xx/CVE-2025-28412.json) (`2025-04-07T16:15:25.433`)
- [CVE-2025-28413](CVE-2025/CVE-2025-284xx/CVE-2025-28413.json) (`2025-04-07T16:15:25.543`)
- [CVE-2025-3373](CVE-2025/CVE-2025-33xx/CVE-2025-3373.json) (`2025-04-07T16:15:27.340`)
- [CVE-2025-3374](CVE-2025/CVE-2025-33xx/CVE-2025-3374.json) (`2025-04-07T16:15:27.530`)
- [CVE-2025-3375](CVE-2025/CVE-2025-33xx/CVE-2025-3375.json) (`2025-04-07T17:15:39.457`)
- [CVE-2025-3376](CVE-2025/CVE-2025-33xx/CVE-2025-3376.json) (`2025-04-07T17:15:39.680`)
- [CVE-2025-3424](CVE-2025/CVE-2025-34xx/CVE-2025-3424.json) (`2025-04-07T16:15:27.703`)
- [CVE-2025-3425](CVE-2025/CVE-2025-34xx/CVE-2025-3425.json) (`2025-04-07T16:15:27.963`)
- [CVE-2025-3426](CVE-2025/CVE-2025-34xx/CVE-2025-3426.json) (`2025-04-07T17:15:40.073`)
### CVEs modified in the last Commit
Recently modified CVEs: `755`
Recently modified CVEs: `49`
- [CVE-2025-3331](CVE-2025/CVE-2025-33xx/CVE-2025-3331.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3332](CVE-2025/CVE-2025-33xx/CVE-2025-3332.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3333](CVE-2025/CVE-2025-33xx/CVE-2025-3333.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3334](CVE-2025/CVE-2025-33xx/CVE-2025-3334.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3335](CVE-2025/CVE-2025-33xx/CVE-2025-3335.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3336](CVE-2025/CVE-2025-33xx/CVE-2025-3336.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3337](CVE-2025/CVE-2025-33xx/CVE-2025-3337.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3338](CVE-2025/CVE-2025-33xx/CVE-2025-3338.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3339](CVE-2025/CVE-2025-33xx/CVE-2025-3339.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3340](CVE-2025/CVE-2025-33xx/CVE-2025-3340.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3341](CVE-2025/CVE-2025-33xx/CVE-2025-3341.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3342](CVE-2025/CVE-2025-33xx/CVE-2025-3342.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3343](CVE-2025/CVE-2025-33xx/CVE-2025-3343.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3344](CVE-2025/CVE-2025-33xx/CVE-2025-3344.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3345](CVE-2025/CVE-2025-33xx/CVE-2025-3345.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3346](CVE-2025/CVE-2025-33xx/CVE-2025-3346.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3347](CVE-2025/CVE-2025-33xx/CVE-2025-3347.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3348](CVE-2025/CVE-2025-33xx/CVE-2025-3348.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3349](CVE-2025/CVE-2025-33xx/CVE-2025-3349.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3350](CVE-2025/CVE-2025-33xx/CVE-2025-3350.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3351](CVE-2025/CVE-2025-33xx/CVE-2025-3351.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3352](CVE-2025/CVE-2025-33xx/CVE-2025-3352.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3353](CVE-2025/CVE-2025-33xx/CVE-2025-3353.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3359](CVE-2025/CVE-2025-33xx/CVE-2025-3359.json) (`2025-04-07T14:17:50.220`)
- [CVE-2025-3360](CVE-2025/CVE-2025-33xx/CVE-2025-3360.json) (`2025-04-07T14:17:50.220`)
- [CVE-2024-30979](CVE-2024/CVE-2024-309xx/CVE-2024-30979.json) (`2025-04-07T16:52:12.710`)
- [CVE-2024-30980](CVE-2024/CVE-2024-309xx/CVE-2024-30980.json) (`2025-04-07T16:52:09.683`)
- [CVE-2024-30981](CVE-2024/CVE-2024-309xx/CVE-2024-30981.json) (`2025-04-07T16:52:04.923`)
- [CVE-2024-30982](CVE-2024/CVE-2024-309xx/CVE-2024-30982.json) (`2025-04-07T16:51:50.190`)
- [CVE-2024-30983](CVE-2024/CVE-2024-309xx/CVE-2024-30983.json) (`2025-04-07T16:51:56.873`)
- [CVE-2024-33181](CVE-2024/CVE-2024-331xx/CVE-2024-33181.json) (`2025-04-07T17:42:20.880`)
- [CVE-2024-40417](CVE-2024/CVE-2024-404xx/CVE-2024-40417.json) (`2025-04-07T17:44:12.810`)
- [CVE-2024-41492](CVE-2024/CVE-2024-414xx/CVE-2024-41492.json) (`2025-04-07T17:27:14.087`)
- [CVE-2024-41630](CVE-2024/CVE-2024-416xx/CVE-2024-41630.json) (`2025-04-07T17:13:22.310`)
- [CVE-2025-2877](CVE-2025/CVE-2025-28xx/CVE-2025-2877.json) (`2025-04-07T16:15:25.720`)
- [CVE-2025-30195](CVE-2025/CVE-2025-301xx/CVE-2025-30195.json) (`2025-04-07T16:15:25.850`)
- [CVE-2025-30473](CVE-2025/CVE-2025-304xx/CVE-2025-30473.json) (`2025-04-07T16:15:25.960`)
- [CVE-2025-3181](CVE-2025/CVE-2025-31xx/CVE-2025-3181.json) (`2025-04-07T17:15:37.707`)
- [CVE-2025-3182](CVE-2025/CVE-2025-31xx/CVE-2025-3182.json) (`2025-04-07T17:15:37.897`)
- [CVE-2025-3183](CVE-2025/CVE-2025-31xx/CVE-2025-3183.json) (`2025-04-07T17:15:38.060`)
- [CVE-2025-32352](CVE-2025/CVE-2025-323xx/CVE-2025-32352.json) (`2025-04-07T17:15:37.147`)
- [CVE-2025-3268](CVE-2025/CVE-2025-32xx/CVE-2025-3268.json) (`2025-04-07T16:15:26.430`)
- [CVE-2025-3296](CVE-2025/CVE-2025-32xx/CVE-2025-3296.json) (`2025-04-07T17:15:38.227`)
- [CVE-2025-3297](CVE-2025/CVE-2025-32xx/CVE-2025-3297.json) (`2025-04-07T17:15:38.387`)
- [CVE-2025-3298](CVE-2025/CVE-2025-32xx/CVE-2025-3298.json) (`2025-04-07T17:15:38.550`)
- [CVE-2025-3299](CVE-2025/CVE-2025-32xx/CVE-2025-3299.json) (`2025-04-07T17:15:38.713`)
- [CVE-2025-3303](CVE-2025/CVE-2025-33xx/CVE-2025-3303.json) (`2025-04-07T16:15:26.560`)
- [CVE-2025-3305](CVE-2025/CVE-2025-33xx/CVE-2025-3305.json) (`2025-04-07T16:15:26.767`)
- [CVE-2025-3306](CVE-2025/CVE-2025-33xx/CVE-2025-3306.json) (`2025-04-07T16:15:26.893`)
- [CVE-2025-3307](CVE-2025/CVE-2025-33xx/CVE-2025-3307.json) (`2025-04-07T16:15:27.020`)
## Download and Usage

1630
_state.csv
View File

File diff suppressed because it is too large Load Diff