admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-05 18:30:48 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2025-04-23T20:00:20.672114+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2025-04-23 20:03:59 +00:00
parent 1e11fec291
commit 33abb5897e
87 changed files with 2862 additions and 590 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
CVE-2021/CVE-2021-441xx/CVE-2021-44142.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2021-44142",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-02-21T15:15:07.380",
"lastModified": "2024-11-21T06:30:25.637",
"lastModified": "2025-04-23T19:15:51.880",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV2": [

22
CVE-2022/CVE-2022-05xx/CVE-2022-0547.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0547",
"sourceIdentifier": "security@openvpn.net",
"published": "2022-03-18T18:15:12.017",
"lastModified": "2024-11-21T06:38:53.400",
"lastModified": "2025-04-23T19:15:52.743",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [

24
CVE-2022/CVE-2022-11xx/CVE-2022-1199.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-1199",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-08-29T15:15:10.527",
"lastModified": "2024-11-21T06:40:14.437",
"lastModified": "2025-04-23T18:15:47.850",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,13 +36,33 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "secalert@redhat.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

24
CVE-2022/CVE-2022-13xx/CVE-2022-1304.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-1304",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-04-14T21:15:08.490",
"lastModified": "2024-11-22T12:15:17.440",
"lastModified": "2025-04-23T19:15:53.010",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
],
"cvssMetricV2": [
@ -67,7 +87,7 @@
"weaknesses": [
{
"source": "secalert@redhat.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

22
CVE-2022/CVE-2022-23xx/CVE-2022-2380.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2380",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-07-13T19:15:09.727",
"lastModified": "2024-11-21T07:00:52.557",
"lastModified": "2025-04-23T18:15:48.393",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-29xx/CVE-2022-2962.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2962",
"sourceIdentifier": "secalert@redhat.com",
"published": "2022-09-13T20:15:09.640",
"lastModified": "2024-11-21T07:01:59.670",
"lastModified": "2025-04-23T18:15:48.600",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},

22
CVE-2022/CVE-2022-322xx/CVE-2022-32207.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-32207",
"sourceIdentifier": "support@hackerone.com",
"published": "2022-07-07T13:15:08.403",
"lastModified": "2024-11-21T07:05:55.320",
"lastModified": "2025-04-23T18:15:53.880",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [

24
CVE-2022/CVE-2022-381xx/CVE-2022-38144.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-38144",
"sourceIdentifier": "audit@patchstack.com",
"published": "2022-09-09T15:15:14.463",
"lastModified": "2024-11-21T07:15:52.973",
"lastModified": "2025-04-23T18:16:01.697",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,13 +36,33 @@
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "audit@patchstack.com",
"type": "Primary",
"type": "Secondary",
"description": [
{
"lang": "en",

22
CVE-2022/CVE-2022-427xx/CVE-2022-42755.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42755",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:20.820",
"lastModified": "2024-11-21T07:25:16.320",
"lastModified": "2025-04-23T19:16:20.540",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42757.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42757",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:21.300",
"lastModified": "2024-11-21T07:25:16.577",
"lastModified": "2025-04-23T19:16:20.733",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"baseScore": 3.3,
"baseSeverity": "LOW",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42758.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42758",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:21.520",
"lastModified": "2024-11-21T07:25:16.690",
"lastModified": "2025-04-23T19:16:20.923",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"baseScore": 3.3,
"baseSeverity": "LOW",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 1.8,
"impactScore": 1.4
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42759.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42759",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:21.717",
"lastModified": "2024-11-21T07:25:16.803",
"lastModified": "2025-04-23T19:16:21.113",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42760.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42760",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:21.880",
"lastModified": "2024-11-21T07:25:16.910",
"lastModified": "2025-04-23T19:16:21.310",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42761.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42761",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:22.083",
"lastModified": "2024-11-21T07:25:17.033",
"lastModified": "2025-04-23T19:16:21.500",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42762.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42762",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:22.300",
"lastModified": "2024-11-21T07:25:17.160",
"lastModified": "2025-04-23T19:16:21.697",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42763.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42763",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:22.510",
"lastModified": "2024-11-21T07:25:17.283",
"lastModified": "2025-04-23T19:16:21.880",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42764.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42764",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:22.723",
"lastModified": "2024-11-21T07:25:17.423",
"lastModified": "2025-04-23T19:16:22.083",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42775.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42775",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:24.517",
"lastModified": "2024-11-21T07:25:18.940",
"lastModified": "2025-04-23T19:16:22.260",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42776.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42776",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:24.773",
"lastModified": "2024-11-21T07:25:19.073",
"lastModified": "2025-04-23T19:16:22.447",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42777.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42777",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:24.843",
"lastModified": "2024-11-21T07:25:19.207",
"lastModified": "2025-04-23T19:16:22.637",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42778.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42778",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:25.100",
"lastModified": "2024-11-21T07:25:19.343",
"lastModified": "2025-04-23T19:16:22.820",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42779.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42779",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:25.413",
"lastModified": "2024-11-21T07:25:19.477",
"lastModified": "2025-04-23T19:16:23.020",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42780.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42780",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:25.763",
"lastModified": "2024-11-21T07:25:19.600",
"lastModified": "2025-04-23T19:16:23.260",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42781.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42781",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:25.943",
"lastModified": "2024-11-21T07:25:19.727",
"lastModified": "2025-04-23T19:16:23.440",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

22
CVE-2022/CVE-2022-427xx/CVE-2022-42782.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-42782",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-12-06T07:15:26.040",
"lastModified": "2024-11-21T07:25:19.860",
"lastModified": "2025-04-23T19:16:23.620",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},

32
CVE-2022/CVE-2022-434xx/CVE-2022-43468.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-43468",
"sourceIdentifier": "vultures@jpcert.or.jp",
"published": "2022-12-07T04:15:10.723",
"lastModified": "2024-11-21T07:26:33.050",
"lastModified": "2025-04-23T19:16:23.803",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-665"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-665"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-451xx/CVE-2022-45122.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45122",
"sourceIdentifier": "vultures@jpcert.or.jp",
"published": "2022-12-07T04:15:11.283",
"lastModified": "2024-11-21T07:28:48.260",
"lastModified": "2025-04-23T19:16:24.043",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-79"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-452xx/CVE-2022-45217.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45217",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-12-07T14:15:10.803",
"lastModified": "2024-11-21T07:28:58.787",
"lastModified": "2025-04-23T19:16:24.213",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-79"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-455xx/CVE-2022-45550.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45550",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-12-07T19:15:10.110",
"lastModified": "2024-11-21T07:29:26.290",
"lastModified": "2025-04-23T18:16:02.100",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-459xx/CVE-2022-45915.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45915",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-12-07T01:15:11.513",
"lastModified": "2024-11-21T07:29:56.720",
"lastModified": "2025-04-23T18:16:02.280",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-78"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-459xx/CVE-2022-45916.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45916",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-12-07T01:15:11.570",
"lastModified": "2024-11-21T07:29:56.877",
"lastModified": "2025-04-23T18:16:02.480",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-79"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [

32
CVE-2022/CVE-2022-459xx/CVE-2022-45917.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-45917",
"sourceIdentifier": "cve@mitre.org",
"published": "2022-12-07T01:15:11.620",
"lastModified": "2024-11-21T07:29:57.017",
"lastModified": "2025-04-23T18:16:02.660",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-601"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-601"
}
]
}
],
"configurations": [

34
CVE-2023/CVE-2023-258xx/CVE-2023-25829.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25829",
"sourceIdentifier": "psirt@esri.com",
"published": "2023-05-09T17:15:10.387",
"lastModified": "2025-04-10T19:15:55.243",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:14:28.873",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -32,6 +32,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
@ -45,6 +65,16 @@
"value": "CWE-601"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-601"
}
]
}
],
"configurations": [

24
CVE-2023/CVE-2023-258xx/CVE-2023-25830.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25830",
"sourceIdentifier": "psirt@esri.com",
"published": "2023-05-09T17:15:10.567",
"lastModified": "2025-04-10T19:15:55.417",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:30:11.823",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -32,6 +32,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},

24
CVE-2023/CVE-2023-258xx/CVE-2023-25831.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25831",
"sourceIdentifier": "psirt@esri.com",
"published": "2023-05-09T21:15:11.513",
"lastModified": "2025-04-10T19:15:55.533",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:38:21.163",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -32,6 +32,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},

24
CVE-2023/CVE-2023-258xx/CVE-2023-25836.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25836",
"sourceIdentifier": "psirt@esri.com",
"published": "2023-07-21T04:15:11.917",
"lastModified": "2025-04-10T19:15:56.163",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:38:30.340",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -32,6 +32,26 @@
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},

42
CVE-2023/CVE-2023-383xx/CVE-2023-38366.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-38366",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2024-03-01T03:15:06.077",
"lastModified": "2025-03-04T14:14:47.390",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:47:02.037",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-22"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
}
],
"configurations": [
@ -83,8 +113,8 @@
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/261115",
"source": "psirt@us.ibm.com",
"tags": [
"Vendor Advisory",
"VDB Entry"
"VDB Entry",
"Vendor Advisory"
]
},
{
@ -98,8 +128,8 @@
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/261115",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory",
"VDB Entry"
"VDB Entry",
"Vendor Advisory"
]
},
{

10
CVE-2023/CVE-2023-398xx/CVE-2023-39810.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-39810",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-08-28T19:15:07.893",
"lastModified": "2025-04-23T17:16:34.280",
"lastModified": "2025-04-23T18:16:02.883",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -95,6 +95,14 @@
"url": "http://www.openwall.com/lists/oss-security/2025/04/23/1",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/04/23/2",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/04/23/3",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://www.pentagrid.ch/en/blog/busybox-cpio-directory-traversal-vulnerability/",
"source": "af854a3a-2127-422b-91ae-364da2661108",

34
CVE-2023/CVE-2023-455xx/CVE-2023-45596.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-45596",
"sourceIdentifier": "prodsec@nozominetworks.com",
"published": "2024-03-05T12:15:46.913",
"lastModified": "2025-03-03T22:34:02.150",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:47:08.483",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-425"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-425"
}
]
}
],
"configurations": [

34
CVE-2023/CVE-2023-503xx/CVE-2023-50312.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-50312",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2024-03-01T03:15:06.620",
"lastModified": "2025-02-26T16:43:48.660",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:38:50.040",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.6,
"impactScore": 3.6
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-327"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-327"
}
]
}
],
"configurations": [

24
CVE-2023/CVE-2023-503xx/CVE-2023-50324.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-50324",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2024-03-01T02:15:07.823",
"lastModified": "2025-03-04T14:14:12.020",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:39:00.890",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},

56
CVE-2024/CVE-2024-23xx/CVE-2024-2346.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-2346",
"sourceIdentifier": "security@wordfence.com",
"published": "2024-05-02T17:15:16.960",
"lastModified": "2024-11-21T09:09:33.737",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:08:05.553",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -39,22 +39,66 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-639"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ninjateam:filebird:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "5.6.4",
"matchCriteriaId": "FB9EE551-2AD2-44AA-9AC1-969D9C7DB9C0"
}
]
}
]
}
],
"references": [
{
"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3060898%40filebird%2Ftrunk&old=3049188%40filebird%2Ftrunk&sfp_email=&sfph_mail=",
"source": "security@wordfence.com"
"source": "security@wordfence.com",
"tags": [
"Patch"
]
},
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/82cde234-ae87-438f-911e-bdd0e3ac1132?source=cve",
"source": "security@wordfence.com"
"source": "security@wordfence.com",
"tags": [
"Third Party Advisory",
"Patch"
]
},
{
"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3060898%40filebird%2Ftrunk&old=3049188%40filebird%2Ftrunk&sfp_email=&sfph_mail=",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
]
},
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/82cde234-ae87-438f-911e-bdd0e3ac1132?source=cve",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"Patch"
]
}
]
}

4
CVE-2024/CVE-2024-259xx/CVE-2024-25905.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-25905",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-02-21T07:15:57.410",
"lastModified": "2025-04-15T14:58:19.487",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:29:50.823",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{

24
CVE-2024/CVE-2024-336xx/CVE-2024-33606.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-33606",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2024-06-11T21:15:53.050",
"lastModified": "2025-03-01T02:04:54.647",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:43:00.560",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -80,6 +80,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},

84
CVE-2024/CVE-2024-347xx/CVE-2024-34780.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-34780",
"sourceIdentifier": "support@hackerone.com",
"published": "2024-11-13T02:15:17.047",
"lastModified": "2024-11-13T17:01:16.850",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T19:18:18.210",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -16,6 +16,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "support@hackerone.com",
@ -51,10 +73,66 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2022",
"matchCriteriaId": "B1F6549B-CF5D-4607-B67D-5489905A1705"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:-:*:*:*:*:*:*",
"matchCriteriaId": "46580865-5177-4E55-BDAC-73DA4B472B35"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su1:*:*:*:*:*:*",
"matchCriteriaId": "E57E12B5-B789-450C-9476-6C4C151E6993"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su2:*:*:*:*:*:*",
"matchCriteriaId": "E47C65B3-56DD-4D65-8B4B-6AFFE28E94F2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su3:*:*:*:*:*:*",
"matchCriteriaId": "10D6EAB7-B14B-45E9-92B9-4FADFBBB08AF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su4:*:*:*:*:*:*",
"matchCriteriaId": "1877FB55-76BA-4714-ABB8-47258132F537"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2022:su5:*:*:*:*:*:*",
"matchCriteriaId": "4F9E8D45-5F12-4D45-A74E-C314FA3618A3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ivanti:endpoint_manager:2024:-:*:*:*:*:*:*",
"matchCriteriaId": "6C7283FE-C10A-4E37-B004-15FB0CAC49A5"
}
]
}
]
}
],
"references": [
{
"url": "https://forums.ivanti.com/s/article/Security-Advisory-EPM-November-2024-for-EPM-2024-and-EPM-2022",
"source": "support@hackerone.com"
"source": "support@hackerone.com",
"tags": [
"Vendor Advisory"
]
}
]
}

24
CVE-2024/CVE-2024-363xx/CVE-2024-36390.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-36390",
"sourceIdentifier": "cna@cyber.gov.il",
"published": "2024-06-02T14:15:09.163",
"lastModified": "2025-03-04T18:19:32.897",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:47:24.050",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},

24
CVE-2024/CVE-2024-38xx/CVE-2024-3893.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-3893",
"sourceIdentifier": "security@wordfence.com",
"published": "2024-04-25T08:15:07.490",
"lastModified": "2025-04-14T13:50:53.753",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:35:15.900",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},

35
CVE-2024/CVE-2024-413xx/CVE-2024-41353.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41353",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-26T17:15:12.457",
"lastModified": "2024-11-21T09:32:33.853",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:33:56.773",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,41 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "76AB84E7-3B77-4A35-B047-7DE3D2D77950"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/phpipam/phpipam/issues/4147",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4147",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
}
]
}

35
CVE-2024/CVE-2024-413xx/CVE-2024-41354.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41354",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-26T17:15:12.513",
"lastModified": "2024-11-21T09:32:34.070",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:33:52.397",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,41 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "76AB84E7-3B77-4A35-B047-7DE3D2D77950"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/phpipam/phpipam/issues/4150",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4150",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
}
]
}

35
CVE-2024/CVE-2024-413xx/CVE-2024-41355.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41355",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-26T16:15:03.277",
"lastModified": "2024-11-21T09:32:34.290",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:34:08.960",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,41 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "76AB84E7-3B77-4A35-B047-7DE3D2D77950"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/phpipam/phpipam/issues/4151",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4151",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
}
]
}

35
CVE-2024/CVE-2024-413xx/CVE-2024-41356.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41356",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-26T16:15:03.357",
"lastModified": "2024-11-21T09:32:34.500",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:34:06.133",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,14 +51,41 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "76AB84E7-3B77-4A35-B047-7DE3D2D77950"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/phpipam/phpipam/issues/4146",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4146",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
}
]
}

41
CVE-2024/CVE-2024-413xx/CVE-2024-41357.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-41357",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-07-26T16:15:03.427",
"lastModified": "2025-04-16T14:15:22.700",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:34:02.137",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,18 +51,49 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:1.6:*:*:*:*:*:*:*",
"matchCriteriaId": "76AB84E7-3B77-4A35-B047-7DE3D2D77950"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2024-41357.md",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4149",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
},
{
"url": "https://github.com/phpipam/phpipam/issues/4149",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking",
"Vendor Advisory"
]
}
]
}

57
CVE-2024/CVE-2024-550xx/CVE-2024-55093.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-55093",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-03-31T13:15:42.160",
"lastModified": "2025-04-01T20:26:30.593",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:32:54.217",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.2,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 1.6,
"impactScore": 2.7
}
]
},
@ -49,12 +69,43 @@
"value": "CWE-79"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpipam:phpipam:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.7.3",
"matchCriteriaId": "ECCAE1A5-738E-4649-BAF4-ACC14A8562BA"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/phpipam/phpipam/commit/d0caaeba885364fd0521f094511c5d7b11f9da8f",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Patch"
]
}
]
}

34
CVE-2024/CVE-2024-55xx/CVE-2024-5520.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-5520",
"sourceIdentifier": "cve-coordination@incibe.es",
"published": "2024-05-30T12:15:10.807",
"lastModified": "2025-03-04T17:09:25.197",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:47:13.970",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.1,
"impactScore": 2.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-79"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [

44
CVE-2024/CVE-2024-567xx/CVE-2024-56736.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2024-56736",
"sourceIdentifier": "security@apache.org",
"published": "2025-04-16T16:15:28.840",
"lastModified": "2025-04-17T20:22:16.240",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T19:13:22.287",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Server-Side Request Forgery (SSRF) vulnerability in Apache HertzBeat.\n\nThis issue affects Apache HertzBeat (incubating): before 1.7.0.\n\nUsers are recommended to upgrade to version 1.7.0, which fixes the issue."
},
{
"lang": "es",
"value": "Vulnerabilidad de Server-Side Request Forgery (SSRF) en Apache HertzBeat. Este problema afecta a Apache HertzBeat (en desarrollo): versiones anteriores a la 1.7.0. Se recomienda actualizar a la versi\u00f3n 1.7.0, que soluciona el problema."
}
],
"metrics": {
@ -47,18 +51,48 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:apache:hertzbeat:*:*:*:*:*:*:*:*",
"versionEndExcluding": "1.7.0",
"matchCriteriaId": "D321C1AB-3783-4597-84FA-905EA1FFAB75"
}
]
}
]
}
],
"references": [
{
"url": "https://lists.apache.org/thread/kdzg36h9yxp0q0n4lhcfppxntjy8rj1x",
"source": "security@apache.org"
"source": "security@apache.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "https://lists.apache.org/thread/lwfhsllos1rx9v8k0yhl252cbpqpn0sv",
"source": "security@apache.org"
"source": "security@apache.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/04/16/1",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
]
}
]
}

64
CVE-2024/CVE-2024-582xx/CVE-2024-58251.json Normal file
View File

@ -0,0 +1,64 @@
{
"id": "CVE-2024-58251",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-23T18:16:03.057",
"lastModified": "2025-04-23T18:16:03.057",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "cve@mitre.org",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L",
"baseScore": 2.5,
"baseSeverity": "LOW",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 1.0,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "cve@mitre.org",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-150"
}
]
}
],
"references": [
{
"url": "https://bugs.busybox.net/show_bug.cgi?id=15922",
"source": "cve@mitre.org"
},
{
"url": "https://www.busybox.net",
"source": "cve@mitre.org"
},
{
"url": "https://www.busybox.net/downloads/",
"source": "cve@mitre.org"
}
]
}

56
CVE-2025/CVE-2025-216xx/CVE-2025-21607.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-21607",
"sourceIdentifier": "security-advisories@github.com",
"published": "2025-01-14T18:16:05.490",
"lastModified": "2025-01-15T16:15:34.463",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:06:22.303",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -59,6 +59,28 @@
"providerUrgency": "NOT_DEFINED"
}
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
@ -73,14 +95,40 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vyperlang:vyper:*:-:*:*:*:python:*:*",
"versionEndExcluding": "0.4.1",
"matchCriteriaId": "AD322659-77B5-4C4B-8496-C83D3C6A6C02"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/vyperlang/vyper/security/advisories/GHSA-vgf2-gvx8-xwc3",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Exploit",
"Vendor Advisory"
]
},
{
"url": "https://github.com/vyperlang/vyper/security/advisories/GHSA-vgf2-gvx8-xwc3",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Vendor Advisory"
]
}
]
}

38
CVE-2025/CVE-2025-250xx/CVE-2025-25067.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-25067",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2025-02-13T22:15:12.780",
"lastModified": "2025-03-04T21:05:57.430",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:45:35.860",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -80,6 +80,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
@ -93,6 +113,16 @@
"value": "CWE-78"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
],
"configurations": [
@ -118,8 +148,8 @@
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-16",
"source": "ics-cert@hq.dhs.gov",
"tags": [
"US Government Resource",
"Third Party Advisory"
"Third Party Advisory",
"US Government Resource"
]
},
{

34
CVE-2025/CVE-2025-251xx/CVE-2025-25192.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-25192",
"sourceIdentifier": "security-advisories@github.com",
"published": "2025-02-25T18:15:27.583",
"lastModified": "2025-03-18T17:15:45.720",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:46:00.540",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
@ -96,11 +116,17 @@
},
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2025-25192-detection-glpi-vulnerability",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://www.vicarius.io/vsociety/posts/cve-2025-25192-mitigation-glpi-vulnerability",
"source": "af854a3a-2127-422b-91ae-364da2661108"
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
}
]
}

24
CVE-2025/CVE-2025-268xx/CVE-2025-26852.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-26852",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-03-20T20:15:32.497",
"lastModified": "2025-04-03T21:15:39.520",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:59:47.253",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 6.0
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},

24
CVE-2025/CVE-2025-268xx/CVE-2025-26853.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-26853",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-03-20T20:15:32.640",
"lastModified": "2025-04-03T21:15:39.683",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:13:36.757",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 6.0
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},

34
CVE-2025/CVE-2025-275xx/CVE-2025-27501.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-27501",
"sourceIdentifier": "security-advisories@github.com",
"published": "2025-03-03T19:15:36.300",
"lastModified": "2025-03-05T20:24:50.943",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:45:42.070",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 4.0
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 3.9,
"impactScore": 4.0
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-918"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-918"
}
]
}
],
"configurations": [

30
CVE-2025/CVE-2025-280xx/CVE-2025-28009.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-28009",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T18:15:49.307",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:53:10.863",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A SQL Injection vulnerability exists in the `u` parameter of the progress-body-weight.php endpoint of Dietiqa App v1.0.20."
},
{
"lang": "es",
"value": "Existe una vulnerabilidad de inyecci\u00f3n SQL en el par\u00e1metro `u` del endpoint progress-body-weight.php de Dietiqa App v1.0.20."
}
],
"metrics": {
@ -47,10 +51,30 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:appventure:dietiqa:1.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "A6B0A3CF-1106-42C8-A60E-1DDCA59211DF"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/beardenx/CVE-2025-28009",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

36
CVE-2025/CVE-2025-281xx/CVE-2025-28101.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-28101",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T18:15:49.637",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:03:51.237",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An arbitrary file deletion vulnerability in the /post/{postTitle} component of flaskBlog v2.6.1 allows attackers to delete article titles created by other users via supplying a crafted POST request."
},
{
"lang": "es",
"value": "Una vulnerabilidad de eliminaci\u00f3n arbitraria de archivos en el componente /post/{postTitle} de flaskBlog v2.6.1 permite a los atacantes eliminar t\u00edtulos de art\u00edculos creados por otros usuarios mediante el suministro de una solicitud POST manipulada."
}
],
"metrics": {
@ -47,14 +51,38 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dogukanurker:flaskblog:2.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "66F9D959-6499-42E5-8D06-B300D7680375"
}
]
}
]
}
],
"references": [
{
"url": "https://gist.github.com/coleak2021/cecfc757bc77038717c3e7b40e2d66ce",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://github.com/DogukanUrker/flaskBlog/issues/130",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

31
CVE-2025/CVE-2025-291xx/CVE-2025-29180.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-29180",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T17:15:32.953",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:44:06.733",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In FOXCMS <=1.25, the installdb.php file has a time - based blind SQL injection vulnerability. The url_prefix, domain, and my_website POST parameters are directly concatenated into SQL statements without filtering."
},
{
"lang": "es",
"value": "En FOXCMS &lt;=1.25, el archivo installdb.php presenta una vulnerabilidad de inyecci\u00f3n SQL ciega basada en tiempo. Los par\u00e1metros POST url_prefix, domain y my_website se concatenan directamente en sentencias SQL sin filtrado."
}
],
"metrics": {
@ -47,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:foxcms:foxcms:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.25",
"matchCriteriaId": "5ED243A0-ED2A-4327-9BF8-8505E849C5E6"
}
]
}
]
}
],
"references": [
{
"url": "https://gist.github.com/X1lyS/5075ba1e6bebff26fcd58609493fd5f2",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

31
CVE-2025/CVE-2025-291xx/CVE-2025-29181.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-29181",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T17:15:33.090",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:21:15.327",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "FOXCMS <= V1.25 is vulnerable to SQL Injection via $param['title'] in /admin/util/Field.php."
},
{
"lang": "es",
"value": "FOXCMS &lt;= V1.25 es vulnerable a la inyecci\u00f3n SQL a trav\u00e9s de $param['title'] en /admin/util/Field.php."
}
],
"metrics": {
@ -47,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:foxcms:foxcms:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.25",
"matchCriteriaId": "5ED243A0-ED2A-4327-9BF8-8505E849C5E6"
}
]
}
]
}
],
"references": [
{
"url": "https://gist.github.com/X1lyS/2b3f936437fb7c04b4f1e4b07468fd05",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

27
CVE-2025/CVE-2025-294xx/CVE-2025-29450.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-29450",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T21:15:50.483",
"lastModified": "2025-04-21T20:15:19.310",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:09:36.620",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:lm21:twonav:2.0.18-20241105:*:*:*:*:*:*:*",
"matchCriteriaId": "7BB7DD7F-1D95-4062-89B3-DB634C6FFEB2"
}
]
}
]
}
],
"references": [
{
"url": "https://www.yuque.com/morysummer/vx41bz/ftlzvxve3t5713c6",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

27
CVE-2025/CVE-2025-294xx/CVE-2025-29451.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-29451",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T21:15:50.620",
"lastModified": "2025-04-21T14:23:45.950",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:09:14.197",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:seopanel:seo_panel:4.11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "4D827988-53EA-426E-8ADB-E95CBDF7D23C"
}
]
}
]
}
],
"references": [
{
"url": "https://www.yuque.com/morysummer/vx41bz/xd2v1fxmoopgrfm7",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

27
CVE-2025/CVE-2025-294xx/CVE-2025-29452.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-29452",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T21:15:50.727",
"lastModified": "2025-04-21T14:23:45.950",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:08:53.967",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -51,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:seopanel:seo_panel:4.11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "4D827988-53EA-426E-8ADB-E95CBDF7D23C"
}
]
}
]
}
],
"references": [
{
"url": "https://www.yuque.com/morysummer/vx41bz/dsvvsv8get5i2dzg",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

31
CVE-2025/CVE-2025-294xx/CVE-2025-29461.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-29461",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T22:15:15.607",
"lastModified": "2025-04-21T14:23:45.950",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:04:28.763",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An issue in a-blogcms 3.1.15 allows a remote attacker to obtain sensitive information via the /bid/1/admin/entry-edit/ path."
},
{
"lang": "es",
"value": "Un problema en a-blogcms 3.1.15 permite que un atacante remoto obtenga informaci\u00f3n confidencial a trav\u00e9s de la ruta /bid/1/admin/entry-edit/."
}
],
"metrics": {
@ -47,10 +51,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:a-blogcms:a-blogcms:3.1.15:*:*:*:*:*:*:*",
"matchCriteriaId": "241CFD9D-8273-4A45-86B6-876AAADCC5B1"
}
]
}
]
}
],
"references": [
{
"url": "https://www.yuque.com/morysummer/vx41bz/xagedb4qdy5gouep",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

43
CVE-2025/CVE-2025-295xx/CVE-2025-29526.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-29526",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-23T17:16:53.740",
"lastModified": "2025-04-23T17:16:53.740",
"lastModified": "2025-04-23T19:16:24.920",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,42 @@
"value": "A Cross-Site Scripting (XSS) vulnerability in the search function of Q4 Inc Investor Relations Platform v5.147.1.2 allows attackers to execute arbitrary Javascript via injecting a crafted payload into the SearchTerm parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://docs.google.com/document/d/15vZXyzddcOv61sFSb3Lf9Dg1rnZ9n3Q6ANoa82jzcNA/edit?usp=sharing",
@ -20,6 +55,10 @@
{
"url": "https://gist.github.com/k4nt0r/6ee5bfe9215cb10a436a03c67cf908fd",
"source": "cve@mitre.org"
},
{
"url": "https://docs.google.com/document/d/15vZXyzddcOv61sFSb3Lf9Dg1rnZ9n3Q6ANoa82jzcNA/edit?usp=sharing",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}

32
CVE-2025/CVE-2025-296xx/CVE-2025-29661.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-29661",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T17:15:33.220",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:20:46.903",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Litepubl CMS <= 7.0.9 is vulnerable to RCE in admin/service/run."
},
{
"lang": "es",
"value": "Litepubl CMS &lt;= 7.0.9 es vulnerable a RCE en admin/service/run."
}
],
"metrics": {
@ -47,10 +51,32 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:litepublisher:litepubl_cms:*:*:*:*:*:*:*:*",
"versionEndIncluding": "7.09",
"matchCriteriaId": "5A6AC08E-7BEA-4726-9878-3832B7CF34AA"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/litepubl/cms/issues/1",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

36
CVE-2025/CVE-2025-297xx/CVE-2025-29722.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-29722",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T18:15:49.860",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:49:16.977",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A CSRF vulnerability in Commercify v1.0 allows remote attackers to perform unauthorized actions on behalf of authenticated users. The issue exists due to missing CSRF protection on sensitive endpoints."
},
{
"lang": "es",
"value": "Una vulnerabilidad CSRF en Commercify v1.0 permite a atacantes remotos realizar acciones no autorizadas en nombre de usuarios autenticados. El problema se debe a la falta de protecci\u00f3n CSRF en endpoints sensibles."
}
],
"metrics": {
@ -47,14 +51,38 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:yassmittal:commercify:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "CE72D379-0AEB-46AD-AA56-108BC5EBB3BE"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/cypherdavy/CVE-2025-29722",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://github.com/yassmittal/Commercify",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Product"
]
}
]
}

73
CVE-2025/CVE-2025-324xx/CVE-2025-32414.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2025-32414",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-08T03:15:15.940",
"lastModified": "2025-04-09T15:16:03.163",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T19:09:35.517",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 1.4,
"impactScore": 3.7
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -49,16 +69,61 @@
"value": "CWE-393"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-252"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.13.8",
"matchCriteriaId": "DF308A16-618A-44BE-900E-3B65DCC0E428"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*",
"versionStartIncluding": "2.14.0",
"versionEndExcluding": "2.14.2",
"matchCriteriaId": "9878007F-7139-47DE-BD8F-E0DFCAD038B7"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
},
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/889",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
}
]
}

75
CVE-2025/CVE-2025-324xx/CVE-2025-32415.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-32415",
"sourceIdentifier": "cve@mitre.org",
"published": "2025-04-17T17:15:33.733",
"lastModified": "2025-04-17T20:21:05.203",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2025-04-23T18:17:52.053",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be used."
},
{
"lang": "es",
"value": "En libxml2 anterior a la versi\u00f3n 2.13.8 y 2.14.x anterior a la versi\u00f3n 2.14.2, xmlSchemaIDCFillNodeTables en xmlschemas.c presenta una sublectura del b\u00fafer basado en el mont\u00f3n. Para aprovechar esto, un documento XML creado debe validarse con un esquema XML con ciertas restricciones de identidad, o bien, debe utilizarse un esquema XML creado."
}
],
"metrics": {
@ -32,6 +36,26 @@
},
"exploitabilityScore": 1.4,
"impactScore": 1.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
@ -45,16 +69,59 @@
"value": "CWE-1284"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.13.8",
"matchCriteriaId": "DF308A16-618A-44BE-900E-3B65DCC0E428"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xmlsoft:libxml2:*:*:*:*:*:*:*:*",
"versionStartIncluding": "2.14.0",
"versionEndExcluding": "2.14.2",
"matchCriteriaId": "9878007F-7139-47DE-BD8F-E0DFCAD038B7"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
},
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/-/issues/890",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

37
CVE-2025/CVE-2025-36xx/CVE-2025-3619.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-3619",
"sourceIdentifier": "chrome-cve-admin@google.com",
"published": "2025-04-16T21:15:47.920",
"lastModified": "2025-04-17T20:21:48.243",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:12:45.323",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Heap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)"
},
{
"lang": "es",
"value": "Un desbordamiento del b\u00fafer de pila en los c\u00f3decs de Google Chrome en Windows anterior a la versi\u00f3n 135.0.7049.95 permit\u00eda a un atacante remoto explotar la corrupci\u00f3n de pila mediante una p\u00e1gina HTML manipulada. (Gravedad de seguridad de Chromium: Cr\u00edtica)"
}
],
"metrics": {
@ -57,14 +61,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:windows:*:*",
"versionEndExcluding": "135.0.7049.95",
"matchCriteriaId": "617442BA-CC3C-4829-B021-C2D44245F9AC"
}
]
}
]
}
],
"references": [
{
"url": "https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_15.html",
"source": "chrome-cve-admin@google.com"
"source": "chrome-cve-admin@google.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://issues.chromium.org/issues/409619251",
"source": "chrome-cve-admin@google.com"
"source": "chrome-cve-admin@google.com",
"tags": [
"Issue Tracking",
"Permissions Required"
]
}
]
}

37
CVE-2025/CVE-2025-36xx/CVE-2025-3620.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-3620",
"sourceIdentifier": "chrome-cve-admin@google.com",
"published": "2025-04-16T21:15:48.027",
"lastModified": "2025-04-17T20:21:48.243",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:11:43.153",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Use after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)"
},
{
"lang": "es",
"value": "Use after free en USB en Google Chrome anterior a la versi\u00f3n 135.0.7049.95 permit\u00eda a un atacante remoto explotar la corrupci\u00f3n del mont\u00f3n mediante una p\u00e1gina HTML manipulada. (Severidad de seguridad de Chromium: Alta)"
}
],
"metrics": {
@ -57,14 +61,39 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*",
"versionEndExcluding": "135.0.7049.95",
"matchCriteriaId": "E828D137-9F6C-418C-ACC6-9FCC6CC8CBEC"
}
]
}
]
}
],
"references": [
{
"url": "https://chromereleases.googleblog.com/2025/04/stable-channel-update-for-desktop_15.html",
"source": "chrome-cve-admin@google.com"
"source": "chrome-cve-admin@google.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://issues.chromium.org/issues/405292639",
"source": "chrome-cve-admin@google.com"
"source": "chrome-cve-admin@google.com",
"tags": [
"Issue Tracking",
"Permissions Required"
]
}
]
}

16
CVE-2025/CVE-2025-36xx/CVE-2025-3673.json Normal file
View File

@ -0,0 +1,16 @@
{
"id": "CVE-2025-3673",
"sourceIdentifier": "security@wordfence.com",
"published": "2025-04-23T19:16:25.350",
"lastModified": "2025-04-23T19:16:25.350",
"vulnStatus": "Rejected",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-3092.. Reason: This candidate is a reservation duplicate of CVE-2023-3092. Notes: All CVE users should reference CVE-2023-3092. instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage."
}
],
"metrics": {},
"references": []
}

90
CVE-2025/CVE-2025-37xx/CVE-2025-3783.json
View File

@ -2,13 +2,17 @@
"id": "CVE-2025-3783",
"sourceIdentifier": "cna@vuldb.com",
"published": "2025-04-18T06:15:46.470",
"lastModified": "2025-04-21T14:23:45.950",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2025-04-23T18:03:35.193",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical was found in SourceCodester Web-based Pharmacy Product Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add-product.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used."
},
{
"lang": "es",
"value": "Se encontr\u00f3 una vulnerabilidad cr\u00edtica en SourceCodester Web-based Pharmacy Product Management System 1.0. Esta vulnerabilidad afecta a una funcionalidad desconocida del archivo /add-product.php. La manipulaci\u00f3n del argumento Avatar permite la carga sin restricciones. El ataque puede ejecutarse remotamente. Se ha hecho p\u00fablico el exploit y puede que sea utilizado."
}
],
"metrics": {
@ -76,6 +80,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV2": [
@ -118,32 +142,82 @@
"value": "CWE-434"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:seniorwalter:web-based_pharmacy_product_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A84B85DA-94CE-4C13-9BBF-9AD1A618ED78"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/yaklang/IRifyScanResult/blob/main/Web-based%20Pharmacy%20Product%20Management%20System/upload_in_add-product.md",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.305605",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.305605",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.553723",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Product"
]
},
{
"url": "https://github.com/yaklang/IRifyScanResult/blob/main/Web-based%20Pharmacy%20Product%20Management%20System/upload_in_add-product.md",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

27
CVE-2025/CVE-2025-39xx/CVE-2025-3900.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3900",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:55.760",
"lastModified": "2025-04-23T17:16:55.760",
"lastModified": "2025-04-23T19:16:25.423",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Colorbox allows Cross-Site Scripting (XSS).This issue affects Colorbox: from 0.0.0 before 2.1.3."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "mlhess@drupal.org",

27
CVE-2025/CVE-2025-39xx/CVE-2025-3901.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3901",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:55.877",
"lastModified": "2025-04-23T17:16:55.877",
"lastModified": "2025-04-23T19:16:25.567",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Bootstrap Site Alert allows Cross-Site Scripting (XSS).This issue affects Bootstrap Site Alert: from 0.0.0 before 1.13.0, from 3.0.0 before 3.0.4."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "mlhess@drupal.org",

27
CVE-2025/CVE-2025-39xx/CVE-2025-3902.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3902",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:55.983",
"lastModified": "2025-04-23T17:16:55.983",
"lastModified": "2025-04-23T19:16:25.700",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal Block Class allows Cross-Site Scripting (XSS).This issue affects Block Class: from 4.0.0 before 4.0.1."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "mlhess@drupal.org",

27
CVE-2025/CVE-2025-39xx/CVE-2025-3903.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3903",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:56.093",
"lastModified": "2025-04-23T17:16:56.093",
"lastModified": "2025-04-23T19:16:25.843",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Vulnerability in Drupal UEditor - \u767e\u5ea6\u7f16\u8f91\u5668.This issue affects UEditor - \u767e\u5ea6\u7f16\u8f91\u5668: *.*."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
]
},
"references": [
{
"url": "https://www.drupal.org/sa-contrib-2025-044",

27
CVE-2025/CVE-2025-39xx/CVE-2025-3904.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3904",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:56.183",
"lastModified": "2025-04-23T17:16:56.183",
"lastModified": "2025-04-23T19:16:25.977",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Vulnerability in Drupal Sportsleague.This issue affects Sportsleague: *.*."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
]
},
"references": [
{
"url": "https://www.drupal.org/sa-contrib-2025-045",

27
CVE-2025/CVE-2025-39xx/CVE-2025-3907.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2025-3907",
"sourceIdentifier": "mlhess@drupal.org",
"published": "2025-04-23T17:16:56.273",
"lastModified": "2025-04-23T17:16:56.273",
"lastModified": "2025-04-23T18:16:03.620",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
@ -11,7 +11,30 @@
"value": "Cross-Site Request Forgery (CSRF) vulnerability in Drupal Search API Solr allows Cross Site Request Forgery.This issue affects Search API Solr: from 0.0.0 before 4.3.9."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "mlhess@drupal.org",

87
README.md
View File

@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2025-04-23T18:00:20.287224+00:00
2025-04-23T20:00:20.672114+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2025-04-23T17:52:33.120000+00:00
2025-04-23T19:47:24.050000+00:00
```
### Last Data Feed Release
@ -33,69 +33,46 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
291195
291197
```
### CVEs added in the last Commit
Recently added CVEs: `44`
Recently added CVEs: `2`
- [CVE-2025-2769](CVE-2025/CVE-2025-27xx/CVE-2025-2769.json) (`2025-04-23T17:16:54.903`)
- [CVE-2025-2770](CVE-2025/CVE-2025-27xx/CVE-2025-2770.json) (`2025-04-23T17:16:55.027`)
- [CVE-2025-2771](CVE-2025/CVE-2025-27xx/CVE-2025-2771.json) (`2025-04-23T17:16:55.160`)
- [CVE-2025-2772](CVE-2025/CVE-2025-27xx/CVE-2025-2772.json) (`2025-04-23T17:16:55.290`)
- [CVE-2025-2773](CVE-2025/CVE-2025-27xx/CVE-2025-2773.json) (`2025-04-23T17:16:55.420`)
- [CVE-2025-28017](CVE-2025/CVE-2025-280xx/CVE-2025-28017.json) (`2025-04-23T17:16:52.690`)
- [CVE-2025-28018](CVE-2025/CVE-2025-280xx/CVE-2025-28018.json) (`2025-04-23T17:16:52.800`)
- [CVE-2025-28019](CVE-2025/CVE-2025-280xx/CVE-2025-28019.json) (`2025-04-23T17:16:52.920`)
- [CVE-2025-28020](CVE-2025/CVE-2025-280xx/CVE-2025-28020.json) (`2025-04-23T17:16:53.027`)
- [CVE-2025-28021](CVE-2025/CVE-2025-280xx/CVE-2025-28021.json) (`2025-04-23T17:16:53.143`)
- [CVE-2025-28022](CVE-2025/CVE-2025-280xx/CVE-2025-28022.json) (`2025-04-23T17:16:53.253`)
- [CVE-2025-28025](CVE-2025/CVE-2025-280xx/CVE-2025-28025.json) (`2025-04-23T17:16:53.363`)
- [CVE-2025-28028](CVE-2025/CVE-2025-280xx/CVE-2025-28028.json) (`2025-04-23T17:16:53.620`)
- [CVE-2025-29526](CVE-2025/CVE-2025-295xx/CVE-2025-29526.json) (`2025-04-23T17:16:53.740`)
- [CVE-2025-32966](CVE-2025/CVE-2025-329xx/CVE-2025-32966.json) (`2025-04-23T16:15:47.520`)
- [CVE-2025-32968](CVE-2025/CVE-2025-329xx/CVE-2025-32968.json) (`2025-04-23T16:15:47.663`)
- [CVE-2025-32969](CVE-2025/CVE-2025-329xx/CVE-2025-32969.json) (`2025-04-23T16:15:47.797`)
- [CVE-2025-3900](CVE-2025/CVE-2025-39xx/CVE-2025-3900.json) (`2025-04-23T17:16:55.760`)
- [CVE-2025-3901](CVE-2025/CVE-2025-39xx/CVE-2025-3901.json) (`2025-04-23T17:16:55.877`)
- [CVE-2025-3902](CVE-2025/CVE-2025-39xx/CVE-2025-3902.json) (`2025-04-23T17:16:55.983`)
- [CVE-2025-3903](CVE-2025/CVE-2025-39xx/CVE-2025-3903.json) (`2025-04-23T17:16:56.093`)
- [CVE-2025-3904](CVE-2025/CVE-2025-39xx/CVE-2025-3904.json) (`2025-04-23T17:16:56.183`)
- [CVE-2025-3907](CVE-2025/CVE-2025-39xx/CVE-2025-3907.json) (`2025-04-23T17:16:56.273`)
- [CVE-2025-45429](CVE-2025/CVE-2025-454xx/CVE-2025-45429.json) (`2025-04-23T16:15:48.473`)
- [CVE-2025-46394](CVE-2025/CVE-2025-463xx/CVE-2025-46394.json) (`2025-04-23T16:15:48.713`)
- [CVE-2024-58251](CVE-2024/CVE-2024-582xx/CVE-2024-58251.json) (`2025-04-23T18:16:03.057`)
- [CVE-2025-3673](CVE-2025/CVE-2025-36xx/CVE-2025-3673.json) (`2025-04-23T19:16:25.350`)
### CVEs modified in the last Commit
Recently modified CVEs: `224`
Recently modified CVEs: `83`
- [CVE-2025-27654](CVE-2025/CVE-2025-276xx/CVE-2025-27654.json) (`2025-04-23T16:15:42.790`)
- [CVE-2025-27676](CVE-2025/CVE-2025-276xx/CVE-2025-27676.json) (`2025-04-23T16:15:42.983`)
- [CVE-2025-27892](CVE-2025/CVE-2025-278xx/CVE-2025-27892.json) (`2025-04-23T16:30:45.300`)
- [CVE-2025-28027](CVE-2025/CVE-2025-280xx/CVE-2025-28027.json) (`2025-04-23T17:16:53.480`)
- [CVE-2025-28037](CVE-2025/CVE-2025-280xx/CVE-2025-28037.json) (`2025-04-23T16:15:45.220`)
- [CVE-2025-29471](CVE-2025/CVE-2025-294xx/CVE-2025-29471.json) (`2025-04-23T16:30:10.987`)
- [CVE-2025-29512](CVE-2025/CVE-2025-295xx/CVE-2025-29512.json) (`2025-04-23T17:28:01.793`)
- [CVE-2025-29513](CVE-2025/CVE-2025-295xx/CVE-2025-29513.json) (`2025-04-23T17:24:54.790`)
- [CVE-2025-29708](CVE-2025/CVE-2025-297xx/CVE-2025-29708.json) (`2025-04-23T16:33:51.693`)
- [CVE-2025-29709](CVE-2025/CVE-2025-297xx/CVE-2025-29709.json) (`2025-04-23T16:33:59.770`)
- [CVE-2025-29710](CVE-2025/CVE-2025-297xx/CVE-2025-29710.json) (`2025-04-23T16:34:04.967`)
- [CVE-2025-29953](CVE-2025/CVE-2025-299xx/CVE-2025-29953.json) (`2025-04-23T16:15:47.040`)
- [CVE-2025-30282](CVE-2025/CVE-2025-302xx/CVE-2025-30282.json) (`2025-04-23T16:45:08.487`)
- [CVE-2025-30294](CVE-2025/CVE-2025-302xx/CVE-2025-30294.json) (`2025-04-23T16:44:53.987`)
- [CVE-2025-30305](CVE-2025/CVE-2025-303xx/CVE-2025-30305.json) (`2025-04-23T16:15:04.870`)
- [CVE-2025-3421](CVE-2025/CVE-2025-34xx/CVE-2025-3421.json) (`2025-04-23T16:47:22.047`)
- [CVE-2025-3422](CVE-2025/CVE-2025-34xx/CVE-2025-3422.json) (`2025-04-23T16:46:51.793`)
- [CVE-2025-3439](CVE-2025/CVE-2025-34xx/CVE-2025-3439.json) (`2025-04-23T16:47:50.093`)
- [CVE-2025-3676](CVE-2025/CVE-2025-36xx/CVE-2025-3676.json) (`2025-04-23T16:17:29.770`)
- [CVE-2025-3698](CVE-2025/CVE-2025-36xx/CVE-2025-3698.json) (`2025-04-23T16:25:56.830`)
- [CVE-2025-3787](CVE-2025/CVE-2025-37xx/CVE-2025-3787.json) (`2025-04-23T17:52:33.120`)
- [CVE-2025-3788](CVE-2025/CVE-2025-37xx/CVE-2025-3788.json) (`2025-04-23T17:34:33.343`)
- [CVE-2025-43014](CVE-2025/CVE-2025-430xx/CVE-2025-43014.json) (`2025-04-23T16:11:35.837`)
- [CVE-2025-45427](CVE-2025/CVE-2025-454xx/CVE-2025-45427.json) (`2025-04-23T16:15:48.143`)
- [CVE-2025-45428](CVE-2025/CVE-2025-454xx/CVE-2025-45428.json) (`2025-04-23T16:15:48.313`)
- [CVE-2025-26852](CVE-2025/CVE-2025-268xx/CVE-2025-26852.json) (`2025-04-23T18:59:47.253`)
- [CVE-2025-26853](CVE-2025/CVE-2025-268xx/CVE-2025-26853.json) (`2025-04-23T19:13:36.757`)
- [CVE-2025-27501](CVE-2025/CVE-2025-275xx/CVE-2025-27501.json) (`2025-04-23T18:45:42.070`)
- [CVE-2025-28009](CVE-2025/CVE-2025-280xx/CVE-2025-28009.json) (`2025-04-23T18:53:10.863`)
- [CVE-2025-28101](CVE-2025/CVE-2025-281xx/CVE-2025-28101.json) (`2025-04-23T19:03:51.237`)
- [CVE-2025-29180](CVE-2025/CVE-2025-291xx/CVE-2025-29180.json) (`2025-04-23T18:44:06.733`)
- [CVE-2025-29181](CVE-2025/CVE-2025-291xx/CVE-2025-29181.json) (`2025-04-23T18:21:15.327`)
- [CVE-2025-29450](CVE-2025/CVE-2025-294xx/CVE-2025-29450.json) (`2025-04-23T18:09:36.620`)
- [CVE-2025-29451](CVE-2025/CVE-2025-294xx/CVE-2025-29451.json) (`2025-04-23T18:09:14.197`)
- [CVE-2025-29452](CVE-2025/CVE-2025-294xx/CVE-2025-29452.json) (`2025-04-23T18:08:53.967`)
- [CVE-2025-29461](CVE-2025/CVE-2025-294xx/CVE-2025-29461.json) (`2025-04-23T18:04:28.763`)
- [CVE-2025-29526](CVE-2025/CVE-2025-295xx/CVE-2025-29526.json) (`2025-04-23T19:16:24.920`)
- [CVE-2025-29661](CVE-2025/CVE-2025-296xx/CVE-2025-29661.json) (`2025-04-23T18:20:46.903`)
- [CVE-2025-29722](CVE-2025/CVE-2025-297xx/CVE-2025-29722.json) (`2025-04-23T18:49:16.977`)
- [CVE-2025-32414](CVE-2025/CVE-2025-324xx/CVE-2025-32414.json) (`2025-04-23T19:09:35.517`)
- [CVE-2025-32415](CVE-2025/CVE-2025-324xx/CVE-2025-32415.json) (`2025-04-23T18:17:52.053`)
- [CVE-2025-3619](CVE-2025/CVE-2025-36xx/CVE-2025-3619.json) (`2025-04-23T18:12:45.323`)
- [CVE-2025-3620](CVE-2025/CVE-2025-36xx/CVE-2025-3620.json) (`2025-04-23T18:11:43.153`)
- [CVE-2025-3783](CVE-2025/CVE-2025-37xx/CVE-2025-3783.json) (`2025-04-23T18:03:35.193`)
- [CVE-2025-3900](CVE-2025/CVE-2025-39xx/CVE-2025-3900.json) (`2025-04-23T19:16:25.423`)
- [CVE-2025-3901](CVE-2025/CVE-2025-39xx/CVE-2025-3901.json) (`2025-04-23T19:16:25.567`)
- [CVE-2025-3902](CVE-2025/CVE-2025-39xx/CVE-2025-3902.json) (`2025-04-23T19:16:25.700`)
- [CVE-2025-3903](CVE-2025/CVE-2025-39xx/CVE-2025-3903.json) (`2025-04-23T19:16:25.843`)
- [CVE-2025-3904](CVE-2025/CVE-2025-39xx/CVE-2025-3904.json) (`2025-04-23T19:16:25.977`)
- [CVE-2025-3907](CVE-2025/CVE-2025-39xx/CVE-2025-3907.json) (`2025-04-23T18:16:03.620`)
## Download and Usage

688
_state.csv
View File

File diff suppressed because it is too large Load Diff