admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-08 11:37:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-06-02T20:00:27.980097+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-06-02 20:00:31 +00:00
parent 6721f1ce3d
commit 3ed22a117d
125 changed files with 3203 additions and 392 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

71
CVE-2014/CVE-2014-1251xx/CVE-2014-125101.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2014-125101",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-28T13:15:09.347",
"lastModified": "2023-05-28T18:32:54.977",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:23:01.813",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -61,7 +83,7 @@
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
@ -69,20 +91,57 @@
"value": "CWE-89"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:huge-it:portfolio_gallery:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.1.9",
"matchCriteriaId": "A8A84941-46C4-435F-84ED-2669173399CE"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/wp-plugins/portfolio-gallery/commit/58ed88243e17df766036f4857041edaf358076d3",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Patch"
]
},
{
"url": "https://vuldb.com/?ctiid.230085",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
},
{
"url": "https://vuldb.com/?id.230085",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
}
]
}

69
CVE-2015/CVE-2015-101xx/CVE-2015-10106.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2015-10106",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-28T13:15:09.850",
"lastModified": "2023-05-31T17:15:09.360",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:50:13.470",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,26 +93,59 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:mh_httpbl_project:mh_httpbl:*:*:*:*:*:typo3:*:*",
"versionEndExcluding": "1.1.8",
"matchCriteriaId": "496EB296-734C-47B9-8E30-9135EAC83E90"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/mback2k/mh_httpbl/commit/429f50f4e4795b20dae06735b41fb94f010722bf",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Patch"
]
},
{
"url": "https://github.com/mback2k/mh_httpbl/releases/tag/mh_httpbl_1.1.8_security",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://typo3.org/article/typo3-ext-sa-2015-021",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.230086",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
},
{
"url": "https://vuldb.com/?id.230086",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
}
]
}

64
CVE-2021/CVE-2021-43xx/CVE-2021-4336.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2021-4336",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-28T22:15:09.337",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:50:45.197",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,22 +93,52 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:itrsgroup:ninja:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2021.11.30",
"matchCriteriaId": "A38A4AE4-965E-4F09-B03E-7DE67A0AB9A2"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/ITRS-Group/monitor-ninja/commit/6da9080faec9bca1ca5342386c0421dca0a6c0cc",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Patch"
]
},
{
"url": "https://github.com/ITRS-Group/monitor-ninja/releases/tag/v2021.11.30",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://vuldb.com/?ctiid.230084",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required"
]
},
{
"url": "https://vuldb.com/?id.230084",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
}
]
}

63
CVE-2022/CVE-2022-362xx/CVE-2022-36243.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2022-36243",
"sourceIdentifier": "support@shopbeat.co.za",
"published": "2023-05-30T20:15:09.587",
"lastModified": "2023-05-30T21:10:07.833",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:44:29.300",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za. Information Exposure Through Directory Listing vulnerability in \"studio\" software of Shop Beat. This issue affects: Shop Beat studio studio versions prior to 3.2.57 on arm."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
},
{
"source": "support@shopbeat.co.za",
"type": "Secondary",
@ -23,10 +56,32 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:shopbeat:shop_beat_media_player:*:*:*:*:*:*:arm:*",
"versionStartIncluding": "2.5.95",
"versionEndExcluding": "3.2.57",
"matchCriteriaId": "C54277DA-6740-4A03-AA80-3546DDD4D17E"
}
]
}
]
}
],
"references": [
{
"url": "https://www.shopbeat.co.za",
"source": "support@shopbeat.co.za"
"source": "support@shopbeat.co.za",
"tags": [
"Product"
]
}
]
}

63
CVE-2022/CVE-2022-362xx/CVE-2022-36250.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2022-36250",
"sourceIdentifier": "support@shopbeat.co.za",
"published": "2023-05-30T20:15:09.880",
"lastModified": "2023-05-30T21:10:02.053",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:20:59.520",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Cross Site Request Forgery (CSRF)."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
},
{
"source": "support@shopbeat.co.za",
"type": "Secondary",
@ -23,10 +56,32 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:shopbeat:shop_beat_media_player:*:*:*:*:*:*:arm:*",
"versionStartIncluding": "2.5.95",
"versionEndExcluding": "3.2.57",
"matchCriteriaId": "C54277DA-6740-4A03-AA80-3546DDD4D17E"
}
]
}
]
}
],
"references": [
{
"url": "https://www.shopbeat.co.za",
"source": "support@shopbeat.co.za"
"source": "support@shopbeat.co.za",
"tags": [
"Product"
]
}
]
}

4
CVE-2023/CVE-2023-04xx/CVE-2023-0430.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0430",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.280",
"lastModified": "2023-06-02T17:15:10.280",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-05xx/CVE-2023-0547.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0547",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.337",
"lastModified": "2023-06-02T17:15:10.337",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-06xx/CVE-2023-0616.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0616",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.383",
"lastModified": "2023-06-02T17:15:10.383",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-07xx/CVE-2023-0767.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0767",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.440",
"lastModified": "2023-06-02T17:15:10.440",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-19xx/CVE-2023-1945.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-1945",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.493",
"lastModified": "2023-06-02T17:15:10.493",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

119
CVE-2023/CVE-2023-19xx/CVE-2023-1981.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2023-1981",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-05-26T18:15:11.277",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:06:29.867",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemon to crash."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
},
{
"source": "secalert@redhat.com",
"type": "Secondary",
@ -23,18 +56,92 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:avahi:avahi:0.7-20:*:*:*:*:*:*:*",
"matchCriteriaId": "957FE29F-E745-4BEB-B107-17C4AF0B5AE7"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
"matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "142AD0DD-4CF3-4D74-9442-459CE3347E3A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D"
}
]
}
]
}
],
"references": [
{
"url": "https://access.redhat.com/security/cve/CVE-2023-1981",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2185911",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
]
},
{
"url": "https://github.com/lathiat/avahi/issues/375",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Issue Tracking",
"Third Party Advisory"
]
}
]
}

65
CVE-2023/CVE-2023-208xx/CVE-2023-20868.json
View File

@ -2,19 +2,76 @@
"id": "CVE-2023-20868",
"sourceIdentifier": "security@vmware.com",
"published": "2023-05-26T18:15:12.723",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:18:23.130",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "NSX-T contains a reflected cross-site scripting vulnerability due to a lack of input validation. A remote attacker can inject HTML or JavaScript to redirect to malicious pages."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:vmware:nsx-t_data_center:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.2.0",
"versionEndExcluding": "3.2.3",
"matchCriteriaId": "9707D0F8-5EF2-4D5D-91FF-1F246718169C"
}
]
}
]
}
],
"references": [
{
"url": "https://www.vmware.com/security/advisories/VMSA-2023-0010.html",
"source": "security@vmware.com"
"source": "security@vmware.com",
"tags": [
"Vendor Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-235xx/CVE-2023-23597.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23597",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.537",
"lastModified": "2023-06-02T17:15:10.537",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-235xx/CVE-2023-23598.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23598",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.580",
"lastModified": "2023-06-02T17:15:10.580",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-235xx/CVE-2023-23599.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23599",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.627",
"lastModified": "2023-06-02T17:15:10.627",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23600.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23600",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.673",
"lastModified": "2023-06-02T17:15:10.673",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23601.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23601",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.727",
"lastModified": "2023-06-02T17:15:10.727",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23602.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23602",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.777",
"lastModified": "2023-06-02T17:15:10.777",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23603.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23603",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.823",
"lastModified": "2023-06-02T17:15:10.823",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23604.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23604",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.867",
"lastModified": "2023-06-02T17:15:10.867",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23605.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23605",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.907",
"lastModified": "2023-06-02T17:15:10.907",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-236xx/CVE-2023-23606.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-23606",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:10.957",
"lastModified": "2023-06-02T17:15:10.957",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

59
CVE-2023/CVE-2023-24xx/CVE-2023-2480.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2480",
"sourceIdentifier": "security@m-files.com",
"published": "2023-05-25T14:15:10.120",
"lastModified": "2023-05-25T15:58:29.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:34:51.747",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "security@m-files.com",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-862"
}
]
},
{
"source": "security@m-files.com",
"type": "Secondary",
@ -46,10 +76,31 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:m-files:m-files:*:*:*:*:*:*:*:*",
"versionEndExcluding": "23.5.12598.0",
"matchCriteriaId": "CE9C129E-A2FB-4958-B8C5-E8E6F0EBF1F9"
}
]
}
]
}
],
"references": [
{
"url": "https://https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/",
"source": "security@m-files.com"
"url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/",
"source": "nvd@nist.gov",
"tags": [
"Vendor Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-257xx/CVE-2023-25728.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25728",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.003",
"lastModified": "2023-06-02T17:15:11.003",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25729.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25729",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.050",
"lastModified": "2023-06-02T17:15:11.050",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25730.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25730",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.097",
"lastModified": "2023-06-02T17:15:11.097",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25731.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25731",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.147",
"lastModified": "2023-06-02T17:15:11.147",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25732.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25732",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.193",
"lastModified": "2023-06-02T17:15:11.193",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25734.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25734",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.237",
"lastModified": "2023-06-02T17:15:11.237",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25735.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25735",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.280",
"lastModified": "2023-06-02T17:15:11.280",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25737.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25737",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.323",
"lastModified": "2023-06-02T17:15:11.323",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25738.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25738",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.367",
"lastModified": "2023-06-02T17:15:11.367",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25739.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25739",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.417",
"lastModified": "2023-06-02T17:15:11.417",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25740.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25740",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.480",
"lastModified": "2023-06-02T17:15:11.480",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25741.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25741",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.537",
"lastModified": "2023-06-02T17:15:11.537",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25742.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25742",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.583",
"lastModified": "2023-06-02T17:15:11.583",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25743.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25743",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.633",
"lastModified": "2023-06-02T17:15:11.633",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25744.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25744",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.677",
"lastModified": "2023-06-02T17:15:11.677",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:16.907",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25745.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25745",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.723",
"lastModified": "2023-06-02T17:15:11.723",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25746.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25746",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.767",
"lastModified": "2023-06-02T17:15:11.767",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25748.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25748",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.817",
"lastModified": "2023-06-02T17:15:11.817",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25749.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25749",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.860",
"lastModified": "2023-06-02T17:15:11.860",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25750.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25750",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.903",
"lastModified": "2023-06-02T17:15:11.903",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25751.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25751",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.947",
"lastModified": "2023-06-02T17:15:11.947",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-257xx/CVE-2023-25752.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25752",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:11.990",
"lastModified": "2023-06-02T17:15:11.990",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

62
CVE-2023/CVE-2023-261xx/CVE-2023-26127.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-26127",
"sourceIdentifier": "report@snyk.io",
"published": "2023-05-27T05:15:09.300",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:15:59.693",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "report@snyk.io",
"type": "Secondary",
@ -34,14 +54,42 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:n158_project:n158:*:*:*:*:*:node.js:*:*",
"matchCriteriaId": "BECA3C90-C249-4A76-A6E6-0ECD53D1DEE8"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/dsilva2401/n158/blob/master/src/cli/initProject.js%23L8",
"source": "report@snyk.io"
},
{
"url": "https://security.snyk.io/vuln/SNYK-JS-N158-3183746",
"source": "report@snyk.io"
"source": "report@snyk.io",
"tags": [
"Third Party Advisory"
]
}
]
}

63
CVE-2023/CVE-2023-261xx/CVE-2023-26128.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-26128",
"sourceIdentifier": "report@snyk.io",
"published": "2023-05-27T05:15:09.860",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:22:59.677",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "report@snyk.io",
"type": "Secondary",
@ -34,14 +54,43 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:keep-module-latest_project:keep-module-latest:*:*:*:*:*:node.js:*:*",
"matchCriteriaId": "3C88C3AE-1C60-4D8C-81A6-05A00191F199"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/liujunyang/keep-module-latest/blob/master/index.js%23L50",
"source": "report@snyk.io"
},
{
"url": "https://security.snyk.io/vuln/SNYK-JS-KEEPMODULELATEST-3157165",
"source": "report@snyk.io"
"source": "report@snyk.io",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

59
CVE-2023/CVE-2023-261xx/CVE-2023-26129.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-26129",
"sourceIdentifier": "report@snyk.io",
"published": "2023-05-27T05:15:09.917",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:45:29.203",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "report@snyk.io",
"type": "Secondary",
@ -34,10 +54,43 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:bwm-ng_project:bwm-ng:*:*:*:*:*:node.js:*:*",
"matchCriteriaId": "22BCC6F0-5568-49B7-863E-D9400E116CE4"
}
]
}
]
}
],
"references": [
{
"url": "https://security.snyk.io/vuln/SNYK-JS-BWMNG-3175876",
"source": "report@snyk.io"
"source": "report@snyk.io",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-26xx/CVE-2023-2687.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2687",
"sourceIdentifier": "product-security@silabs.com",
"published": "2023-06-02T16:15:09.703",
"lastModified": "2023-06-02T16:15:09.703",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

126
CVE-2023/CVE-2023-279xx/CVE-2023-27988.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-27988",
"sourceIdentifier": "security@zyxel.com.tw",
"published": "2023-05-30T02:15:33.533",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:49:17.550",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
},
{
"source": "security@zyxel.com.tw",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
},
{
"source": "security@zyxel.com.tw",
"type": "Secondary",
@ -46,10 +76,100 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:zyxel:nas326_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.21\\(aazf.13\\)c0",
"matchCriteriaId": "ABB5E01D-5683-4F16-9391-D4BE1631C144"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:zyxel:nas326:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E0A01B19-4A91-4FBC-8447-2E854346DAC5"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:zyxel:nas540_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.21\\(aatb.10\\)c0",
"matchCriteriaId": "204166D8-2841-4D98-BF81-BB690175255C"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:zyxel:nas540:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B2F7264C-D32A-4EE9-BADC-78518D762BCA"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:zyxel:nas542_firmware:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.21\\(abag.10\\)c0",
"matchCriteriaId": "18D68590-E75B-4D17-BCE3-CB427190F278"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:zyxel:nas542:-:*:*:*:*:*:*:*",
"matchCriteriaId": "31C4DD0F-28D0-4BF7-897B-5EEC32AA7277"
}
]
}
]
}
],
"references": [
{
"url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-post-authentication-command-injection-vulnerability-in-nas-products",
"source": "security@zyxel.com.tw"
"source": "security@zyxel.com.tw",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-281xx/CVE-2023-28159.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28159",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.033",
"lastModified": "2023-06-02T17:15:12.033",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28160.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28160",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.077",
"lastModified": "2023-06-02T17:15:12.077",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28161.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28161",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.120",
"lastModified": "2023-06-02T17:15:12.120",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28162.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28162",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.160",
"lastModified": "2023-06-02T17:15:12.160",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28163.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28163",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.207",
"lastModified": "2023-06-02T17:15:12.207",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28164.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28164",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.253",
"lastModified": "2023-06-02T17:15:12.253",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28176.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28176",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.297",
"lastModified": "2023-06-02T17:15:12.297",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-281xx/CVE-2023-28177.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28177",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.347",
"lastModified": "2023-06-02T17:15:12.347",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

64
CVE-2023/CVE-2023-283xx/CVE-2023-28319.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2023-28319",
"sourceIdentifier": "support@hackerone.com",
"published": "2023-05-26T21:15:10.020",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:19:19.607",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the (now freed) hash. This flaw risks inserting sensitive heap-based data into the error message that might be shown to users or otherwise get leaked and revealed."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-416"
}
]
},
{
"source": "support@hackerone.com",
"type": "Secondary",
@ -23,10 +56,33 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*",
"versionEndExcluding": "8.1.0",
"matchCriteriaId": "376FCCEF-74BD-4A99-8A1E-B70A83D89E71"
}
]
}
]
}
],
"references": [
{
"url": "https://hackerone.com/reports/1913733",
"source": "support@hackerone.com"
"source": "support@hackerone.com",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
}
]
}

68
CVE-2023/CVE-2023-283xx/CVE-2023-28320.json
View File

@ -2,16 +2,53 @@
"id": "CVE-2023-28320",
"sourceIdentifier": "support@hackerone.com",
"published": "2023-05-26T21:15:15.937",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:21:09.173",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using `alarm()` and `siglongjmp()`. When doing this, libcurl used a global buffer that was not mutex protected and a multi-threaded application might therefore crash or otherwise misbehave."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.2,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-362"
},
{
"lang": "en",
"value": "CWE-400"
}
]
},
{
"source": "support@hackerone.com",
"type": "Secondary",
@ -23,10 +60,33 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*",
"versionEndExcluding": "8.1.0",
"matchCriteriaId": "376FCCEF-74BD-4A99-8A1E-B70A83D89E71"
}
]
}
]
}
],
"references": [
{
"url": "https://hackerone.com/reports/1929597",
"source": "support@hackerone.com"
"source": "support@hackerone.com",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
}
]
}

64
CVE-2023/CVE-2023-283xx/CVE-2023-28321.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2023-28321",
"sourceIdentifier": "support@hackerone.com",
"published": "2023-05-26T21:15:16.020",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:23:04.057",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as \"Subject Alternative Name\" in TLS server certificates. curl can be built to use its own name matching function for TLS rather than one provided by a TLS library. This private wildcard matching function would match IDN (International Domain Name) hosts incorrectly and could as a result accept patterns that otherwise should mismatch. IDN hostnames are converted to puny code before used for certificate checks. Puny coded names always start with `xn--` and should not be allowed to pattern match, but the wildcard check in curl could still check for `x*`, which would match even though the IDN name most likely contained nothing even resembling an `x`."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-295"
}
]
},
{
"source": "support@hackerone.com",
"type": "Secondary",
@ -23,10 +56,33 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*",
"versionEndExcluding": "8.1.0",
"matchCriteriaId": "376FCCEF-74BD-4A99-8A1E-B70A83D89E71"
}
]
}
]
}
],
"references": [
{
"url": "https://hackerone.com/reports/1950627",
"source": "support@hackerone.com"
"source": "support@hackerone.com",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
}
]
}

64
CVE-2023/CVE-2023-283xx/CVE-2023-28322.json
View File

@ -2,16 +2,49 @@
"id": "CVE-2023-28322",
"sourceIdentifier": "support@hackerone.com",
"published": "2023-05-26T21:15:16.153",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:25:22.687",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously wasused to issue a `PUT` request which used that callback. This flaw may surprise the application and cause it to misbehave and either send off the wrong data or use memory after free or similar in the second transfer. The problem exists in the logic for a reused handle when it is (expected to be) changed from a PUT to a POST."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.2
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "support@hackerone.com",
"type": "Secondary",
@ -23,10 +56,33 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:haxx:curl:*:*:*:*:*:*:*:*",
"versionEndExcluding": "8.1.0",
"matchCriteriaId": "376FCCEF-74BD-4A99-8A1E-B70A83D89E71"
}
]
}
]
}
],
"references": [
{
"url": "https://hackerone.com/reports/1954658",
"source": "support@hackerone.com"
"source": "support@hackerone.com",
"tags": [
"Exploit",
"Patch",
"Third Party Advisory"
]
}
]
}

72
CVE-2023/CVE-2023-293xx/CVE-2023-29380.json
View File

@ -2,23 +2,85 @@
"id": "CVE-2023-29380",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-29T00:15:09.520",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:23:03.893",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:linuxmint:warpinator:*:*:*:*:*:*:*:*",
"versionStartIncluding": "1.0.7",
"versionEndExcluding": "1.6.0",
"matchCriteriaId": "C20920C1-ADD2-4E58-B9A0-C99BB2AE497F"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/linuxmint/warpinator/compare/1.4.5...1.6.0",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Patch"
]
},
{
"url": "https://www.openwall.com/lists/oss-security/2023/04/26/1",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Mailing List",
"Third Party Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-295xx/CVE-2023-29533.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29533",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.387",
"lastModified": "2023-06-02T17:15:12.387",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29535.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29535",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.433",
"lastModified": "2023-06-02T17:15:12.433",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29536.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29536",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.477",
"lastModified": "2023-06-02T17:15:12.477",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29537.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29537",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.520",
"lastModified": "2023-06-02T17:15:12.520",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29538.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29538",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.567",
"lastModified": "2023-06-02T17:15:12.567",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:11.837",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29539.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29539",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.607",
"lastModified": "2023-06-02T17:15:12.607",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29540.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29540",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.653",
"lastModified": "2023-06-02T17:15:12.653",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29541.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29541",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.697",
"lastModified": "2023-06-02T17:15:12.697",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29543.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29543",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.743",
"lastModified": "2023-06-02T17:15:12.743",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29544.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29544",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.790",
"lastModified": "2023-06-02T17:15:12.790",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29547.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29547",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.837",
"lastModified": "2023-06-02T17:15:12.837",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29548.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29548",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.880",
"lastModified": "2023-06-02T17:15:12.880",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-295xx/CVE-2023-29549.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29549",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.927",
"lastModified": "2023-06-02T17:15:12.927",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

6
CVE-2023/CVE-2023-295xx/CVE-2023-29550.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2023-29550",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.967",
"lastModified": "2023-06-02T17:15:12.967",
"vulnStatus": "Received",
"lastModified": "2023-06-02T19:15:09.277",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Mozilla developers Randell Jesup, Andrew Osmond, Sebastian Hengst, Andrew McCreight, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10."
"value": "Memory safety bugs present in Firefox 111 and Firefox ESR 102.9. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 112, Focus for Android < 112, Firefox ESR < 102.10, Firefox for Android < 112, and Thunderbird < 102.10."
}
],
"metrics": {},

6
CVE-2023/CVE-2023-295xx/CVE-2023-29551.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2023-29551",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.010",
"lastModified": "2023-06-02T17:15:13.010",
"vulnStatus": "Received",
"lastModified": "2023-06-02T19:15:09.333",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Mozilla developers Randell Jesup, Andrew McCreight, Gabriele Svelto, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112."
"value": "Memory safety bugs present in Firefox 111. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112."
}
],
"metrics": {},

74
CVE-2023/CVE-2023-29xx/CVE-2023-2924.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2924",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-27T08:15:10.377",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:30:11.017",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,60 @@
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:supcontech:simfield_firmware:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.80.00.00",
"matchCriteriaId": "3E243FB1-C22A-41C9-A618-0A6ADB84E827"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:supcontech:simfield:-:*:*:*:*:*:*:*",
"matchCriteriaId": "186AA457-D728-4F3D-828E-EB706241BA6A"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/RCEraser/cve/blob/main/SimField.md",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.230078",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?id.230078",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

71
CVE-2023/CVE-2023-29xx/CVE-2023-2926.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2926",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-27T09:15:10.157",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:26:50.577",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -61,8 +83,18 @@
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -71,18 +103,45 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:seacms:seacms:11.6:*:*:*:*:*:*:*",
"matchCriteriaId": "334495D7-55B1-435F-AA3C-85337555F52C"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/xryj920/CVE/blob/main/DEL.md",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.230081",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?id.230081",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
}
]
}

59
CVE-2023/CVE-2023-29xx/CVE-2023-2928.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2928",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-05-27T10:15:09.840",
"lastModified": "2023-05-28T02:28:04.970",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:27:51.290",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
],
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
@ -71,18 +93,45 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:dedecms:dedecms:*:*:*:*:*:*:*:*",
"versionEndIncluding": "5.7.106",
"matchCriteriaId": "32FBA984-F927-4417-842F-4BEB8D0A4353"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/testwordpress123/cve/blob/main/dedecms.md",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://vuldb.com/?ctiid.230083",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?id.230083",
"source": "cna@vuldb.com"
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
]
}
]
}

57
CVE-2023/CVE-2023-29xx/CVE-2023-2954.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2954",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-05-29T07:15:08.710",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:21:18.230",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -11,6 +11,28 @@
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
],
"cvssMetricV30": [
{
"source": "security@huntr.dev",
@ -46,14 +68,41 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:djangoblog_project:djangoblog:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2023-05-29",
"matchCriteriaId": "F2E90893-4D34-4E95-9709-654AB08B3659"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/liangliangyy/djangoblog/commit/c2bfdb18c5f32b13ea4b50aa689b8ea4beb38719",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Patch"
]
},
{
"url": "https://huntr.dev/bounties/47f08086-aaae-4ca7-b0ca-24c616d3ad7d",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Exploit",
"Issue Tracking",
"Patch",
"Third Party Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-301xx/CVE-2023-30149.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-30149",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-02T15:15:09.197",
"lastModified": "2023-06-02T15:15:09.197",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

77
CVE-2023/CVE-2023-303xx/CVE-2023-30350.json
View File

@ -2,19 +2,88 @@
"id": "CVE-2023-30350",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-29T00:15:09.773",
"lastModified": "2023-05-30T12:52:56.613",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T19:50:57.253",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "FS S3900-24T4S devices allow authenticated attackers with guest access to escalate their privileges and reset the admin password."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fs:s3900_24t4s_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F89E1BF8-587E-4FED-9A28-0B36AA17E363"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:fs:s3900_24t4s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "829102FC-5B27-45E3-BF36-CCE15742F153"
}
]
}
]
}
],
"references": [
{
"url": "http://packetstormsecurity.com/files/172124/FS-S3900-24T4S-Privilege-Escalation.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

4
CVE-2023/CVE-2023-30xx/CVE-2023-3067.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-3067",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T16:15:09.977",
"lastModified": "2023-06-02T16:15:09.977",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-30xx/CVE-2023-3068.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-3068",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-06-02T16:15:10.040",
"lastModified": "2023-06-02T16:15:10.040",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:24.877",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-30xx/CVE-2023-3069.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-3069",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T17:15:13.380",
"lastModified": "2023-06-02T17:15:13.380",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-30xx/CVE-2023-3070.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-3070",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T17:15:13.450",
"lastModified": "2023-06-02T17:15:13.450",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-30xx/CVE-2023-3071.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-3071",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T17:15:13.513",
"lastModified": "2023-06-02T17:15:13.513",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

59
CVE-2023/CVE-2023-30xx/CVE-2023-3073.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2023-3073",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T19:15:09.433",
"lastModified": "2023-06-02T19:15:09.433",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "security@huntr.dev",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 3.7
}
]
},
"weaknesses": [
{
"source": "security@huntr.dev",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/tsolucio/corebos/commit/e87f77c64061b43186c80ad1b50d313c67d7f6cf",
"source": "security@huntr.dev"
},
{
"url": "https://huntr.dev/bounties/a4d6a082-2ea8-49a5-8e48-6d39b5cc62e1",
"source": "security@huntr.dev"
}
]
}

59
CVE-2023/CVE-2023-30xx/CVE-2023-3074.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2023-3074",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T18:15:09.650",
"lastModified": "2023-06-02T18:15:09.650",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Cross-site Scripting (XSS) - Stored in GitHub repository tsolucio/corebos prior to 8."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "security@huntr.dev",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 8.6,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 4.7
}
]
},
"weaknesses": [
{
"source": "security@huntr.dev",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/tsolucio/corebos/commit/659e328c06a127249e651100d2bc7ec1d2dd8533",
"source": "security@huntr.dev"
},
{
"url": "https://huntr.dev/bounties/6132f557-3f0f-465d-990f-4329313349a4",
"source": "security@huntr.dev"
}
]
}

59
CVE-2023/CVE-2023-30xx/CVE-2023-3075.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2023-3075",
"sourceIdentifier": "security@huntr.dev",
"published": "2023-06-02T18:15:09.717",
"lastModified": "2023-06-02T18:15:09.717",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Cross-Site Request Forgery (CSRF) in GitHub repository tsolucio/corebos prior to 8."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "security@huntr.dev",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "security@huntr.dev",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
}
],
"references": [
{
"url": "https://github.com/tsolucio/corebos/commit/2e415fb4613bc4122578dad5f40c6f819c228a48",
"source": "security@huntr.dev"
},
{
"url": "https://huntr.dev/bounties/0f5448a6-d551-424f-887d-80f9bcfaa6e4",
"source": "security@huntr.dev"
}
]
}

94
CVE-2023/CVE-2023-311xx/CVE-2023-31130.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-31130",
"sourceIdentifier": "security-advisories@github.com",
"published": "2023-05-25T22:15:09.760",
"lastModified": "2023-05-28T06:15:14.320",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:14:54.597",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 6.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.5,
"impactScore": 5.9
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
@ -46,22 +76,74 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:c-ares_project:c-ares:*:*:*:*:*:*:*:*",
"versionEndExcluding": "1.19.1",
"matchCriteriaId": "48937B75-3746-49D9-B738-B19EF0EF8D9F"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
"matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
"matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/c-ares/c-ares/releases/tag/cares-1_19_1",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Release Notes"
]
},
{
"url": "https://github.com/c-ares/c-ares/security/advisories/GHSA-x6mf-cxr9-8q6v",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B5Z5XFNXTNPTCBBVXFDNZQVLLIE6VRBY/",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UBFWILTA33LOSV23P44FGTQQIDRJHIY7/",
"source": "security-advisories@github.com"
"source": "security-advisories@github.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
}
]
}

56
CVE-2023/CVE-2023-311xx/CVE-2023-31186.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-31186",
"sourceIdentifier": "cna@cyber.gov.il",
"published": "2023-05-30T20:15:10.610",
"lastModified": "2023-05-30T21:10:02.053",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:46:36.920",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "cna@cyber.gov.il",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-203"
}
]
},
{
"source": "cna@cyber.gov.il",
"type": "Secondary",
@ -46,10 +76,30 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:avaya:ix_workforce_engagement:15.2.7.1195:*:*:*:*:*:*:*",
"matchCriteriaId": "24892D26-8FBD-4345-95DF-A0D384BB6901"
}
]
}
]
}
],
"references": [
{
"url": "https://www.gov.il/en/Departments/faq/cve_advisories",
"source": "cna@cyber.gov.il"
"source": "cna@cyber.gov.il",
"tags": [
"Third Party Advisory"
]
}
]
}

56
CVE-2023/CVE-2023-311xx/CVE-2023-31187.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-31187",
"sourceIdentifier": "cna@cyber.gov.il",
"published": "2023-05-30T20:15:10.687",
"lastModified": "2023-05-30T21:10:02.053",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:46:06.023",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "cna@cyber.gov.il",
"type": "Secondary",
@ -35,6 +55,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-522"
}
]
},
{
"source": "cna@cyber.gov.il",
"type": "Secondary",
@ -46,10 +76,30 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:avaya:ix_workforce_engagement:15.2.7.1195:*:*:*:*:*:*:*",
"matchCriteriaId": "24892D26-8FBD-4345-95DF-A0D384BB6901"
}
]
}
]
}
],
"references": [
{
"url": "https://www.gov.il/en/Departments/faq/cve_advisories",
"source": "cna@cyber.gov.il"
"source": "cna@cyber.gov.il",
"tags": [
"Third Party Advisory"
]
}
]
}

81
CVE-2023/CVE-2023-315xx/CVE-2023-31595.json
View File

@ -2,23 +2,94 @@
"id": "CVE-2023-31595",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-24T20:15:10.150",
"lastModified": "2023-05-25T12:40:12.980",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-02T18:38:07.753",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "IC Realtime ICIP-P2012T 2.420 is vulnerable to Incorrect Access Control via unauthenticated port access."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:ic:realtime_icip-p2012t_firmware:2.420:*:*:*:*:*:*:*",
"matchCriteriaId": "AB3940BF-0D6E-4158-90D7-7B82E41AAD71"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:ic:realtime_icip-p2012t:-:*:*:*:*:*:*:*",
"matchCriteriaId": "69096040-1A39-4E99-8284-667BC4B76066"
}
]
}
]
}
],
"references": [
{
"url": "http://ic.com",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Product"
]
},
{
"url": "https://github.com/Yozarseef95/CVE-2023-31595",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

4
CVE-2023/CVE-2023-322xx/CVE-2023-32205.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32205",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.057",
"lastModified": "2023-06-02T17:15:13.057",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-322xx/CVE-2023-32206.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32206",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.100",
"lastModified": "2023-06-02T17:15:13.100",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-322xx/CVE-2023-32207.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32207",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.147",
"lastModified": "2023-06-02T17:15:13.147",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-322xx/CVE-2023-32211.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32211",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.197",
"lastModified": "2023-06-02T17:15:13.197",
"vulnStatus": "Received",
"lastModified": "2023-06-02T18:10:03.083",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

Some files were not shown because too many files have changed in this diff Show More