admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-19 17:31:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-06-21T16:00:42.433613+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-06-21 16:00:45 +00:00
parent 498f0b8a4d
commit 4afd36a765
53 changed files with 1814 additions and 406 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

150
CVE-2016/CVE-2016-23xx/CVE-2016-2315.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2016-2315",
"sourceIdentifier": "cve@mitre.org",
"published": "2016-04-08T14:59:01.187",
"lastModified": "2018-10-30T16:27:37.717",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:18:56.197",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
@ -87,11 +87,6 @@
"criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "F892F1B0-514C-42F7-90AE-12ACDFDC1033"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:suse:linux_enterprise_software_development_kit:11.0:sp4:*:*:*:*:*:*",
"matchCriteriaId": "5A378747-F8EC-4795-8BC3-0197103AA004"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:suse:openstack_cloud:5:*:*:*:*:*:*:*",
@ -112,6 +107,11 @@
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:sp1:*:*:*:*:*:*",
"matchCriteriaId": "2076747F-A98E-4DD9-9B52-BF1732BCAD3D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "D41A798E-0D69-43C7-9A63-1E5921138EAC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*",
@ -150,91 +150,172 @@
"references": [
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://rhn.redhat.com/errata/RHSA-2016-0496.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.debian.org/security/2016/dsa-3521",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2016/03/15/5",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/84355",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.securitytracker.com/id/1035290",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.ubuntu.com/usn/USN-2938-1",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://github.com/git/git/commit/34fa79a6cde56d6d428ab0d3160cb094ebad3305",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
]
},
{
"url": "https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
]
},
{
"url": "https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt",
@ -245,7 +326,10 @@
},
{
"url": "https://security.gentoo.org/glsa/201605-01",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

146
CVE-2016/CVE-2016-23xx/CVE-2016-2324.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2016-2324",
"sourceIdentifier": "cve@mitre.org",
"published": "2016-04-08T14:59:02.313",
"lastModified": "2021-08-04T16:32:17.943",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:18:50.530",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
@ -87,11 +87,6 @@
"criteria": "cpe:2.3:a:suse:linux_enterprise_debuginfo:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "F892F1B0-514C-42F7-90AE-12ACDFDC1033"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:suse:linux_enterprise_software_development_kit:11.0:sp4:*:*:*:*:*:*",
"matchCriteriaId": "5A378747-F8EC-4795-8BC3-0197103AA004"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:suse:openstack_cloud:5:*:*:*:*:*:*:*",
@ -112,6 +107,11 @@
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:12.0:sp1:*:*:*:*:*:*",
"matchCriteriaId": "0D26C097-6610-4188-8743-AF073A850915"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "D41A798E-0D69-43C7-9A63-1E5921138EAC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:*:*:*:*:*:*:*",
@ -151,87 +151,166 @@
"references": [
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-April/183147.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179121.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-March/180763.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00059.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00060.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00061.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00062.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00071.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00074.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00076.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00077.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-updates/2016-04/msg00011.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://rhn.redhat.com/errata/RHSA-2016-0496.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.debian.org/security/2016/dsa-3521",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2016/03/15/5",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/84355",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.securitytracker.com/id/1035290",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.ubuntu.com/usn/USN-2938-1",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://github.com/git/git/commit/de1e67d0703894cb6ea782e36abb63976ab07e60",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
]
},
{
"url": "https://raw.githubusercontent.com/git/git/master/Documentation/RelNotes/2.7.4.txt",
@ -242,7 +321,10 @@
},
{
"url": "https://security.gentoo.org/glsa/201605-01",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

79
CVE-2016/CVE-2016-36xx/CVE-2016-3630.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2016-3630",
"sourceIdentifier": "cve@mitre.org",
"published": "2016-04-13T16:59:20.850",
"lastModified": "2018-10-30T16:27:35.843",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:19:03.203",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
@ -160,13 +160,13 @@
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:suse:linux_enterprise_software_development_kit:11.0:sp4:*:*:*:*:*:*",
"matchCriteriaId": "5A378747-F8EC-4795-8BC3-0197103AA004"
"criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*",
"matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*",
"matchCriteriaId": "03117DF1-3BEC-4B8D-AD63-DBBDB2126081"
"criteria": "cpe:2.3:o:suse:linux_enterprise_software_development_kit:11:sp4:*:*:*:*:*:*",
"matchCriteriaId": "D41A798E-0D69-43C7-9A63-1E5921138EAC"
},
{
"vulnerable": true,
@ -186,47 +186,86 @@
"references": [
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181505.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-April/181542.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00016.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00017.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00018.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00043.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Vendor Advisory"
]
},
{
"url": "http://www.debian.org/security/2016/dsa-3542",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://security.gentoo.org/glsa/201612-19",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://selenic.com/repo/hg-stable/rev/b6ed2505d6cf",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://selenic.com/repo/hg-stable/rev/b9714d958e89",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_3.7.3_.282016-3-29.29",

82
CVE-2017/CVE-2017-63xx/CVE-2017-6346.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2017-6346",
"sourceIdentifier": "cve@mitre.org",
"published": "2017-03-01T20:59:00.410",
"lastModified": "2017-11-04T01:29:47.617",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:56:26.680",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
@ -89,8 +89,51 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.9.12",
"matchCriteriaId": "BDE2E7F2-434A-4283-B0EA-25ACBCF7C4BF"
"versionStartIncluding": "3.1",
"versionEndExcluding": "3.2.87",
"matchCriteriaId": "52076DAA-CEE4-431B-95EC-97F8B00BC606"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.3",
"versionEndExcluding": "3.10.106",
"matchCriteriaId": "3116EF11-56E7-4D40-9FD0-6109280D0247"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.11",
"versionEndExcluding": "3.12.71",
"matchCriteriaId": "714101BC-5F00-4257-A007-F21269AE5AC1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.13",
"versionEndExcluding": "3.16.42",
"matchCriteriaId": "AF664753-05DC-4D55-B3B2-0DABB1E59297"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.17",
"versionEndExcluding": "4.1.49",
"matchCriteriaId": "F778EE12-46E8-450C-B643-B41A1B2A8A0D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.2",
"versionEndExcluding": "4.4.52",
"matchCriteriaId": "87F9D322-C14F-4E7A-BA48-87789CAC2DA7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.5",
"versionEndExcluding": "4.9.13",
"matchCriteriaId": "B5EFB5B2-2EEC-4D04-925A-77FBE0E5E76C"
}
]
}
@ -102,19 +145,24 @@
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=d199fab63c11998a602205f7ee7ff7c05c97164b",
"source": "cve@mitre.org",
"tags": [
"Patch"
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://www.debian.org/security/2017/dsa-3804",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.13",
"source": "cve@mitre.org",
"tags": [
"Patch",
"Release Notes"
"Release Notes",
"Vendor Advisory"
]
},
{
@ -128,18 +176,26 @@
},
{
"url": "http://www.securityfocus.com/bid/96508",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://github.com/torvalds/linux/commit/d199fab63c11998a602205f7ee7ff7c05c97164b",
"source": "cve@mitre.org",
"tags": [
"Patch"
"Patch",
"Vendor Advisory"
]
},
{
"url": "https://source.android.com/security/bulletin/2017-09-01",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

28
CVE-2017/CVE-2017-68xx/CVE-2017-6874.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2017-6874",
"sourceIdentifier": "cve@mitre.org",
"published": "2017-03-14T09:59:00.393",
"lastModified": "2017-03-16T01:59:02.433",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:56:30.557",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
@ -89,8 +89,16 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.10.2",
"matchCriteriaId": "4BD29732-F6B5-409C-9E75-4CECE1E543A4"
"versionStartIncluding": "4.9",
"versionEndExcluding": "4.9.16",
"matchCriteriaId": "C850AA48-53FC-4E7B-99E3-1059FFBF846B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.10",
"versionEndExcluding": "4.10.4",
"matchCriteriaId": "06EFB965-C649-4542-8209-E54DD89FFA1A"
}
]
}
@ -109,7 +117,11 @@
},
{
"url": "http://www.securityfocus.com/bid/96856",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://github.com/torvalds/linux/commit/040757f738e13caaa9c5078bca79aa97e11dde88",

38
CVE-2017/CVE-2017-74xx/CVE-2017-7477.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2017-7477",
"sourceIdentifier": "secalert@redhat.com",
"published": "2017-04-25T14:59:00.213",
"lastModified": "2023-02-12T23:30:11.663",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:56:35.427",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
@ -85,8 +85,16 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.10.12",
"matchCriteriaId": "A1467C00-A66E-4711-9C37-A5FE885B7BA6"
"versionStartIncluding": "4.6",
"versionEndExcluding": "4.9.28",
"matchCriteriaId": "EC478002-2426-4D69-8E9E-180A2311371D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.10",
"versionEndExcluding": "4.10.16",
"matchCriteriaId": "8120FC70-5A9E-433F-AEE0-85DED2CE0B9B"
}
]
}
@ -104,15 +112,25 @@
},
{
"url": "http://www.securitytracker.com/id/1038500",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:1615",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:1616",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1445207",

106
CVE-2017/CVE-2017-75xx/CVE-2017-7533.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2017-7533",
"sourceIdentifier": "secalert@redhat.com",
"published": "2017-08-05T16:29:00.180",
"lastModified": "2023-02-12T23:30:19.347",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:57:13.297",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
@ -85,8 +85,37 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndIncluding": "4.12.4",
"matchCriteriaId": "F295C5A4-6970-4A20-A0AA-12DFBAF500BE"
"versionStartIncluding": "3.14",
"versionEndExcluding": "3.16.47",
"matchCriteriaId": "92869CCB-E9ED-4079-8754-0E8BFFC7A607"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.17",
"versionEndExcluding": "3.18.64",
"matchCriteriaId": "226BE74E-0154-4F65-B5DC-E4C7AA03D270"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.19",
"versionEndExcluding": "4.4.80",
"matchCriteriaId": "13528C00-9A5F-4D0D-9BA4-FE4613F5C0AE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.5",
"versionEndExcluding": "4.9.41",
"matchCriteriaId": "26275761-EE66-4513-A2C7-DEB0432414CB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.10",
"versionEndExcluding": "4.12.5",
"matchCriteriaId": "17029DFF-1DBB-4776-BC98-7B7D48008881"
}
]
}
@ -114,23 +143,41 @@
},
{
"url": "http://www.debian.org/security/2017/dsa-3927",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.debian.org/security/2017/dsa-3945",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2019/06/27/7",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2019/06/28/1",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://www.openwall.com/lists/oss-security/2019/06/28/2",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "http://www.securityfocus.com/bid/100123",
@ -150,23 +197,38 @@
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:2473",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:2585",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:2669",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:2770",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2017:2869",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468283",
@ -206,11 +268,17 @@
},
{
"url": "https://source.android.com/security/bulletin/2017-12-01",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://www.mail-archive.com/linux-kernel%40vger.kernel.org/msg1408967.html",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
}
]
}

79
CVE-2018/CVE-2018-10xx/CVE-2018-1068.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2018-1068",
"sourceIdentifier": "secalert@redhat.com",
"published": "2018-03-16T16:29:00.207",
"lastModified": "2019-05-14T23:29:04.857",
"vulnStatus": "Modified",
"lastModified": "2023-06-21T15:56:59.840",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
@ -95,9 +95,57 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.0.0",
"versionEndIncluding": "4.16",
"matchCriteriaId": "3A19DAE3-65E5-44AB-ACA6-A347E14EADAC"
"versionEndExcluding": "3.2.102",
"matchCriteriaId": "085D47E4-E0D3-4433-BEE9-A6DC9F417727"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.3",
"versionEndExcluding": "3.16.57",
"matchCriteriaId": "0786B96E-E04C-4D2B-B358-CCE006BAED46"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.17",
"versionEndExcluding": "3.18.100",
"matchCriteriaId": "631D13AB-3797-454F-92B5-C7622ACA7ED9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.19",
"versionEndExcluding": "4.1.51",
"matchCriteriaId": "9B94FB91-F52F-4470-BD90-5F2A159A06EB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.2",
"versionEndExcluding": "4.4.122",
"matchCriteriaId": "2ADCBD0D-A6F7-49EC-AF7A-BE07FDB1D7B4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.5",
"versionEndExcluding": "4.9.88",
"matchCriteriaId": "5946C1C1-D807-40A1-9C0E-17F3A3555E57"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.10",
"versionEndExcluding": "4.14.27",
"matchCriteriaId": "9174B92E-72E7-4654-9020-FFF426EEA823"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.15",
"versionEndExcluding": "4.15.10",
"matchCriteriaId": "03AA527D-32A8-47C0-A5AE-DC9512401BAE"
}
]
}
@ -241,15 +289,24 @@
},
{
"url": "https://access.redhat.com/errata/RHSA-2019:1170",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2019:1190",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://access.redhat.com/errata/RHSA-2019:4159",
"source": "secalert@redhat.com"
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1552048",

6
CVE-2020/CVE-2020-367xx/CVE-2020-36707.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2020-36707",
"sourceIdentifier": "security@wordfence.com",
"published": "2023-06-07T02:15:11.440",
"lastModified": "2023-06-14T18:21:04.313",
"lastModified": "2023-06-21T15:58:47.653",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,9 +85,9 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:wpconcern:coming_soon_\\&_maintenance_mode_page:*:*:*:*:*:wordpress:*:*",
"criteria": "cpe:2.3:a:wpconcern:nifty_coming_soon_\\&_maintenance_mode_page:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.58",
"matchCriteriaId": "1610943D-0510-4414-AD5C-D49814BA5292"
"matchCriteriaId": "56987E67-BE82-4FC1-A1C4-F81D6E02F7B6"
}
]
}

12
CVE-2021/CVE-2021-320xx/CVE-2021-32000.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2021-32000",
"sourceIdentifier": "meissner@suse.de",
"published": "2021-07-28T10:15:07.943",
"lastModified": "2022-11-21T19:29:50.667",
"lastModified": "2023-06-21T15:19:13.533",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -102,11 +102,6 @@
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:opensuse:opensuse_factory:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C095BC02-1CE6-4EA0-811B-F34D74AED0FD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:12:sp3:*:*:-:-:*:*",
@ -116,6 +111,11 @@
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:linux_enterprise_server:15:sp1:*:*:-:-:*:*",
"matchCriteriaId": "60EF8A73-A078-49A9-8FDE-4B7F74B2E17B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:suse:opensuse_factory:-:*:*:*:*:*:*:*",
"matchCriteriaId": "64D9A5D6-4B12-4B25-ACD2-560C864B6FE1"
}
]
}

56
CVE-2021/CVE-2021-351xx/CVE-2021-35102.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2021-35102",
"sourceIdentifier": "product-security@qualcomm.com",
"published": "2022-06-14T10:15:16.960",
"lastModified": "2023-04-19T17:10:55.030",
"lastModified": "2023-06-21T15:58:59.787",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -1931,60 +1931,6 @@
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "57A0095C-FFE0-4BF4-A58D-8C35B05E5DCA"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:*:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E690B68-8EC2-4898-9722-79AF3BB9C74C"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "57A0095C-FFE0-4BF4-A58D-8C35B05E5DCA"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:*:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E690B68-8EC2-4898-9722-79AF3BB9C74C"
}
]
}
]
}
],
"references": [

160
CVE-2021/CVE-2021-43xx/CVE-2021-4337.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2021-4337",
"sourceIdentifier": "security@wordfence.com",
"published": "2023-06-07T13:15:09.437",
"lastModified": "2023-06-07T14:35:57.670",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:18:47.090",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{
"source": "security@wordfence.com",
"type": "Secondary",
@ -36,7 +56,7 @@
},
"weaknesses": [
{
"source": "security@wordfence.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
@ -44,20 +64,148 @@
"value": "CWE-862"
}
]
},
{
"source": "security@wordfence.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-862"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:add_product_tabs:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.5.0",
"matchCriteriaId": "EF32845C-A082-4218-A2DE-9E70FE404A5B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:autopilot_seo:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.6.0",
"matchCriteriaId": "F2F6559F-BF4C-4963-BEBB-8D782606A4C4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:bulk_add_to_cart:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.3.0",
"matchCriteriaId": "DA1EFA61-4DFF-4BAF-AD21-0FBEFDFB185B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:comment_and_review_spam_control:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.5.0",
"matchCriteriaId": "A062382F-5B88-4ABD-9887-B1852DDD17E5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:floating_cart:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.3.0",
"matchCriteriaId": "3CA7CE2F-63FF-4EAA-B3C6-393F43DA9F31"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:improved_product_options:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "5.3.0",
"matchCriteriaId": "E1BBD259-8F51-4AF8-BE0A-04BEB2407F62"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:improved_sale_badges:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "4.4.0",
"matchCriteriaId": "9C8FFD0C-805D-43FE-AF3E-2EF0EFD0231E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:live_product_editor:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "4.7.0",
"matchCriteriaId": "2579E688-CAB2-4BAC-90A1-FF805A380C2B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:live_search:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "2.1.0",
"matchCriteriaId": "D613DF5D-D003-4B93-81B8-0B58257B334B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:package_quantity:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.2.0",
"matchCriteriaId": "B45F34B1-5F06-492E-A257-1ECD3374626A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:price_commander:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.3.0",
"matchCriteriaId": "F591A0E8-4B35-4434-9081-C1F50D6F2992"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:product_filter:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "8.2.0",
"matchCriteriaId": "7753ADC1-DCDC-43FB-82E1-3504762FAF94"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:product_loops:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.7.0",
"matchCriteriaId": "B43756CF-DCF1-4BD6-AF3C-C3C564C9E85E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:share\\,_print_and_pdf_products:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "2.8.0",
"matchCriteriaId": "A9523695-0B82-469A-8099-AF2E98D77D7B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:warranties_and_returns:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "5.3.0",
"matchCriteriaId": "E1887B1A-86B3-49A3-AF94-86AE04C24DE0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:xforwoocommerce:xforwoocommerce:*:*:*:*:*:wordpress:*:*",
"versionEndExcluding": "1.7.0",
"matchCriteriaId": "EEE062F3-7EC3-4FBC-A5E9-CCE825C2B36F"
}
]
}
]
}
],
"references": [
{
"url": "https://blog.nintechnet.com/16-woocommerce-product-add-ons-plugins-fixed-vulnerabilities/",
"source": "security@wordfence.com"
"source": "security@wordfence.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/05481984-7c18-4ec7-8d7c-831809c3e86b?source=cve",
"source": "security@wordfence.com"
"source": "security@wordfence.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://xforwoocommerce.com/blog/change-log/xforwoocommerce-1-7-0/",
"source": "security@wordfence.com"
"source": "security@wordfence.com",
"tags": [
"Vendor Advisory"
]
}
]
}

10
CVE-2022/CVE-2022-332xx/CVE-2022-33264.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-33264",
"sourceIdentifier": "product-security@qualcomm.com",
"published": "2023-06-06T08:15:10.740",
"lastModified": "2023-06-13T16:47:12.603",
"lastModified": "2023-06-21T15:59:18.387",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -2209,8 +2209,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:qualcomm_205_mobile_platform_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8F2B255-04B5-4982-8018-F43EDD4F7912"
"criteria": "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C9E095A-71DB-4386-827A-53846236AD00"
}
]
},
@ -2220,8 +2220,8 @@
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:qualcomm_205_mobile_platform:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4DE45CB-E697-489D-BFCA-1BBA48FF0846"
"criteria": "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E981922-BB71-46E0-96C4-4CF75DF221F6"
}
]
}

4
CVE-2022/CVE-2022-33xx/CVE-2022-3372.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-3372",
"sourceIdentifier": "cve-coordination@incibe.es",
"published": "2023-06-21T13:15:09.673",
"lastModified": "2023-06-21T13:15:09.673",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

10
CVE-2022/CVE-2022-405xx/CVE-2022-40507.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-40507",
"sourceIdentifier": "product-security@qualcomm.com",
"published": "2023-06-06T08:15:11.097",
"lastModified": "2023-06-13T16:41:12.180",
"lastModified": "2023-06-21T15:59:21.797",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -2290,8 +2290,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:qualcomm_205_mobile_platform_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8F2B255-04B5-4982-8018-F43EDD4F7912"
"criteria": "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C9E095A-71DB-4386-827A-53846236AD00"
}
]
},
@ -2301,8 +2301,8 @@
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:qualcomm_205_mobile_platform:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4DE45CB-E697-489D-BFCA-1BBA48FF0846"
"criteria": "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E981922-BB71-46E0-96C4-4CF75DF221F6"
}
]
}

12
CVE-2022/CVE-2022-405xx/CVE-2022-40521.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-40521",
"sourceIdentifier": "product-security@qualcomm.com",
"published": "2023-06-06T08:15:11.180",
"lastModified": "2023-06-13T16:38:49.337",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:58:57.410",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -2371,8 +2371,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:qualcomm_205_mobile_platform_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F8F2B255-04B5-4982-8018-F43EDD4F7912"
"criteria": "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C9E095A-71DB-4386-827A-53846236AD00"
}
]
},
@ -2382,8 +2382,8 @@
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:qualcomm_205_mobile_platform:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4DE45CB-E697-489D-BFCA-1BBA48FF0846"
"criteria": "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E981922-BB71-46E0-96C4-4CF75DF221F6"
}
]
}

4
CVE-2022/CVE-2022-452xx/CVE-2022-45287.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-45287",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-21T13:15:09.750",
"lastModified": "2023-06-21T13:15:09.750",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

79
CVE-2023/CVE-2023-211xx/CVE-2023-21137.json
View File

@ -2,19 +2,90 @@
"id": "CVE-2023-21137",
"sourceIdentifier": "security@android.com",
"published": "2023-06-15T19:15:10.043",
"lastModified": "2023-06-15T20:46:39.603",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:06:52.617",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "In several methods of JobStore.java, uncaught exceptions in job map parsing could lead to local persistent denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-246541702"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-754"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C64C1583-CDE0-4C1F-BDE6-05643C1BDD72"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
"matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"
}
]
}
]
}
],
"references": [
{
"url": "https://source.android.com/security/bulletin/2023-06-01",
"source": "security@android.com"
"source": "security@android.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

79
CVE-2023/CVE-2023-211xx/CVE-2023-21138.json
View File

@ -2,19 +2,90 @@
"id": "CVE-2023-21138",
"sourceIdentifier": "security@android.com",
"published": "2023-06-15T19:15:10.083",
"lastModified": "2023-06-15T20:46:39.603",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:10:38.607",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "In onNullBinding of CallRedirectionProcessor.java, there is a possible long lived connection due to improper input validation. This could lead to local escalation of privilege and background activity launches with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-273260090"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C64C1583-CDE0-4C1F-BDE6-05643C1BDD72"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
"matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"
}
]
}
]
}
],
"references": [
{
"url": "https://source.android.com/security/bulletin/2023-06-01",
"source": "security@android.com"
"source": "security@android.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

79
CVE-2023/CVE-2023-211xx/CVE-2023-21141.json
View File

@ -2,19 +2,90 @@
"id": "CVE-2023-21141",
"sourceIdentifier": "security@android.com",
"published": "2023-06-15T19:15:10.167",
"lastModified": "2023-06-15T20:46:39.603",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:41:48.950",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "In several functions of several files, there is a possible way to access developer mode traces due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-262244249"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C64C1583-CDE0-4C1F-BDE6-05643C1BDD72"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
"matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"
}
]
}
]
}
],
"references": [
{
"url": "https://source.android.com/security/bulletin/2023-06-01",
"source": "security@android.com"
"source": "security@android.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

79
CVE-2023/CVE-2023-211xx/CVE-2023-21142.json
View File

@ -2,19 +2,90 @@
"id": "CVE-2023-21142",
"sourceIdentifier": "security@android.com",
"published": "2023-06-15T19:15:10.207",
"lastModified": "2023-06-15T20:46:39.603",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:10:11.717",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "In multiple files, there is a possible way to access traces in the dev mode due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11 Android-12 Android-12L Android-13Android ID: A-262243665"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:11.0:*:*:*:*:*:*:*",
"matchCriteriaId": "109DD7FD-3A48-4C3D-8E1A-4433B98E1E64"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F8FB8EE9-FC56-4D5E-AE55-A5967634740C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:12.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C64C1583-CDE0-4C1F-BDE6-05643C1BDD72"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:google:android:13.0:*:*:*:*:*:*:*",
"matchCriteriaId": "879FFD0C-9B38-4CAA-B057-1086D794D469"
}
]
}
]
}
],
"references": [
{
"url": "https://source.android.com/security/bulletin/2023-06-01",
"source": "security@android.com"
"source": "security@android.com",
"tags": [
"Patch",
"Vendor Advisory"
]
}
]
}

14
CVE-2023/CVE-2023-215xx/CVE-2023-21514.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-21514",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2023-05-26T22:15:14.377",
"lastModified": "2023-06-03T03:34:16.450",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:18:17.423",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,19 +17,19 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"exploitabilityScore": 2.8,
"impactScore": 5.9
},
{

10
CVE-2023/CVE-2023-216xx/CVE-2023-21670.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-21670",
"sourceIdentifier": "product-security@qualcomm.com",
"published": "2023-06-06T08:15:12.663",
"lastModified": "2023-06-10T02:10:31.387",
"lastModified": "2023-06-21T15:59:14.857",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -1723,8 +1723,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:qualcomm:205_mobile_platform_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "73CC4B73-2250-4DA9-8B86-82C68A435DF5"
"criteria": "cpe:2.3:o:qualcomm:msm8905_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C9E095A-71DB-4386-827A-53846236AD00"
}
]
},
@ -1734,8 +1734,8 @@
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:qualcomm:205_mobile_platform:-:*:*:*:*:*:*:*",
"matchCriteriaId": "993FB1BA-B26D-42A1-B401-DDE12B28DB88"
"criteria": "cpe:2.3:h:qualcomm:msm8905:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E981922-BB71-46E0-96C4-4CF75DF221F6"
}
]
}

4
CVE-2023/CVE-2023-256xx/CVE-2023-25609.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-25609",
"sourceIdentifier": "psirt@fortinet.com",
"published": "2023-06-13T09:15:16.227",
"lastModified": "2023-06-17T01:40:04.447",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:19:08.190",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",

6
CVE-2023/CVE-2023-271xx/CVE-2023-27119.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-27119",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-03-10T02:15:58.600",
"lastModified": "2023-03-15T16:43:02.583",
"lastModified": "2023-06-21T15:33:11.197",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -55,8 +55,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:webassembly:webassembly:1.0.29:*:*:*:*:*:*:*",
"matchCriteriaId": "E65BCD25-B1DD-43CE-9198-810D9F62B81C"
"criteria": "cpe:2.3:a:webassembly:wabt:1.0.29:*:*:*:*:*:*:*",
"matchCriteriaId": "C524E018-FAA2-4A8D-B861-6ACE6A675FEC"
}
]
}

55
CVE-2023/CVE-2023-274xx/CVE-2023-27414.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2023-27414",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T14:15:09.603",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Popup Box Team Popup box plugin <=\u00a03.4.4 versions."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "audit@patchstack.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.7
}
]
},
"weaknesses": [
{
"source": "audit@patchstack.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://patchstack.com/database/vulnerability/ays-popup-box/wordpress-popup-box-plugin-3-4-4-cross-site-scripting-xss-vulnerability?_s_id=cve",
"source": "audit@patchstack.com"
}
]
}

55
CVE-2023/CVE-2023-274xx/CVE-2023-27429.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2023-27429",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T14:15:09.690",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Automattic - Jetpack CRM team Jetpack CRM plugin <=\u00a05.4.4 versions."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "audit@patchstack.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 5.9,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.7,
"impactScore": 3.7
}
]
},
"weaknesses": [
{
"source": "audit@patchstack.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://patchstack.com/database/vulnerability/zero-bs-crm/wordpress-jetpack-crm-clients-leads-invoices-billing-email-marketing-automation-plugin-5-4-4-cross-site-scripting-xss?_s_id=cve",
"source": "audit@patchstack.com"
}
]
}

55
CVE-2023/CVE-2023-274xx/CVE-2023-27432.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2023-27432",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T14:15:09.763",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WpSimpleTools Manage Upload Limit plugin <=\u00a01.0.4 versions."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "audit@patchstack.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.7
}
]
},
"weaknesses": [
{
"source": "audit@patchstack.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://patchstack.com/database/vulnerability/wpsimpletools-upload-limit/wordpress-manage-upload-limit-plugin-1-0-4-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve",
"source": "audit@patchstack.com"
}
]
}

4
CVE-2023/CVE-2023-274xx/CVE-2023-27439.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-27439",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T13:15:09.910",
"lastModified": "2023-06-21T13:15:09.910",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-274xx/CVE-2023-27443.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-27443",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T13:15:09.977",
"lastModified": "2023-06-21T13:15:09.977",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

4
CVE-2023/CVE-2023-274xx/CVE-2023-27450.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-27450",
"sourceIdentifier": "audit@patchstack.com",
"published": "2023-06-21T13:15:10.047",
"lastModified": "2023-06-21T13:15:10.047",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

6
CVE-2023/CVE-2023-276xx/CVE-2023-27637.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-27637",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-03-22T13:15:10.150",
"lastModified": "2023-03-24T04:48:39.387",
"lastModified": "2023-06-21T15:58:54.023",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -55,8 +55,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:tshirtecommerce:tshirtecommerce:2.1.4:*:*:*:*:prestashop:*:*",
"matchCriteriaId": "5F9C2F61-2CFB-4E19-8554-737280F314B1"
"criteria": "cpe:2.3:a:tshirtecommerce:custom_product_designer:2.1.4:*:*:*:*:prestashop:*:*",
"matchCriteriaId": "8DA9FE54-9760-4168-9FE0-DE918ABD532E"
}
]
}

6
CVE-2023/CVE-2023-276xx/CVE-2023-27638.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-27638",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-03-22T13:15:10.213",
"lastModified": "2023-03-24T03:50:52.310",
"lastModified": "2023-06-21T15:58:51.637",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -55,8 +55,8 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:tshirtecommerce:tshirtecommerce:2.1.4:*:*:*:*:prestashop:*:*",
"matchCriteriaId": "5F9C2F61-2CFB-4E19-8554-737280F314B1"
"criteria": "cpe:2.3:a:tshirtecommerce:custom_product_designer:2.1.4:*:*:*:*:prestashop:*:*",
"matchCriteriaId": "8DA9FE54-9760-4168-9FE0-DE918ABD532E"
}
]
}

63
CVE-2023/CVE-2023-277xx/CVE-2023-27716.json
View File

@ -2,19 +2,74 @@
"id": "CVE-2023-27716",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-12T21:15:22.543",
"lastModified": "2023-06-13T13:00:53.777",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:50:33.473",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in freakchicken kafkaUI-lite 1.2.11 allows attackers on the same network to gain escalated privileges for the nodes running on it."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:kafkaui-lite_project:kafkaui-lite:1.2.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CCB017B5-F5E9-47DA-A7B0-BF4A5E6F5545"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/G-H-Z/CVE/blob/main/CVE-2023-27716",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
]
}
]
}

76
CVE-2023/CVE-2023-278xx/CVE-2023-27837.json
View File

@ -2,19 +2,87 @@
"id": "CVE-2023-27837",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-13T17:15:14.327",
"lastModified": "2023-06-13T18:27:48.060",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:38:39.090",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "TP-Link TL-WPA8630P (US)_ V2_ Version 171011 was discovered to contain a command injection vulnerability via the key parameter in the function sub_ 40A774."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:tp-link:tl-wpa8630p_firmware:171011:*:*:*:*:*:*:*",
"matchCriteriaId": "489C4308-A93A-470D-88CD-D480C7B7DEA2"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:tp-link:tl-wpa8630p:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "6B4CFE0D-E999-4F58-800D-262666867C90"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/lzd521/IOT/tree/main/TP-Link%20WPA8630P",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

5
CVE-2023/CVE-2023-28xx/CVE-2023-2804.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-2804",
"sourceIdentifier": "secalert@redhat.com",
"published": "2023-05-25T22:15:09.443",
"lastModified": "2023-06-06T13:40:34.820",
"lastModified": "2023-06-21T15:18:30.140",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -66,7 +66,8 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:a:libjpeg-turbo:libjpeg-turbo:*:*:*:*:*:*:*:*",
"matchCriteriaId": "23781DDB-5526-45A4-974B-6ED459FCC816"
"versionEndExcluding": "2.1.90",
"matchCriteriaId": "A1DBB115-C125-432D-BF8C-013672749D6C"
}
]
}

12
CVE-2023/CVE-2023-295xx/CVE-2023-29533.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29533",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.387",
"lastModified": "2023-06-09T03:57:05.667",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:33:49.740",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,20 +17,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
"impactScore": 1.4
}
]
},

16
CVE-2023/CVE-2023-295xx/CVE-2023-29538.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29538",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.567",
"lastModified": "2023-06-09T03:56:56.727",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:18:08.410",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,20 +17,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.6,
"impactScore": 3.6
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},

16
CVE-2023/CVE-2023-295xx/CVE-2023-29539.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29539",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:12.607",
"lastModified": "2023-06-09T03:56:54.370",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:33:43.133",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,20 +17,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
"impactScore": 5.9
}
]
},

11
CVE-2023/CVE-2023-295xx/CVE-2023-29586.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-29586",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-04-19T15:15:06.857",
"lastModified": "2023-04-28T17:45:46.740",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-21T14:15:09.833",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
@ -65,11 +65,8 @@
],
"references": [
{
"url": "https://cwe.mitre.org/data/definitions/285.html",
"source": "cve@mitre.org",
"tags": [
"Technical Description"
]
"url": "https://packetstormsecurity.com/files/143984/TeraCopyService-3.1-Unquoted-Service-Path-Privilege-Escalation.html",
"source": "cve@mitre.org"
},
{
"url": "https://securityandstuff.com/posts/teracopy_arbitrary_read/",

81
CVE-2023/CVE-2023-304xx/CVE-2023-30400.json
View File

@ -2,23 +2,94 @@
"id": "CVE-2023-30400",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-07T01:15:39.143",
"lastModified": "2023-06-07T02:45:10.733",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:49:43.397",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An issue was discovered in Anyka Microelectronics AK3918EV300 MCU v18. A command injection vulnerability in the network configuration script within the MCU's operating system allows attackers to perform arbitrary command execution via a crafted wifi SSID or password."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-77"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:anyka:ak3918ev300_firmware:18:*:*:*:*:*:*:*",
"matchCriteriaId": "D257D934-F289-4367-9F08-6AE96ED6569F"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:anyka:ak3918ev300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B27E6AA4-EB3B-4AE5-8741-D2FE0CFAA4CA"
}
]
}
]
}
],
"references": [
{
"url": "https://arxiv.org/abs/2306.00610",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://github.com/Nemobi/ak3918ev300v18",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Product"
]
}
]
}

10
CVE-2023/CVE-2023-318xx/CVE-2023-31860.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-31860",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-23T20:15:10.040",
"lastModified": "2023-05-30T17:30:36.053",
"lastModified": "2023-06-21T15:19:17.380",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -17,19 +17,19 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]

6
CVE-2023/CVE-2023-319xx/CVE-2023-31975.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-31975",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-09T13:15:18.590",
"lastModified": "2023-06-21T03:15:09.253",
"lastModified": "2023-06-21T15:15:09.577",
"vulnStatus": "Modified",
"descriptions": [
{
@ -68,6 +68,10 @@
"url": "http://www.openwall.com/lists/oss-security/2023/06/20/6",
"source": "cve@mitre.org"
},
{
"url": "http://www.openwall.com/lists/oss-security/2023/06/21/2",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/yasm/yasm/issues/210",
"source": "cve@mitre.org",

12
CVE-2023/CVE-2023-322xx/CVE-2023-32205.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32205",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.057",
"lastModified": "2023-06-09T03:56:00.593",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:33:27.127",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,20 +17,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
"impactScore": 1.4
}
]
},

16
CVE-2023/CVE-2023-322xx/CVE-2023-32207.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32207",
"sourceIdentifier": "security@mozilla.org",
"published": "2023-06-02T17:15:13.147",
"lastModified": "2023-06-09T03:55:37.263",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:19:41.783",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,20 +17,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
"impactScore": 5.9
}
]
},

71
CVE-2023/CVE-2023-332xx/CVE-2023-33253.json
View File

@ -2,23 +2,84 @@
"id": "CVE-2023-33253",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-12T13:15:10.187",
"lastModified": "2023-06-12T13:28:17.260",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:46:07.963",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "LabCollector 6.0 though 6.15 allows remote code execution. An authenticated remote low-privileged user can upload an executable PHP file and execute system commands. The vulnerability is in the message function, and is due to insufficient validation of the file (such as shell.jpg.php.shell) being sent."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:agilebio:labcollector:*:*:*:*:*:*:*:*",
"versionStartIncluding": "6.0",
"versionEndIncluding": "6.15",
"matchCriteriaId": "4F655FAB-2F1C-4B77-A411-C3F5DEB6C58B"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/Toxich4/CVE-2023-33253",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://labcollector.com/",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Product"
]
}
]
}

6
CVE-2023/CVE-2023-332xx/CVE-2023-33281.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2023-33281",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-05-22T02:15:11.837",
"lastModified": "2023-05-26T13:45:29.920",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-21T15:15:09.653",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "The remote keyfob system on Nissan Sylphy Classic 2021 sends the same RF signal for each door-open request, which allows for a replay attack."
"value": "** DISPUTED ** The remote keyfob system on Nissan Sylphy Classic 2021 sends the same RF signal for each door-open request, which allows for a replay attack. NOTE: the vendor's position is that this cannot be reproduced with genuine Nissan parts: for example, the combination of keyfob and door handle shown in the exploit demonstration does not match any technology that Nissan provides to customers."
}
],
"metrics": {

4
CVE-2023/CVE-2023-335xx/CVE-2023-33584.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-33584",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-21T13:15:10.117",
"lastModified": "2023-06-21T13:15:10.117",
"vulnStatus": "Received",
"lastModified": "2023-06-21T15:14:56.427",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",

67
CVE-2023/CVE-2023-336xx/CVE-2023-33695.json
View File

@ -2,19 +2,78 @@
"id": "CVE-2023-33695",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-13T16:15:13.077",
"lastModified": "2023-06-13T16:54:51.953",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T15:26:26.947",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Hutool v5.8.17 and below was discovered to contain an information disclosure vulnerability via the File.createTempFile() function at /core/io/FileUtil.java."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.2
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-732"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:hutool:hutool:*:*:*:*:*:*:*:*",
"versionEndIncluding": "5.8.17",
"matchCriteriaId": "C24D3772-507E-4835-B431-E55F9FB9EDD0"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/dromara/hutool/issues/3103",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Mitigation",
"Third Party Advisory"
]
}
]
}

6
CVE-2023/CVE-2023-342xx/CVE-2023-34212.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-34212",
"sourceIdentifier": "security@apache.org",
"published": "2023-06-12T16:15:10.043",
"lastModified": "2023-06-21T02:15:20.727",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-06-21T15:18:21.630",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -89,7 +89,7 @@
"source": "security@apache.org",
"tags": [
"Mailing List",
"Third Party Advisory"
"Vendor Advisory"
]
},
{

76
CVE-2023/CVE-2023-349xx/CVE-2023-34941.json
View File

@ -2,19 +2,87 @@
"id": "CVE-2023-34941",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-12T20:15:12.780",
"lastModified": "2023-06-13T13:01:10.377",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:30:22.000",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "** UNSUPPORTED WHEN ASSIGNED ** A stored cross-site scripting (XSS) vulnerability in the urlFilterList function of Asus RT-N10LX Router v2.0.0.39 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL Keyword List text field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:asus:rt-n10lx_firmware:2.0.0.39:*:*:*:*:*:*:*",
"matchCriteriaId": "F5EC1456-4577-4859-BD0F-92730E14A953"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:asus:rt-n10lx:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2D86D41E-35A2-4713-BDFE-5577586D0DE1"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/OlivierLaflamme/cve/blob/main/ASUS-N10LX_2.0.0.39/StoredXSS_FirewallURLFilter.md",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

76
CVE-2023/CVE-2023-349xx/CVE-2023-34942.json
View File

@ -2,19 +2,87 @@
"id": "CVE-2023-34942",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-12T20:15:12.830",
"lastModified": "2023-06-13T13:00:53.777",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-21T14:07:21.867",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "** UNSUPPORTED WHEN ASSIGNED ** Asus RT-N10LX Router v2.0.0.39 was discovered to contain a stack overflow via the mac parameter at /start-apply.html. NOTE: This vulnerability only affects products that are no longer supported by the maintainer."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:asus:rt-n10lx_firmware:2.0.0.39:*:*:*:*:*:*:*",
"matchCriteriaId": "F5EC1456-4577-4859-BD0F-92730E14A953"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:asus:rt-n10lx:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2D86D41E-35A2-4713-BDFE-5577586D0DE1"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/OlivierLaflamme/cve/blob/main/ASUS-N10LX_2.0.0.39/MAC_Address_StackBOF.md",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
}
]
}

69
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-06-21T14:00:28.016108+00:00
2023-06-21T16:00:42.433613+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-06-21T13:45:56.650000+00:00
2023-06-21T15:59:21.797000+00:00
```
### Last Data Feed Release
@ -29,50 +29,47 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
218182
218185
```
### CVEs added in the last Commit
Recently added CVEs: `7`
Recently added CVEs: `3`
* [CVE-2022-3372](CVE-2022/CVE-2022-33xx/CVE-2022-3372.json) (`2023-06-21T13:15:09.673`)
* [CVE-2022-45287](CVE-2022/CVE-2022-452xx/CVE-2022-45287.json) (`2023-06-21T13:15:09.750`)
* [CVE-2023-3351](CVE-2023/CVE-2023-33xx/CVE-2023-3351.json) (`2023-06-21T12:15:09.583`)
* [CVE-2023-27439](CVE-2023/CVE-2023-274xx/CVE-2023-27439.json) (`2023-06-21T13:15:09.910`)
* [CVE-2023-27443](CVE-2023/CVE-2023-274xx/CVE-2023-27443.json) (`2023-06-21T13:15:09.977`)
* [CVE-2023-27450](CVE-2023/CVE-2023-274xx/CVE-2023-27450.json) (`2023-06-21T13:15:10.047`)
* [CVE-2023-33584](CVE-2023/CVE-2023-335xx/CVE-2023-33584.json) (`2023-06-21T13:15:10.117`)
* [CVE-2023-27414](CVE-2023/CVE-2023-274xx/CVE-2023-27414.json) (`2023-06-21T14:15:09.603`)
* [CVE-2023-27429](CVE-2023/CVE-2023-274xx/CVE-2023-27429.json) (`2023-06-21T14:15:09.690`)
* [CVE-2023-27432](CVE-2023/CVE-2023-274xx/CVE-2023-27432.json) (`2023-06-21T14:15:09.763`)
### CVEs modified in the last Commit
Recently modified CVEs: `24`
Recently modified CVEs: `49`
* [CVE-2022-25883](CVE-2022/CVE-2022-258xx/CVE-2022-25883.json) (`2023-06-21T12:29:48.917`)
* [CVE-2022-36331](CVE-2022/CVE-2022-363xx/CVE-2022-36331.json) (`2023-06-21T13:05:23.150`)
* [CVE-2022-48282](CVE-2022/CVE-2022-482xx/CVE-2022-48282.json) (`2023-06-21T13:15:09.800`)
* [CVE-2023-32274](CVE-2023/CVE-2023-322xx/CVE-2023-32274.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-33869](CVE-2023/CVE-2023-338xx/CVE-2023-33869.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-35166](CVE-2023/CVE-2023-351xx/CVE-2023-35166.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-35885](CVE-2023/CVE-2023-358xx/CVE-2023-35885.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-3220](CVE-2023/CVE-2023-32xx/CVE-2023-3220.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-34563](CVE-2023/CVE-2023-345xx/CVE-2023-34563.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-3339](CVE-2023/CVE-2023-33xx/CVE-2023-3339.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-34340](CVE-2023/CVE-2023-343xx/CVE-2023-34340.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-34981](CVE-2023/CVE-2023-349xx/CVE-2023-34981.json) (`2023-06-21T12:29:48.917`)
* [CVE-2023-34363](CVE-2023/CVE-2023-343xx/CVE-2023-34363.json) (`2023-06-21T12:54:48.157`)
* [CVE-2023-21108](CVE-2023/CVE-2023-211xx/CVE-2023-21108.json) (`2023-06-21T12:54:58.137`)
* [CVE-2023-21105](CVE-2023/CVE-2023-211xx/CVE-2023-21105.json) (`2023-06-21T12:56:25.283`)
* [CVE-2023-21101](CVE-2023/CVE-2023-211xx/CVE-2023-21101.json) (`2023-06-21T12:58:13.473`)
* [CVE-2023-21123](CVE-2023/CVE-2023-211xx/CVE-2023-21123.json) (`2023-06-21T13:08:59.573`)
* [CVE-2023-21122](CVE-2023/CVE-2023-211xx/CVE-2023-21122.json) (`2023-06-21T13:09:01.433`)
* [CVE-2023-21127](CVE-2023/CVE-2023-211xx/CVE-2023-21127.json) (`2023-06-21T13:11:33.450`)
* [CVE-2023-21136](CVE-2023/CVE-2023-211xx/CVE-2023-21136.json) (`2023-06-21T13:11:57.187`)
* [CVE-2023-35866](CVE-2023/CVE-2023-358xx/CVE-2023-35866.json) (`2023-06-21T13:15:10.160`)
* [CVE-2023-34100](CVE-2023/CVE-2023-341xx/CVE-2023-34100.json) (`2023-06-21T13:18:46.317`)
* [CVE-2023-1898](CVE-2023/CVE-2023-18xx/CVE-2023-1898.json) (`2023-06-21T13:42:28.183`)
* [CVE-2023-1897](CVE-2023/CVE-2023-18xx/CVE-2023-1897.json) (`2023-06-21T13:45:56.650`)
* [CVE-2023-21137](CVE-2023/CVE-2023-211xx/CVE-2023-21137.json) (`2023-06-21T15:06:52.617`)
* [CVE-2023-27439](CVE-2023/CVE-2023-274xx/CVE-2023-27439.json) (`2023-06-21T15:14:56.427`)
* [CVE-2023-27443](CVE-2023/CVE-2023-274xx/CVE-2023-27443.json) (`2023-06-21T15:14:56.427`)
* [CVE-2023-27450](CVE-2023/CVE-2023-274xx/CVE-2023-27450.json) (`2023-06-21T15:14:56.427`)
* [CVE-2023-33584](CVE-2023/CVE-2023-335xx/CVE-2023-33584.json) (`2023-06-21T15:14:56.427`)
* [CVE-2023-31975](CVE-2023/CVE-2023-319xx/CVE-2023-31975.json) (`2023-06-21T15:15:09.577`)
* [CVE-2023-33281](CVE-2023/CVE-2023-332xx/CVE-2023-33281.json) (`2023-06-21T15:15:09.653`)
* [CVE-2023-29538](CVE-2023/CVE-2023-295xx/CVE-2023-29538.json) (`2023-06-21T15:18:08.410`)
* [CVE-2023-21514](CVE-2023/CVE-2023-215xx/CVE-2023-21514.json) (`2023-06-21T15:18:17.423`)
* [CVE-2023-34212](CVE-2023/CVE-2023-342xx/CVE-2023-34212.json) (`2023-06-21T15:18:21.630`)
* [CVE-2023-2804](CVE-2023/CVE-2023-28xx/CVE-2023-2804.json) (`2023-06-21T15:18:30.140`)
* [CVE-2023-25609](CVE-2023/CVE-2023-256xx/CVE-2023-25609.json) (`2023-06-21T15:19:08.190`)
* [CVE-2023-31860](CVE-2023/CVE-2023-318xx/CVE-2023-31860.json) (`2023-06-21T15:19:17.380`)
* [CVE-2023-32207](CVE-2023/CVE-2023-322xx/CVE-2023-32207.json) (`2023-06-21T15:19:41.783`)
* [CVE-2023-33695](CVE-2023/CVE-2023-336xx/CVE-2023-33695.json) (`2023-06-21T15:26:26.947`)
* [CVE-2023-27119](CVE-2023/CVE-2023-271xx/CVE-2023-27119.json) (`2023-06-21T15:33:11.197`)
* [CVE-2023-32205](CVE-2023/CVE-2023-322xx/CVE-2023-32205.json) (`2023-06-21T15:33:27.127`)
* [CVE-2023-29539](CVE-2023/CVE-2023-295xx/CVE-2023-29539.json) (`2023-06-21T15:33:43.133`)
* [CVE-2023-29533](CVE-2023/CVE-2023-295xx/CVE-2023-29533.json) (`2023-06-21T15:33:49.740`)
* [CVE-2023-27837](CVE-2023/CVE-2023-278xx/CVE-2023-27837.json) (`2023-06-21T15:38:39.090`)
* [CVE-2023-33253](CVE-2023/CVE-2023-332xx/CVE-2023-33253.json) (`2023-06-21T15:46:07.963`)
* [CVE-2023-27716](CVE-2023/CVE-2023-277xx/CVE-2023-27716.json) (`2023-06-21T15:50:33.473`)
* [CVE-2023-27638](CVE-2023/CVE-2023-276xx/CVE-2023-27638.json) (`2023-06-21T15:58:51.637`)
* [CVE-2023-27637](CVE-2023/CVE-2023-276xx/CVE-2023-27637.json) (`2023-06-21T15:58:54.023`)
* [CVE-2023-21670](CVE-2023/CVE-2023-216xx/CVE-2023-21670.json) (`2023-06-21T15:59:14.857`)
## Download and Usage