admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-07 19:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-12-08T03:00:22.740247+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-12-08 03:00:27 +00:00
parent 141edeeb92
commit 5ee6896fb8
12 changed files with 162 additions and 67 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
CVE-2014/CVE-2014-1250xx/CVE-2014-125062.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2014-125062",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-07T17:15:09.347",
"lastModified": "2023-11-07T02:18:38.877",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:34:14.887",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 5.9
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -91,7 +91,7 @@
]
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{

10
CVE-2014/CVE-2014-1250xx/CVE-2014-125063.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2014-125063",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-07T19:15:09.167",
"lastModified": "2023-11-07T02:18:39.173",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:35:37.957",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 5.9
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -81,7 +81,7 @@
},
"weaknesses": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{

10
CVE-2014/CVE-2014-1250xx/CVE-2014-125068.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2014-125068",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-08T11:15:09.917",
"lastModified": "2023-11-07T02:18:40.200",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:39:14.127",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 1.4
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -81,7 +81,7 @@
},
"weaknesses": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{

30
CVE-2020/CVE-2020-366xx/CVE-2020-36639.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2020-36639",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-04T10:15:10.383",
"lastModified": "2023-11-07T03:22:21.970",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:26:49.777",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 5.9
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -81,8 +81,8 @@
},
"weaknesses": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"type": "Primary",
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -93,6 +93,7 @@
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
@ -105,6 +106,17 @@
"matchCriteriaId": "F7B90C05-64BA-4745-BAF1-D3E887C38FF1"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
}
]
}
]
}
@ -114,16 +126,14 @@
"url": "https://github.com/alliedmodders/amxmodx/commit/a5f2b5539f6d61050b68df8b22ebb343a2862681",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{
"url": "https://github.com/alliedmodders/amxmodx/pull/823",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{

19
CVE-2020/CVE-2020-366xx/CVE-2020-36646.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2020-36646",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-07T20:15:09.523",
"lastModified": "2023-11-07T03:22:23.720",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:27:58.400",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 3.6
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -91,7 +91,7 @@
]
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
@ -125,24 +125,21 @@
"url": "https://github.com/MediaArea/ZenLib/commit/6475fcccd37c9cf17e0cfe263b5fe0e2e47a8408",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{
"url": "https://github.com/MediaArea/ZenLib/pull/119",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{
"url": "https://github.com/MediaArea/ZenLib/releases/tag/v0.4.39",
"source": "cna@vuldb.com",
"tags": [
"Release Notes",
"Third Party Advisory"
"Release Notes"
]
},
{

16
CVE-2021/CVE-2021-43xx/CVE-2021-4300.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2021-4300",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-04T22:15:08.903",
"lastModified": "2023-11-07T03:40:36.787",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:23:26.550",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 5.9
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -91,7 +91,7 @@
]
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
@ -124,16 +124,14 @@
"url": "https://github.com/ghostlander/Halcyon/commit/0675b25ae9cc10b5fdc8ea3a32c642979762d45e",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{
"url": "https://github.com/ghostlander/Halcyon/releases/tag/v1.1.1.0-hal",
"source": "cna@vuldb.com",
"tags": [
"Release Notes",
"Third Party Advisory"
"Release Notes"
]
},
{

17
CVE-2021/CVE-2021-43xx/CVE-2021-4307.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2021-4307",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-01-07T20:15:09.623",
"lastModified": "2023-11-07T03:40:39.157",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2023-12-08T01:32:17.050",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -33,7 +33,7 @@
"impactScore": 5.9
},
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
@ -55,7 +55,7 @@
],
"cvssMetricV2": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
@ -81,8 +81,8 @@
},
"weaknesses": [
{
"source": "1af790b2-7ee1-4545-860a-a788eba489b5",
"type": "Primary",
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -115,8 +115,7 @@
"url": "https://github.com/Yomguithereal/baobab/commit/c56639532a923d9a1600fb863ec7551b188b5d19",
"source": "cna@vuldb.com",
"tags": [
"Patch",
"Third Party Advisory"
"Patch"
]
},
{
@ -132,7 +131,7 @@
"url": "https://github.com/Yomguithereal/baobab/releases/tag/2.6.1",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory"
"Release Notes"
]
},
{

20
CVE-2023/CVE-2023-433xx/CVE-2023-43305.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2023-43305",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-12-08T02:15:06.433",
"lastModified": "2023-12-08T02:15:06.433",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "An issue in studio kent mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/syz913/CVE-reports/blob/main/CVE-2023-43305.md",
"source": "cve@mitre.org"
}
]
}

20
CVE-2023/CVE-2023-437xx/CVE-2023-43742.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2023-43742",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-12-08T01:15:07.200",
"lastModified": "2023-12-08T01:15:07.200",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "An authentication bypass in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with firmware versions prior to 17.0.10 patch 17161 and 16.04 patch 16109 allows an unauthenticated attacker to obtain an administrative session via a protection mechanism failure in the authentication function. In normal operation, the Zultys MX Administrator Windows client connects to port 7505 and attempts authentication, submitting the administrator username and password to the server. Upon authentication failure, the server sends a login failure message prompting the client to disconnect. However, if the client ignores the failure message instead and attempts to continue, the server does not forcibly close the connection and processes all subsequent requests from the client as if authentication had been successful."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/atredispartners/advisories/blob/master/ATREDIS-2023-0002.md",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-437xx/CVE-2023-43743.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-43743",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-12-08T01:15:07.270",
"lastModified": "2023-12-08T01:15:07.270",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A SQL injection vulnerability in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with firmware versions prior to 17.0.10 patch 17161 and 16.04 patch 16109 allows an authenticated attacker to execute arbitrary SQL queries on the backend database via the filter parameter in requests to the /newapi/ endpoint in the Zultys MX web interface."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/atredispartners/advisories/blob/master/ATREDIS-2023-0002.md",
"source": "cve@mitre.org"
},
{
"url": "https://mxvirtual.com",
"source": "cve@mitre.org"
}
]
}

24
CVE-2023/CVE-2023-437xx/CVE-2023-43744.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-43744",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-12-08T01:15:07.337",
"lastModified": "2023-12-08T01:15:07.337",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "An OS command injection vulnerability in Zultys MX-SE, MX-SE II, MX-E, MX-Virtual, MX250, and MX30 with firmware versions prior to 17.0.10 patch 17161 and 16.04 patch 16109 allows an administrator to execute arbitrary OS commands via a file name parameter in a patch application function. The Zultys MX Administrator client has a \"Patch Manager\" section that allows administrators to apply patches to the device. The user supplied filename for the patch file is passed to a shell script without validation. Including bash command substitution characters in a patch file name results in execution of the provided command."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/atredispartners/advisories/blob/master/ATREDIS-2023-0002.md",
"source": "cve@mitre.org"
},
{
"url": "https://mxvirtual.com",
"source": "cve@mitre.org"
}
]
}

29
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-12-08T00:55:17.805304+00:00
2023-12-08T03:00:22.740247+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-12-08T00:15:08.113000+00:00
2023-12-08T02:15:06.433000+00:00
```
### Last Data Feed Release
@ -29,27 +29,30 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
232568
232572
```
### CVEs added in the last Commit
Recently added CVEs: `5`
Recently added CVEs: `4`
* [CVE-2023-4122](CVE-2023/CVE-2023-41xx/CVE-2023-4122.json) (`2023-12-07T23:15:07.277`)
* [CVE-2023-5058](CVE-2023/CVE-2023-50xx/CVE-2023-5058.json) (`2023-12-07T23:15:07.490`)
* [CVE-2023-5008](CVE-2023/CVE-2023-50xx/CVE-2023-5008.json) (`2023-12-08T00:15:07.597`)
* [CVE-2023-6061](CVE-2023/CVE-2023-60xx/CVE-2023-6061.json) (`2023-12-08T00:15:07.853`)
* [CVE-2023-6599](CVE-2023/CVE-2023-65xx/CVE-2023-6599.json) (`2023-12-08T00:15:08.113`)
* [CVE-2023-43742](CVE-2023/CVE-2023-437xx/CVE-2023-43742.json) (`2023-12-08T01:15:07.200`)
* [CVE-2023-43743](CVE-2023/CVE-2023-437xx/CVE-2023-43743.json) (`2023-12-08T01:15:07.270`)
* [CVE-2023-43744](CVE-2023/CVE-2023-437xx/CVE-2023-43744.json) (`2023-12-08T01:15:07.337`)
* [CVE-2023-43305](CVE-2023/CVE-2023-433xx/CVE-2023-43305.json) (`2023-12-08T02:15:06.433`)
### CVEs modified in the last Commit
Recently modified CVEs: `3`
Recently modified CVEs: `7`
* [CVE-2011-0448](CVE-2011/CVE-2011-04xx/CVE-2011-0448.json) (`2023-12-07T23:15:07.083`)
* [CVE-2023-5808](CVE-2023/CVE-2023-58xx/CVE-2023-5808.json) (`2023-12-07T23:15:07.580`)
* [CVE-2023-45849](CVE-2023/CVE-2023-458xx/CVE-2023-45849.json) (`2023-12-08T00:15:07.350`)
* [CVE-2014-125062](CVE-2014/CVE-2014-1250xx/CVE-2014-125062.json) (`2023-12-08T01:34:14.887`)
* [CVE-2014-125063](CVE-2014/CVE-2014-1250xx/CVE-2014-125063.json) (`2023-12-08T01:35:37.957`)
* [CVE-2014-125068](CVE-2014/CVE-2014-1250xx/CVE-2014-125068.json) (`2023-12-08T01:39:14.127`)
* [CVE-2020-36639](CVE-2020/CVE-2020-366xx/CVE-2020-36639.json) (`2023-12-08T01:26:49.777`)
* [CVE-2020-36646](CVE-2020/CVE-2020-366xx/CVE-2020-36646.json) (`2023-12-08T01:27:58.400`)
* [CVE-2021-4300](CVE-2021/CVE-2021-43xx/CVE-2021-4300.json) (`2023-12-08T01:23:26.550`)
* [CVE-2021-4307](CVE-2021/CVE-2021-43xx/CVE-2021-4307.json) (`2023-12-08T01:32:17.050`)
## Download and Usage