Auto-Update: 2023-05-31T12:00:25.729941+00:00

CVE-2023/CVE-2023-29xx/CVE-2023-2909.json

@@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-2909",
+  "sourceIdentifier": "security@asustor.com",
+  "published": "2023-05-31T10:15:09.577",
+  "lastModified": "2023-05-31T10:15:09.577",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "EZ Sync service fails to adequately handle user input, allowing an attacker to navigate beyond the intended directory structure and delete files. Affected products and versions include: ADM 4.0.6.REG2, 4.1.0 and below as well as ADM 4.2.1.RGE2 and below."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@asustor.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "LOW",
+          "baseScore": 6.0,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@asustor.com",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-22"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.asustor.com/security/security_advisory_detail?id=25",
+      "source": "security@asustor.com"
+    }
+  ]
+}

README.md

@@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update
 
 ```plain
-2023-05-31T10:00:29.317910+00:00
+2023-05-31T12:00:25.729941+00:00
 ```
 
 ### Most recent CVE Modification Timestamp synchronized with NVD
 
 ```plain
-2023-05-31T09:15:10.743000+00:00
+2023-05-31T10:15:09.577000+00:00
 ```
 
 ### Last Data Feed Release
@@ -29,35 +29,20 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs
 
 ```plain
-216486
+216487
 ```
 
 ### CVEs added in the last Commit
 
-Recently added CVEs: `4`
+Recently added CVEs: `1`
 
-* [CVE-2023-2749](CVE-2023/CVE-2023-27xx/CVE-2023-2749.json) (`2023-05-31T09:15:10.490`)
-* [CVE-2023-3003](CVE-2023/CVE-2023-30xx/CVE-2023-3003.json) (`2023-05-31T09:15:10.600`)
-* [CVE-2023-3004](CVE-2023/CVE-2023-30xx/CVE-2023-3004.json) (`2023-05-31T09:15:10.677`)
-* [CVE-2023-3005](CVE-2023/CVE-2023-30xx/CVE-2023-3005.json) (`2023-05-31T09:15:10.743`)
+* [CVE-2023-2909](CVE-2023/CVE-2023-29xx/CVE-2023-2909.json) (`2023-05-31T10:15:09.577`)
 
 
 ### CVEs modified in the last Commit
 
-Recently modified CVEs: `12`
+Recently modified CVEs: `0`
 
-* [CVE-2022-34397](CVE-2022/CVE-2022-343xx/CVE-2022-34397.json) (`2023-05-31T06:15:09.527`)
-* [CVE-2022-29831](CVE-2022/CVE-2022-298xx/CVE-2022-29831.json) (`2023-05-31T07:15:08.930`)
-* [CVE-2022-29832](CVE-2022/CVE-2022-298xx/CVE-2022-29832.json) (`2023-05-31T07:15:09.880`)
-* [CVE-2022-29833](CVE-2022/CVE-2022-298xx/CVE-2022-29833.json) (`2023-05-31T07:15:10.850`)
-* [CVE-2022-25164](CVE-2022/CVE-2022-251xx/CVE-2022-25164.json) (`2023-05-31T09:15:09.710`)
-* [CVE-2022-29825](CVE-2022/CVE-2022-298xx/CVE-2022-29825.json) (`2023-05-31T09:15:09.977`)
-* [CVE-2022-29826](CVE-2022/CVE-2022-298xx/CVE-2022-29826.json) (`2023-05-31T09:15:10.080`)
-* [CVE-2022-29827](CVE-2022/CVE-2022-298xx/CVE-2022-29827.json) (`2023-05-31T09:15:10.160`)
-* [CVE-2022-29828](CVE-2022/CVE-2022-298xx/CVE-2022-29828.json) (`2023-05-31T09:15:10.253`)
-* [CVE-2022-29829](CVE-2022/CVE-2022-298xx/CVE-2022-29829.json) (`2023-05-31T09:15:10.333`)
-* [CVE-2022-29830](CVE-2022/CVE-2022-298xx/CVE-2022-29830.json) (`2023-05-31T09:15:10.403`)
-* [CVE-2023-25934](CVE-2023/CVE-2023-259xx/CVE-2023-25934.json) (`2023-05-31T06:15:10.553`)
 
 
 ## Download and Usage