diff --git a/CVE-2023/CVE-2023-38xx/CVE-2023-3812.json b/CVE-2023/CVE-2023-38xx/CVE-2023-3812.json index aae20c7a4f7..5593cbfd57c 100644 --- a/CVE-2023/CVE-2023-38xx/CVE-2023-3812.json +++ b/CVE-2023/CVE-2023-38xx/CVE-2023-3812.json @@ -2,8 +2,8 @@ "id": "CVE-2023-3812", "sourceIdentifier": "secalert@redhat.com", "published": "2023-07-24T16:15:13.337", - "lastModified": "2023-12-29T16:07:05.697", - "vulnStatus": "Analyzed", + "lastModified": "2024-01-03T06:15:46.847", + "vulnStatus": "Modified", "descriptions": [ { "lang": "en", @@ -75,7 +75,7 @@ "description": [ { "lang": "en", - "value": "CWE-416" + "value": "CWE-787" } ] } diff --git a/CVE-2023/CVE-2023-423xx/CVE-2023-42358.json b/CVE-2023/CVE-2023-423xx/CVE-2023-42358.json new file mode 100644 index 00000000000..69f4cf64c82 --- /dev/null +++ b/CVE-2023/CVE-2023-423xx/CVE-2023-42358.json @@ -0,0 +1,20 @@ +{ + "id": "CVE-2023-42358", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-01-03T06:15:47.063", + "lastModified": "2024-01-03T06:15:47.063", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in O-RAN Software Community ric-plt-e2mgr in the G-Release environment, allows remote attackers to cause a denial of service (DoS) via a crafted request to the E2Manager API component." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://jira.o-ran-sc.org/browse/RIC-1009", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-463xx/CVE-2023-46308.json b/CVE-2023/CVE-2023-463xx/CVE-2023-46308.json new file mode 100644 index 00000000000..ff0a7d71434 --- /dev/null +++ b/CVE-2023/CVE-2023-463xx/CVE-2023-46308.json @@ -0,0 +1,24 @@ +{ + "id": "CVE-2023-46308", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-01-03T05:15:11.360", + "lastModified": "2024-01-03T05:15:11.360", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "In Plotly plotly.js before 2.25.2, plot API calls have a risk of __proto__ being polluted in expandObjectPaths or nestedProperty." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://github.com/plotly/plotly.js/releases/tag/v2.25.2", + "source": "cve@mitre.org" + }, + { + "url": "https://plotly.com/javascript/", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-65xx/CVE-2023-6524.json b/CVE-2023/CVE-2023-65xx/CVE-2023-6524.json new file mode 100644 index 00000000000..eb91d7a2a1c --- /dev/null +++ b/CVE-2023/CVE-2023-65xx/CVE-2023-6524.json @@ -0,0 +1,51 @@ +{ + "id": "CVE-2023-6524", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T06:15:47.120", + "lastModified": "2024-01-03T06:15:47.120", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The MapPress Maps for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the map title parameter in all versions up to and including 2.88.13 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with contributor access or higher to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 6.4, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 3.1, + "impactScore": 2.7 + } + ] + }, + "references": [ + { + "url": "https://advisory.abay.sh/cve-2023-6524", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3001436%40mappress-google-maps-for-wordpress%2Ftags%2F2.88.13&new=3015598%40mappress-google-maps-for-wordpress%2Ftags%2F2.88.14#file31", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/28a8f025-c2ab-4a5f-a99e-a2d19b14a190?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-66xx/CVE-2023-6600.json b/CVE-2023/CVE-2023-66xx/CVE-2023-6600.json new file mode 100644 index 00000000000..e7d08535f4d --- /dev/null +++ b/CVE-2023/CVE-2023-66xx/CVE-2023-6600.json @@ -0,0 +1,55 @@ +{ + "id": "CVE-2023-6600", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T06:15:47.337", + "lastModified": "2024-01-03T06:15:47.337", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The OMGF | GDPR/DSGVO Compliant, Faster Google Fonts. Easy. plugin for WordPress is vulnerable to unauthorized modification of data and Stored Cross-Site Scripting due to a missing capability check on the update_settings() function hooked via admin_init in all versions up to, and including, 5.7.9. This makes it possible for unauthenticated attackers to update the plugin's settings which can be used to inject Cross-Site Scripting payloads and delete entire directories. PLease note there were several attempted patched, and we consider 5.7.10 to be the most sufficiently patched." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "HIGH", + "baseScore": 8.6, + "baseSeverity": "HIGH" + }, + "exploitabilityScore": 3.9, + "impactScore": 4.7 + } + ] + }, + "references": [ + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3008876%40host-webfonts-local&new=3008876%40host-webfonts-local&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3009010%40host-webfonts-local&new=3009010%40host-webfonts-local&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3009453%40host-webfonts-local&new=3009453%40host-webfonts-local&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/4e835b97-c066-4e8f-b99f-1a930105af0c?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-66xx/CVE-2023-6629.json b/CVE-2023/CVE-2023-66xx/CVE-2023-6629.json new file mode 100644 index 00000000000..5aa47e69e52 --- /dev/null +++ b/CVE-2023/CVE-2023-66xx/CVE-2023-6629.json @@ -0,0 +1,51 @@ +{ + "id": "CVE-2023-6629", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T05:15:11.463", + "lastModified": "2024-01-03T05:15:11.463", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The POST SMTP Mailer \u2013 Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018msg\u2019 parameter in all versions up to, and including, 2.8.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 6.1, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 2.8, + "impactScore": 2.7 + } + ] + }, + "references": [ + { + "url": "https://plugins.trac.wordpress.org/browser/post-smtp/trunk/Postman/Wizard/NewWizard.php#L396", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3012318%40post-smtp%2Ftrunk&old=3006604%40post-smtp%2Ftrunk&sfp_email=&sfph_mail=#file4", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7681f984-d488-4da7-afe1-988e5ad012f2?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-69xx/CVE-2023-6980.json b/CVE-2023/CVE-2023-69xx/CVE-2023-6980.json new file mode 100644 index 00000000000..33df0fadefb --- /dev/null +++ b/CVE-2023/CVE-2023-69xx/CVE-2023-6980.json @@ -0,0 +1,51 @@ +{ + "id": "CVE-2023-6980", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T06:15:47.500", + "lastModified": "2024-01-03T06:15:47.500", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The WP SMS \u2013 Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.5. This is due to missing or incorrect nonce validation on the 'delete' action of the wp-sms-subscribers page. This makes it possible for unauthenticated attackers to delete subscribers via a forged request granted they can trick a site administrator into performing an action such as clicking on a link." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 4.3, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ] + }, + "references": [ + { + "url": "https://github.com/wp-sms/wp-sms/commit/0f36e2f521ade8ddfb3e04786defe074370afb50", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3015006%40wp-sms&new=3015006%40wp-sms&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/94ad6b51-ff8d-48d5-9a70-1781d13990a5?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-69xx/CVE-2023-6981.json b/CVE-2023/CVE-2023-69xx/CVE-2023-6981.json new file mode 100644 index 00000000000..7962eb2034f --- /dev/null +++ b/CVE-2023/CVE-2023-69xx/CVE-2023-6981.json @@ -0,0 +1,51 @@ +{ + "id": "CVE-2023-6981", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T06:15:47.663", + "lastModified": "2024-01-03T06:15:47.663", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The WP SMS \u2013 Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin for WordPress is vulnerable to SQL Injection via the 'group_id' parameter in all versions up to, and including, 6.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with contributor-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. This can leveraged to achieve Reflected Cross-site Scripting." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 6.1, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 2.8, + "impactScore": 2.7 + } + ] + }, + "references": [ + { + "url": "https://github.com/wp-sms/wp-sms/commit/6656de201efe67c7983102c344a546eed976a819", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3015006%40wp-sms&new=3015006%40wp-sms&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/b8f53053-5150-4fba-b8d6-3d6c9df32c69?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-70xx/CVE-2023-7027.json b/CVE-2023/CVE-2023-70xx/CVE-2023-7027.json new file mode 100644 index 00000000000..4c6095c9ff4 --- /dev/null +++ b/CVE-2023/CVE-2023-70xx/CVE-2023-7027.json @@ -0,0 +1,55 @@ +{ + "id": "CVE-2023-7027", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-01-03T05:15:11.700", + "lastModified": "2024-01-03T05:15:11.700", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "The POST SMTP Mailer \u2013 Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018device\u2019 header in all versions up to, and including, 2.8.7 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 7.2, + "baseSeverity": "HIGH" + }, + "exploitabilityScore": 3.9, + "impactScore": 2.7 + } + ] + }, + "references": [ + { + "url": "https://plugins.trac.wordpress.org/browser/post-smtp/trunk/Postman/Mobile/includes/rest-api/v1/rest-api.php#L79", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/browser/post-smtp/trunk/Postman/Mobile/mobile.php#L219", + "source": "security@wordfence.com" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3016126%40post-smtp%2Ftrunk&old=3012318%40post-smtp%2Ftrunk&sfp_email=&sfph_mail=", + "source": "security@wordfence.com" + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/7e8911a3-ce0f-420c-bf2a-1c2929d01cef?source=cve", + "source": "security@wordfence.com" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index 86b80ac3e75..aaa168dc82a 100644 --- a/README.md +++ b/README.md @@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-01-03T05:00:25.105272+00:00 +2024-01-03T07:00:25.448954+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-01-03T04:54:46.117000+00:00 +2024-01-03T06:15:47.663000+00:00 ``` ### Last Data Feed Release @@ -29,51 +29,28 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -234749 +234757 ``` ### CVEs added in the last Commit -Recently added CVEs: `7` +Recently added CVEs: `8` -* [CVE-2023-45722](CVE-2023/CVE-2023-457xx/CVE-2023-45722.json) (`2024-01-03T03:15:09.200`) -* [CVE-2023-45723](CVE-2023/CVE-2023-457xx/CVE-2023-45723.json) (`2024-01-03T03:15:09.380`) -* [CVE-2023-45724](CVE-2023/CVE-2023-457xx/CVE-2023-45724.json) (`2024-01-03T03:15:09.537`) -* [CVE-2023-50341](CVE-2023/CVE-2023-503xx/CVE-2023-50341.json) (`2024-01-03T03:15:10.127`) -* [CVE-2023-50342](CVE-2023/CVE-2023-503xx/CVE-2023-50342.json) (`2024-01-03T03:15:10.817`) -* [CVE-2023-50343](CVE-2023/CVE-2023-503xx/CVE-2023-50343.json) (`2024-01-03T03:15:11.210`) -* [CVE-2023-50344](CVE-2023/CVE-2023-503xx/CVE-2023-50344.json) (`2024-01-03T03:15:11.373`) +* [CVE-2023-46308](CVE-2023/CVE-2023-463xx/CVE-2023-46308.json) (`2024-01-03T05:15:11.360`) +* [CVE-2023-6629](CVE-2023/CVE-2023-66xx/CVE-2023-6629.json) (`2024-01-03T05:15:11.463`) +* [CVE-2023-7027](CVE-2023/CVE-2023-70xx/CVE-2023-7027.json) (`2024-01-03T05:15:11.700`) +* [CVE-2023-42358](CVE-2023/CVE-2023-423xx/CVE-2023-42358.json) (`2024-01-03T06:15:47.063`) +* [CVE-2023-6524](CVE-2023/CVE-2023-65xx/CVE-2023-6524.json) (`2024-01-03T06:15:47.120`) +* [CVE-2023-6600](CVE-2023/CVE-2023-66xx/CVE-2023-6600.json) (`2024-01-03T06:15:47.337`) +* [CVE-2023-6980](CVE-2023/CVE-2023-69xx/CVE-2023-6980.json) (`2024-01-03T06:15:47.500`) +* [CVE-2023-6981](CVE-2023/CVE-2023-69xx/CVE-2023-6981.json) (`2024-01-03T06:15:47.663`) ### CVEs modified in the last Commit -Recently modified CVEs: `25` +Recently modified CVEs: `1` -* [CVE-2023-51661](CVE-2023/CVE-2023-516xx/CVE-2023-51661.json) (`2024-01-03T03:03:04.737`) -* [CVE-2023-45957](CVE-2023/CVE-2023-459xx/CVE-2023-45957.json) (`2024-01-03T03:06:41.180`) -* [CVE-2023-50712](CVE-2023/CVE-2023-507xx/CVE-2023-50712.json) (`2024-01-03T03:12:23.060`) -* [CVE-2023-49933](CVE-2023/CVE-2023-499xx/CVE-2023-49933.json) (`2024-01-03T03:15:09.697`) -* [CVE-2023-49934](CVE-2023/CVE-2023-499xx/CVE-2023-49934.json) (`2024-01-03T03:15:09.803`) -* [CVE-2023-49935](CVE-2023/CVE-2023-499xx/CVE-2023-49935.json) (`2024-01-03T03:15:09.867`) -* [CVE-2023-49936](CVE-2023/CVE-2023-499xx/CVE-2023-49936.json) (`2024-01-03T03:15:09.927`) -* [CVE-2023-49937](CVE-2023/CVE-2023-499xx/CVE-2023-49937.json) (`2024-01-03T03:15:09.990`) -* [CVE-2023-49938](CVE-2023/CVE-2023-499xx/CVE-2023-49938.json) (`2024-01-03T03:15:10.053`) -* [CVE-2023-51035](CVE-2023/CVE-2023-510xx/CVE-2023-51035.json) (`2024-01-03T03:15:54.027`) -* [CVE-2023-51034](CVE-2023/CVE-2023-510xx/CVE-2023-51034.json) (`2024-01-03T03:17:07.367`) -* [CVE-2023-50725](CVE-2023/CVE-2023-507xx/CVE-2023-50725.json) (`2024-01-03T03:20:02.863`) -* [CVE-2023-50727](CVE-2023/CVE-2023-507xx/CVE-2023-50727.json) (`2024-01-03T03:25:51.337`) -* [CVE-2023-7155](CVE-2023/CVE-2023-71xx/CVE-2023-7155.json) (`2024-01-03T04:49:27.117`) -* [CVE-2023-7149](CVE-2023/CVE-2023-71xx/CVE-2023-7149.json) (`2024-01-03T04:49:35.240`) -* [CVE-2023-7143](CVE-2023/CVE-2023-71xx/CVE-2023-7143.json) (`2024-01-03T04:53:01.273`) -* [CVE-2023-7142](CVE-2023/CVE-2023-71xx/CVE-2023-7142.json) (`2024-01-03T04:53:10.423`) -* [CVE-2023-7141](CVE-2023/CVE-2023-71xx/CVE-2023-7141.json) (`2024-01-03T04:53:19.940`) -* [CVE-2023-7140](CVE-2023/CVE-2023-71xx/CVE-2023-7140.json) (`2024-01-03T04:53:29.893`) -* [CVE-2023-7139](CVE-2023/CVE-2023-71xx/CVE-2023-7139.json) (`2024-01-03T04:53:39.277`) -* [CVE-2023-7138](CVE-2023/CVE-2023-71xx/CVE-2023-7138.json) (`2024-01-03T04:53:48.110`) -* [CVE-2023-7137](CVE-2023/CVE-2023-71xx/CVE-2023-7137.json) (`2024-01-03T04:53:54.747`) -* [CVE-2023-7136](CVE-2023/CVE-2023-71xx/CVE-2023-7136.json) (`2024-01-03T04:54:01.213`) -* [CVE-2023-7135](CVE-2023/CVE-2023-71xx/CVE-2023-7135.json) (`2024-01-03T04:54:08.240`) -* [CVE-2023-7134](CVE-2023/CVE-2023-71xx/CVE-2023-7134.json) (`2024-01-03T04:54:46.117`) +* [CVE-2023-3812](CVE-2023/CVE-2023-38xx/CVE-2023-3812.json) (`2024-01-03T06:15:46.847`) ## Download and Usage