Auto-Update: 2023-11-21T13:00:18.592076+00:00

CVE-2023/CVE-2023-288xx/CVE-2023-28802.json

@@ -0,0 +1,59 @@
+{
+  "id": "CVE-2023-28802",
+  "sourceIdentifier": "cve@zscaler.com",
+  "published": "2023-11-21T11:15:08.633",
+  "lastModified": "2023-11-21T11:15:08.633",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An Improper Validation of Integrity Check Value in Zscaler Client Connector on Windows allows an authenticated user to disable ZIA/ZPA by interrupting the service restart from Zscaler Diagnostics. This issue affects Client Connector: before 4.2.0.149.\n\n"
+    },
+    {
+      "lang": "es",
+      "value": "Una validaci\u00f3n incorrecta del valor de verificaci\u00f3n de integridad en Zscaler Client Connector en Windows permite a un usuario autenticado deshabilitar ZIA/ZPA interrumpiendo el reinicio del servicio desde Zscaler Diagnostics. Este problema afecta a Client Connector: anterior a 4.2.0.149."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@zscaler.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
+          "attackVector": "PHYSICAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "NONE",
+          "baseScore": 4.9,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 0.7,
+        "impactScore": 4.2
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "cve@zscaler.com",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-354"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://help.zscaler.com/client-connector/client-connector-app-release-summary-2023?applicable_category=Windows&applicable_version=4.2",
+      "source": "cve@zscaler.com"
+    }
+  ]
+}

CVE-2023/CVE-2023-38xx/CVE-2023-3812.json

@@ -2,7 +2,7 @@
   "id": "CVE-2023-3812",
   "sourceIdentifier": "secalert@redhat.com",
   "published": "2023-07-24T16:15:13.337",
-  "lastModified": "2023-11-08T14:15:07.727",
+  "lastModified": "2023-11-21T11:15:09.253",
   "vulnStatus": "Modified",
   "descriptions": [
     {
@@ -138,6 +138,10 @@
       "url": "https://access.redhat.com/errata/RHSA-2023:6813",
       "source": "secalert@redhat.com"
     },
+    {
+      "url": "https://access.redhat.com/errata/RHSA-2023:7379",
+      "source": "secalert@redhat.com"
+    },
     {
       "url": "https://access.redhat.com/security/cve/CVE-2023-3812",
       "source": "secalert@redhat.com",

CVE-2023/CVE-2023-427xx/CVE-2023-42753.json

@@ -2,7 +2,7 @@
   "id": "CVE-2023-42753",
   "sourceIdentifier": "secalert@redhat.com",
   "published": "2023-09-25T21:15:15.923",
-  "lastModified": "2023-11-07T04:21:14.017",
+  "lastModified": "2023-11-21T11:15:09.420",
   "vulnStatus": "Modified",
   "descriptions": [
     {
@@ -37,7 +37,7 @@
         "impactScore": 5.9
       },
       {
-        "source": "53f830b8-0a3f-465b-8143-3b8a9948e749",
+        "source": "secalert@redhat.com",
         "type": "Secondary",
         "cvssData": {
           "version": "3.1",
@@ -70,7 +70,7 @@
       ]
     },
     {
-      "source": "53f830b8-0a3f-465b-8143-3b8a9948e749",
+      "source": "secalert@redhat.com",
       "type": "Secondary",
       "description": [
         {
@@ -139,6 +139,10 @@
     }
   ],
   "references": [
+    {
+      "url": "https://access.redhat.com/errata/RHSA-2023:7379",
+      "source": "secalert@redhat.com"
+    },
     {
       "url": "https://access.redhat.com/security/cve/CVE-2023-42753",
       "source": "secalert@redhat.com",

CVE-2023/CVE-2023-51xx/CVE-2023-5178.json

@@ -2,8 +2,8 @@
   "id": "CVE-2023-5178",
   "sourceIdentifier": "secalert@redhat.com",
   "published": "2023-11-01T17:15:11.920",
-  "lastModified": "2023-11-09T17:42:49.327",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2023-11-21T11:15:09.537",
+  "vulnStatus": "Modified",
   "descriptions": [
     {
       "lang": "en",
@@ -149,6 +149,10 @@
     }
   ],
   "references": [
+    {
+      "url": "https://access.redhat.com/errata/RHSA-2023:7379",
+      "source": "secalert@redhat.com"
+    },
     {
       "url": "https://access.redhat.com/security/cve/CVE-2023-5178",
       "source": "secalert@redhat.com",

README.md

@@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update
 
 ```plain
-2023-11-21T11:00:17.830456+00:00
+2023-11-21T13:00:18.592076+00:00
 ```
 
 ### Most recent CVE Modification Timestamp synchronized with NVD
 
 ```plain
-2023-11-21T10:15:08.210000+00:00
+2023-11-21T11:15:09.537000+00:00
 ```
 
 ### Last Data Feed Release
@@ -29,23 +29,23 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs
 
 ```plain
-231203
+231204
 ```
 
 ### CVEs added in the last Commit
 
-Recently added CVEs: `3`
+Recently added CVEs: `1`
 
-* [CVE-2023-5776](CVE-2023/CVE-2023-57xx/CVE-2023-5776.json) (`2023-11-21T09:15:07.467`)
-* [CVE-2023-5598](CVE-2023/CVE-2023-55xx/CVE-2023-5598.json) (`2023-11-21T10:15:07.900`)
-* [CVE-2023-5599](CVE-2023/CVE-2023-55xx/CVE-2023-5599.json) (`2023-11-21T10:15:08.210`)
+* [CVE-2023-28802](CVE-2023/CVE-2023-288xx/CVE-2023-28802.json) (`2023-11-21T11:15:08.633`)
 
 
 ### CVEs modified in the last Commit
 
-Recently modified CVEs: `1`
+Recently modified CVEs: `3`
 
-* [CVE-2023-4799](CVE-2023/CVE-2023-47xx/CVE-2023-4799.json) (`2023-11-21T09:15:07.360`)
+* [CVE-2023-3812](CVE-2023/CVE-2023-38xx/CVE-2023-3812.json) (`2023-11-21T11:15:09.253`)
+* [CVE-2023-42753](CVE-2023/CVE-2023-427xx/CVE-2023-42753.json) (`2023-11-21T11:15:09.420`)
+* [CVE-2023-5178](CVE-2023/CVE-2023-51xx/CVE-2023-5178.json) (`2023-11-21T11:15:09.537`)
 
 
 ## Download and Usage