admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-07 19:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-06-27T20:00:29.951267+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-06-27 20:00:33 +00:00
parent 97bcba6c6a
commit a49083d3b8
146 changed files with 3810 additions and 417 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
CVE-2016/CVE-2016-14xx/CVE-2016-1469.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2016-1469",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2016-09-12T01:59:00.130",
"lastModified": "2017-08-13T01:29:04.630",
"vulnStatus": "Modified",
"lastModified": "2023-06-27T19:04:12.417",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
@ -85,15 +85,15 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:spa300_series_ip_phone_firmware:*:*:*:*:*:*:*:*",
"criteria": "cpe:2.3:o:cisco:spa300_firmware:*:*:*:*:*:*:*:*",
"versionEndIncluding": "7.5.7\\(6\\)",
"matchCriteriaId": "58FF868E-F9B0-4B6E-AE33-AF6C9AFAF85C"
"matchCriteriaId": "39A162FD-7521-49BB-8172-54B454C04B06"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:spa500_series_ip_phone_firmware:*:*:*:*:*:*:*:*",
"criteria": "cpe:2.3:o:cisco:spa500_firmware:*:*:*:*:*:*:*:*",
"versionEndIncluding": "7.5.7\\(6\\)",
"matchCriteriaId": "0D1FDF9D-9694-4FCA-9083-B5D45CFEB6DF"
"matchCriteriaId": "BF0DC0B7-B29F-4801-8DA1-A0AEA5212643"
}
]
},
@ -126,11 +126,19 @@
},
{
"url": "http://www.securityfocus.com/bid/92706",
"source": "ykramarz@cisco.com"
"source": "ykramarz@cisco.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "http://www.securitytracker.com/id/1036717",
"source": "ykramarz@cisco.com"
"source": "ykramarz@cisco.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

18
CVE-2017/CVE-2017-122xx/CVE-2017-12271.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2017-12271",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2017-10-19T08:29:00.343",
"lastModified": "2019-10-09T23:22:48.480",
"vulnStatus": "Modified",
"lastModified": "2023-06-27T19:04:05.580",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -15,13 +15,13 @@
}
],
"metrics": {
"cvssMetricV30": [
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
@ -95,15 +95,15 @@
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:spa300_series_ip_phone_firmware:*:*:*:*:*:*:*:*",
"criteria": "cpe:2.3:o:cisco:spa300_firmware:*:*:*:*:*:*:*:*",
"versionEndIncluding": "7.5.5",
"matchCriteriaId": "E83C8C0F-44B9-45EE-89F6-D6816798FEB3"
"matchCriteriaId": "54E8EE6D-95F2-4113-B4A7-E4AD08802FAA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:cisco:spa500_series_ip_phone_firmware:*:*:*:*:*:*:*:*",
"criteria": "cpe:2.3:o:cisco:spa500_firmware:*:*:*:*:*:*:*:*",
"versionEndIncluding": "7.5.5",
"matchCriteriaId": "652557CC-B876-4883-9BEA-E3C0C11B65B9"
"matchCriteriaId": "2D315F30-406A-4709-828B-15FDE52A5BFE"
}
]
},

8
CVE-2020/CVE-2020-115xx/CVE-2020-11560.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2020-11560",
"sourceIdentifier": "cve@mitre.org",
"published": "2020-04-07T17:15:14.260",
"lastModified": "2020-04-08T13:15:28.363",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-27T18:15:10.077",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
@ -93,6 +93,10 @@
}
],
"references": [
{
"url": "http://packetstormsecurity.com/files/173117/NCH-Express-Invoice-7.25-Cleartext-Password.html",
"source": "cve@mitre.org"
},
{
"url": "https://tejaspingulkar.blogspot.com/2020/03/cve-cve-2020-11560-title-clear-text.html",
"source": "cve@mitre.org",

24
CVE-2020/CVE-2020-184xx/CVE-2020-18418.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2020-18418",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-27T19:15:09.047",
"lastModified": "2023-06-27T19:15:09.047",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A Cross site request forgery (CSRF) vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/GodEpic/Vulnerability-detection/blob/master/feifeicms/FeiFeiCMS_4.1_csrf.doc",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/GodEpic/Vulnerability-detection/blob/master/feifeicms/poc",
"source": "cve@mitre.org"
}
]
}

64
CVE-2020/CVE-2020-200xx/CVE-2020-20067.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-20067",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.213",
"lastModified": "2023-06-20T15:49:15.587",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T19:53:37.577",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File upload vulnerability in ebCMS v.1.1.0 allows a remote attacker to execute arbitrary code via the upload type parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:ebcms:ebcms:1.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "31A5127B-242B-4204-90FD-AE076280DA03"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/a932278490/ebcms/issues/1",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-207xx/CVE-2020-20726.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-20726",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.720",
"lastModified": "2023-06-20T15:49:15.587",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:16:58.837",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execute arbitrary code via the cm/update_rows/user parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gilacms:gila_cms:1.11.4:*:*:*:*:*:*:*",
"matchCriteriaId": "404DFD9F-C26A-47BB-8D9F-E3D06BA5DEA2"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/GilaCMS/gila/issues/51",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

63
CVE-2020/CVE-2020-207xx/CVE-2020-20735.json
View File

@ -2,19 +2,74 @@
"id": "CVE-2020-20735",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.767",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:13:46.647",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File Upload vulnerability in LJCMS v.4.3.R60321 allows a remote attacker to execute arbitrary code via the ljcms/index.php parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:8cms:ljcms:4.3.r60321:*:*:*:*:*:*:*",
"matchCriteriaId": "B7EE05E9-F2AE-45ED-80CC-E89578F85CB5"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/0xyu/PHP_Learning/issues/2",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Broken Link"
]
}
]
}

65
CVE-2020/CVE-2020-209xx/CVE-2020-20918.json
View File

@ -2,19 +2,76 @@
"id": "CVE-2020-20918",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.810",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:34:33.430",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary php code via the hidden parameter to admin.php when editing a page."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pluck-cms:pluck:4.7.10:dev2:*:*:*:*:*:*",
"matchCriteriaId": "960CA1A9-1510-488A-82C2-14AFA3AF7FBE"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/pluck-cms/pluck/issues/80",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
}
]
}

64
CVE-2020/CVE-2020-209xx/CVE-2020-20919.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-20919",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.857",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:12:34.537",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File upload vulnerability in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary code and access sensitive information via the theme.php file."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pluck-cms:pluck:4.7.10:dev2:*:*:*:*:*:*",
"matchCriteriaId": "960CA1A9-1510-488A-82C2-14AFA3AF7FBE"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/pluck-cms/pluck/issues/85",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

65
CVE-2020/CVE-2020-209xx/CVE-2020-20969.json
View File

@ -2,19 +2,76 @@
"id": "CVE-2020-20969",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.900",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:10:46.037",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File Upload vulnerability in PluckCMS v.4.7.10 allows a remote attacker to execute arbitrary code via the trashcan_restoreitem.php file."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:pluck-cms:pluck:4.7.10:-:*:*:*:*:*:*",
"matchCriteriaId": "00EE308A-BD13-4E84-BB56-D890CB35E07A"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/pluck-cms/pluck/issues/86",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
}
]
}

64
CVE-2020/CVE-2020-210xx/CVE-2020-21052.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21052",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.947",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:07:35.677",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Scripting vulnerability in zrlog zrlog v.2.1.3 allows a remote attacker to execute arbitrary code via the nickame parameter of the /post/addComment function."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:zrlog:zrlog:2.1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "1E79549A-322A-43AB-956A-653C832A9F1A"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/94fzb/zrlog/issues/56",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

65
CVE-2020/CVE-2020-210xx/CVE-2020-21058.json
View File

@ -2,19 +2,76 @@
"id": "CVE-2020-21058",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:10.987",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:06:38.877",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Scripting vulnerability in Typora v.0.9.79 allows a remote attacker to execute arbitrary code via the mermaid sytax."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:typora:typora:0.9.79:-:*:*:*:*:*:*",
"matchCriteriaId": "4F41755C-3741-4350-BE43-6D6C80B291AE"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/typora/typora-issues/issues/2959",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
}
]
}

64
CVE-2020/CVE-2020-212xx/CVE-2020-21268.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21268",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.167",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:30:26.453",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Scripting vulnerability in EasySoft ZenTao v.11.6.4 allows a remote attacker to execute arbitrary code via the lastComment parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:easycorp:zentao:11.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "15A537F3-E868-4474-AF70-621BB672D208"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/easysoft/zentaopms/issues/40",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-213xx/CVE-2020-21325.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21325",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.210",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:29:41.607",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "An issue in WUZHI CMS v.4.1.0 allows a remote attacker to execute arbitrary code via the set_chache method of the function\\common.func.php file."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:wuzhicms:wuzhicms:4.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2B76E69A-B2F3-4359-A7C0-046CEE2FAEEB"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/wuzhicms/wuzhicms/issues/188",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-213xx/CVE-2020-21366.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21366",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.253",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:27:46.230",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Request Forgery vulnerability in GreenCMS v.2.3 allows an attacker to gain privileges via the adduser function of index.php."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.1,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:njtech:greencms:2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "7271D633-9BD0-4E2B-BA69-E732E3E19D43"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/GreenCMS/GreenCMS/issues/115",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-214xx/CVE-2020-21400.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21400",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.297",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:26:54.013",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "SQL injection vulnerability in gaozhifeng PHPMyWind v.5.6 allows a remote attacker to execute arbitrary code via the id variable in the modify function."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpmywind:phpmywind:5.6:*:*:*:*:*:*:*",
"matchCriteriaId": "7B3A030C-77BA-4095-9EFC-7B1109E570CB"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/gaozhifeng/PHPMyWind/issues/11",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-214xx/CVE-2020-21474.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21474",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.337",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:25:16.550",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File Upload vulnerability in NucleusCMS v.3.71 allows a remote attacker to execute arbitrary code via the /nucleus/plugins/skinfiles/?dir=rsd parameter."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:nucleuscms:nucleuscms:3.71:*:*:*:*:*:*:*",
"matchCriteriaId": "37BF1BD0-7BC5-419C-A015-BFC0AA4D60C7"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/NucleusCMS/NucleusCMS/issues/95",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-214xx/CVE-2020-21485.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21485",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.380",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:24:43.507",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "Cross Site Scripting vulnerability in Alluxio v.1.8.1 allows a remote attacker to executea arbitrary code via the path parameter in the browse board component."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:alluxio:alluxio:1.8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A84C9C64-DC86-4B8C-94B8-B172CA9627C5"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/Alluxio/alluxio/issues/10552",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

64
CVE-2020/CVE-2020-214xx/CVE-2020-21486.json
View File

@ -2,19 +2,75 @@
"id": "CVE-2020-21486",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.430",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:18:44.007",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "SQL injection vulnerability in PHPOK v.5.4. allows a remote attacker to obtain sensitive information via the _userlist function in framerwork/phpok_call.php file."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:phpok:phpok:5.4:*:*:*:*:*:*:*",
"matchCriteriaId": "A6F89D2F-35CC-4141-8766-4AD6332FD7E2"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/qinggan/phpok/issues/8",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking"
]
}
]
}

65
CVE-2020/CVE-2020-214xx/CVE-2020-21489.json
View File

@ -2,19 +2,76 @@
"id": "CVE-2020-21489",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-20T15:15:11.470",
"lastModified": "2023-06-20T15:49:08.960",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-27T18:17:36.937",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "File Upload vulnerability in Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:feehi:feehicms:2.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "4AEB1B4F-33FF-4363-BB98-B7151666907B"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/liufee/cms/issues/46",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Issue Tracking",
"Patch"
]
}
]
}

12
CVE-2022/CVE-2022-04xx/CVE-2022-0439.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-0439",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-03-07T09:15:09.613",
"lastModified": "2023-06-26T18:57:03.223",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-27T18:15:10.923",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
@ -65,7 +65,7 @@
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"source": "contact@wpscan.com",
"type": "Primary",
"description": [
{
@ -79,9 +79,13 @@
]
},
{
"source": "contact@wpscan.com",
"source": "nvd@nist.gov",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-352"
},
{
"lang": "en",
"value": "CWE-89"

4
CVE-2022/CVE-2022-07xx/CVE-2022-0732.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0732",
"sourceIdentifier": "cret@cert.org",
"published": "2022-02-24T16:15:08.070",
"lastModified": "2022-03-08T15:54:28.397",
"lastModified": "2023-06-27T18:11:52.730",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-639"
}
]
},

4
CVE-2022/CVE-2022-07xx/CVE-2022-0736.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0736",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-02-23T09:15:14.420",
"lastModified": "2022-03-02T02:58:33.750",
"lastModified": "2023-06-27T18:13:22.300",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-668"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-07xx/CVE-2022-0755.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0755",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-03-07T13:15:08.020",
"lastModified": "2022-03-11T17:54:03.740",
"lastModified": "2023-06-27T18:11:37.507",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-287"
"value": "CWE-862"
}
]
},

4
CVE-2022/CVE-2022-07xx/CVE-2022-0756.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0756",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-03-07T13:15:08.077",
"lastModified": "2022-03-11T17:56:34.320",
"lastModified": "2023-06-27T18:11:24.557",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-862"
}
]
},

4
CVE-2022/CVE-2022-09xx/CVE-2022-0905.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-0905",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-03-10T15:15:10.607",
"lastModified": "2022-03-21T13:51:47.337",
"lastModified": "2023-06-27T18:11:17.467",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-862"
}
]
},

4
CVE-2022/CVE-2022-207xx/CVE-2022-20703.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20703",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-02-10T18:15:09.197",
"lastModified": "2022-03-29T16:06:03.993",
"lastModified": "2023-06-27T18:13:54.517",
"vulnStatus": "Analyzed",
"cisaExploitAdd": "2022-03-03",
"cisaActionDue": "2022-03-17",
@ -96,7 +96,7 @@
"description": [
{
"lang": "en",
"value": "CWE-787"
"value": "CWE-295"
}
]
},

4
CVE-2022/CVE-2022-207xx/CVE-2022-20708.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20708",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-02-10T18:15:09.467",
"lastModified": "2022-03-29T16:08:12.377",
"lastModified": "2023-06-27T18:13:45.523",
"vulnStatus": "Analyzed",
"cisaExploitAdd": "2022-03-03",
"cisaActionDue": "2022-03-17",
@ -96,7 +96,7 @@
"description": [
{
"lang": "en",
"value": "CWE-787"
"value": "CWE-78"
}
]
},

4
CVE-2022/CVE-2022-207xx/CVE-2022-20716.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20716",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-04-15T15:15:13.063",
"lastModified": "2022-05-13T17:50:42.250",
"lastModified": "2023-06-27T19:00:51.187",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-207xx/CVE-2022-20748.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20748",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-05-03T04:15:09.627",
"lastModified": "2022-05-13T02:12:36.183",
"lastModified": "2023-06-27T19:00:32.350",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-400"
"value": "CWE-755"
}
]
},

4
CVE-2022/CVE-2022-207xx/CVE-2022-20796.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20796",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-05-04T17:15:08.797",
"lastModified": "2022-07-01T18:56:23.383",
"lastModified": "2023-06-27T19:00:25.380",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -92,7 +92,7 @@
"description": [
{
"lang": "en",
"value": "CWE-119"
"value": "CWE-476"
}
]
},

4
CVE-2022/CVE-2022-208xx/CVE-2022-20847.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20847",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-09-30T19:15:12.247",
"lastModified": "2022-10-05T16:17:46.593",
"lastModified": "2023-06-27T18:22:16.177",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -67,7 +67,7 @@
"description": [
{
"lang": "en",
"value": "CWE-400"
"value": "NVD-CWE-noinfo"
}
]
},

4
CVE-2022/CVE-2022-208xx/CVE-2022-20848.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20848",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-09-30T19:15:12.430",
"lastModified": "2023-05-22T18:57:24.750",
"lastModified": "2023-06-27T18:22:09.460",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -67,7 +67,7 @@
"description": [
{
"lang": "en",
"value": "CWE-400"
"value": "NVD-CWE-noinfo"
}
]
},

4
CVE-2022/CVE-2022-208xx/CVE-2022-20852.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20852",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-08-10T09:15:08.647",
"lastModified": "2022-08-12T18:17:46.290",
"lastModified": "2023-06-27T18:27:06.827",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -67,7 +67,7 @@
"description": [
{
"lang": "en",
"value": "CWE-20"
"value": "CWE-1021"
}
]
},

4
CVE-2022/CVE-2022-208xx/CVE-2022-20857.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-20857",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2022-07-21T04:15:10.180",
"lastModified": "2022-07-27T19:18:31.530",
"lastModified": "2023-06-27T18:27:29.150",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -67,7 +67,7 @@
"description": [
{
"lang": "en",
"value": "CWE-78"
"value": "CWE-306"
}
]
},

14
CVE-2022/CVE-2022-20xx/CVE-2022-2088.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2088",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2022-06-27T17:15:09.133",
"lastModified": "2022-07-07T13:12:55.940",
"lastModified": "2023-06-27T18:18:43.830",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "ics-cert@hq.dhs.gov",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-20xx/CVE-2022-2099.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2099",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-07-17T11:15:08.617",
"lastModified": "2022-07-18T13:46:49.707",
"lastModified": "2023-06-27T18:30:20.997",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,8 +65,18 @@
},
"weaknesses": [
{
"source": "contact@wpscan.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-116"
}
]
},
{
"source": "contact@wpscan.com",
"type": "Secondary",
"description": [
{
"lang": "en",

8
CVE-2022/CVE-2022-216xx/CVE-2022-21663.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21663",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-01-06T23:15:08.067",
"lastModified": "2023-02-10T02:54:22.017",
"lastModified": "2023-06-27T19:03:59.090",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,17 +85,17 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-74"
"value": "CWE-502"
}
]
},
{
"source": "nvd@nist.gov",
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{

8
CVE-2022/CVE-2022-216xx/CVE-2022-21676.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21676",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-01-12T19:15:09.217",
"lastModified": "2023-02-10T16:23:45.350",
"lastModified": "2023-06-27T19:03:32.220",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,17 +85,17 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-754"
"value": "CWE-755"
}
]
},
{
"source": "nvd@nist.gov",
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{

4
CVE-2022/CVE-2022-218xx/CVE-2022-21825.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21825",
"sourceIdentifier": "support@hackerone.com",
"published": "2022-02-09T23:15:18.330",
"lastModified": "2022-02-15T20:01:27.553",
"lastModified": "2023-06-27T19:02:15.053",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-219xx/CVE-2022-21939.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21939",
"sourceIdentifier": "productsecurity@jci.com",
"published": "2023-02-09T21:15:11.123",
"lastModified": "2023-02-17T19:46:23.070",
"lastModified": "2023-06-27T18:19:36.620",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -61,7 +61,7 @@
"description": [
{
"lang": "en",
"value": "CWE-79"
"value": "CWE-732"
}
]
},

4
CVE-2022/CVE-2022-219xx/CVE-2022-21940.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21940",
"sourceIdentifier": "productsecurity@jci.com",
"published": "2023-02-09T21:15:11.213",
"lastModified": "2023-02-17T16:35:34.053",
"lastModified": "2023-06-27T18:19:03.417",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -61,7 +61,7 @@
"description": [
{
"lang": "en",
"value": "CWE-79"
"value": "CWE-311"
}
]
},

14
CVE-2022/CVE-2022-219xx/CVE-2022-21947.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-21947",
"sourceIdentifier": "meissner@suse.de",
"published": "2022-04-01T07:15:07.407",
"lastModified": "2022-04-11T19:16:37.640",
"lastModified": "2023-06-27T19:01:22.790",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "meissner@suse.de",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-668"
}
]
},
{
"source": "meissner@suse.de",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-21xx/CVE-2022-2106.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2106",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2022-06-27T17:15:09.223",
"lastModified": "2022-07-06T20:24:07.343",
"lastModified": "2023-06-27T18:30:44.383",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "ics-cert@hq.dhs.gov",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
},
{
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary",
"description": [
{
"lang": "en",

9
CVE-2022/CVE-2022-21xx/CVE-2022-2124.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-2124",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-06-19T10:15:09.210",
"lastModified": "2023-05-03T12:15:41.697",
"vulnStatus": "Modified",
"lastModified": "2023-06-27T18:59:52.197",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -266,7 +266,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202305-16",
"source": "security@huntr.dev"
"source": "security@huntr.dev",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://support.apple.com/kb/HT213443",

14
CVE-2022/CVE-2022-21xx/CVE-2022-2134.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2134",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-06-20T15:15:13.497",
"lastModified": "2022-06-28T14:22:55.800",
"lastModified": "2023-06-27T18:58:56.730",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -87,8 +87,18 @@
},
"weaknesses": [
{
"source": "security@huntr.dev",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-770"
}
]
},
{
"source": "security@huntr.dev",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-21xx/CVE-2022-2146.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2146",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-07-17T11:15:08.947",
"lastModified": "2022-07-18T11:33:44.437",
"lastModified": "2023-06-27T18:30:16.130",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,8 +65,18 @@
},
"weaknesses": [
{
"source": "contact@wpscan.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
},
{
"source": "contact@wpscan.com",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-221xx/CVE-2022-22166.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22166",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-01-19T01:15:08.847",
"lastModified": "2022-01-26T18:03:59.567",
"lastModified": "2023-06-27T18:58:45.493",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-20"
"value": "CWE-1284"
}
]
},

14
CVE-2022/CVE-2022-221xx/CVE-2022-22183.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22183",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-04-14T16:15:07.867",
"lastModified": "2022-04-23T02:25:44.757",
"lastModified": "2023-06-27T19:01:13.087",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "sirt@juniper.net",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "sirt@juniper.net",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-221xx/CVE-2022-22190.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22190",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-04-14T16:15:08.230",
"lastModified": "2022-04-21T09:46:03.720",
"lastModified": "2023-06-27T19:01:00.173",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-639"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22208.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22208",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-10-18T03:15:09.337",
"lastModified": "2022-10-20T20:21:21.957",
"lastModified": "2023-06-27T18:22:01.757",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -45,7 +45,7 @@
"description": [
{
"lang": "en",
"value": "CWE-416"
"value": "CWE-362"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22231.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22231",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-10-18T03:15:10.270",
"lastModified": "2022-10-21T16:57:14.567",
"lastModified": "2023-06-27T18:20:30.590",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -45,7 +45,7 @@
"description": [
{
"lang": "en",
"value": "CWE-476"
"value": "CWE-252"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22233.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22233",
"sourceIdentifier": "sirt@juniper.net",
"published": "2022-10-18T03:15:10.407",
"lastModified": "2022-10-21T17:10:20.467",
"lastModified": "2023-06-27T18:20:25.707",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-476"
"value": "CWE-252"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22265.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22265",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-01-10T14:12:35.837",
"lastModified": "2022-01-14T17:04:10.573",
"lastModified": "2023-06-27T19:03:49.690",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-755"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22272.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22272",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-01-10T14:12:42.453",
"lastModified": "2022-01-15T02:29:13.407",
"lastModified": "2023-06-27T19:04:22.667",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22282.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22282",
"sourceIdentifier": "PSIRT@sonicwall.com",
"published": "2022-05-13T20:15:08.133",
"lastModified": "2022-07-21T13:29:49.617",
"lastModified": "2023-06-27T19:00:12.037",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-862"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-222xx/CVE-2022-22288.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22288",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-01-10T14:12:47.197",
"lastModified": "2022-01-19T16:15:59.080",
"lastModified": "2023-06-27T19:03:39.753",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

14
CVE-2022/CVE-2022-225xx/CVE-2022-22521.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22521",
"sourceIdentifier": "info@cert.vde.com",
"published": "2022-04-27T16:15:11.737",
"lastModified": "2022-05-12T19:43:14.907",
"lastModified": "2023-06-27T19:00:38.817",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "info@cert.vde.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-732"
}
]
},
{
"source": "info@cert.vde.com",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-227xx/CVE-2022-22734.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22734",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-03-14T15:15:10.973",
"lastModified": "2022-03-21T16:17:55.507",
"lastModified": "2023-06-27T19:01:31.237",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-352"
"value": "CWE-116"
}
]
},

4
CVE-2022/CVE-2022-229xx/CVE-2022-22985.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-22985",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2022-03-10T17:45:43.893",
"lastModified": "2022-03-15T20:05:08.837",
"lastModified": "2023-06-27T19:01:51.437",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-94"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-22xx/CVE-2022-2241.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2241",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-08-01T13:15:10.727",
"lastModified": "2022-08-05T19:06:45.613",
"lastModified": "2023-06-27T18:27:18.837",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -45,7 +45,7 @@
"description": [
{
"lang": "en",
"value": "CWE-352"
"value": "CWE-116"
}
]
},

22
CVE-2022/CVE-2022-230xx/CVE-2022-23008.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23008",
"sourceIdentifier": "f5sirt@f5.com",
"published": "2022-01-25T20:15:09.000",
"lastModified": "2022-02-01T16:01:42.423",
"lastModified": "2023-06-27T19:02:27.997",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -21,20 +21,20 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 8.1,
"baseSeverity": "HIGH"
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 5.2
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
],
"cvssMetricV2": [
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-94"
"value": "CWE-79"
}
]
},

14
CVE-2022/CVE-2022-230xx/CVE-2022-23068.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23068",
"sourceIdentifier": "vulnerabilitylab@mend.io",
"published": "2022-05-18T14:15:08.427",
"lastModified": "2022-05-26T17:11:41.167",
"lastModified": "2023-06-27T19:00:02.710",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "vulnerabilitylab@mend.io",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
},
{
"source": "vulnerabilitylab@mend.io",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-231xx/CVE-2022-23118.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23118",
"sourceIdentifier": "jenkinsci-cert@googlegroups.com",
"published": "2022-01-12T20:15:09.807",
"lastModified": "2022-01-19T20:25:20.220",
"lastModified": "2023-06-27T19:03:24.207",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -70,7 +70,7 @@
"description": [
{
"lang": "en",
"value": "CWE-269"
"value": "CWE-668"
}
]
},

4
CVE-2022/CVE-2022-231xx/CVE-2022-23134.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23134",
"sourceIdentifier": "security@zabbix.com",
"published": "2022-01-13T16:15:08.227",
"lastModified": "2022-02-10T07:53:41.347",
"lastModified": "2023-06-27T19:02:56.163",
"vulnStatus": "Analyzed",
"cisaExploitAdd": "2022-02-22",
"cisaActionDue": "2022-03-08",
@ -94,7 +94,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-287"
}
]
},

4
CVE-2022/CVE-2022-234xx/CVE-2022-23433.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23433",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-02-11T18:15:11.693",
"lastModified": "2022-02-18T20:17:45.017",
"lastModified": "2023-06-27T19:02:06.297",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

14
CVE-2022/CVE-2022-235xx/CVE-2022-23524.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23524",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-12-15T19:15:16.863",
"lastModified": "2022-12-20T15:52:09.360",
"lastModified": "2023-06-27T18:20:09.790",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -56,8 +56,18 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-770"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-235xx/CVE-2022-23531.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23531",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-12-17T00:15:08.643",
"lastModified": "2022-12-22T14:43:23.897",
"lastModified": "2023-06-27T18:19:50.753",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -56,8 +56,18 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-22"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-235xx/CVE-2022-23537.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23537",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-12-20T19:15:24.663",
"lastModified": "2022-12-29T17:33:12.867",
"lastModified": "2023-06-27T18:19:46.640",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -61,7 +61,7 @@
"description": [
{
"lang": "en",
"value": "CWE-787"
"value": "CWE-125"
}
]
},

6
CVE-2022/CVE-2022-235xx/CVE-2022-23599.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23599",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-01-28T22:15:17.023",
"lastModified": "2022-02-04T16:04:19.737",
"lastModified": "2023-06-27T19:02:23.397",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -88,6 +88,10 @@
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-601"
},
{
"lang": "en",
"value": "CWE-79"

14
CVE-2022/CVE-2022-236xx/CVE-2022-23642.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-23642",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-02-18T23:15:09.697",
"lastModified": "2022-10-29T02:44:40.993",
"lastModified": "2023-06-27T19:01:59.647",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -85,8 +85,18 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-862"
}
]
},
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",

6
CVE-2022/CVE-2022-23xx/CVE-2022-2312.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2312",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-08-22T15:15:14.507",
"lastModified": "2022-08-25T02:46:04.427",
"lastModified": "2023-06-27T18:26:35.803",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -46,10 +46,6 @@
{
"lang": "en",
"value": "CWE-352"
},
{
"lang": "en",
"value": "CWE-639"
}
]
},

14
CVE-2022/CVE-2022-23xx/CVE-2022-2353.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2353",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-07-09T09:15:08.727",
"lastModified": "2022-07-16T01:51:25.210",
"lastModified": "2023-06-27T18:30:38.900",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -87,8 +87,18 @@
},
"weaknesses": [
{
"source": "security@huntr.dev",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
},
{
"source": "security@huntr.dev",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-23xx/CVE-2022-2354.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-2354",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-08-15T11:21:22.423",
"lastModified": "2022-08-16T18:33:30.393",
"lastModified": "2023-06-27T18:26:53.567",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -40,8 +40,18 @@
},
"weaknesses": [
{
"source": "contact@wpscan.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
},
{
"source": "contact@wpscan.com",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-249xx/CVE-2022-24932.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-24932",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-03-10T17:46:57.560",
"lastModified": "2022-03-17T01:23:25.077",
"lastModified": "2023-06-27T19:01:45.197",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -90,7 +90,7 @@
"description": [
{
"lang": "en",
"value": "CWE-425"
"value": "NVD-CWE-Other"
}
]
},

28
CVE-2022/CVE-2022-25xx/CVE-2022-2552.json
View File

@ -2,12 +2,12 @@
"id": "CVE-2022-2552",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-08-22T15:15:15.373",
"lastModified": "2023-06-23T18:24:44.350",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-27T18:15:11.443",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "The Duplicator WordPress plugin before 1.4.7.1 does not authenticate or authorize visitors before displaying information about the system such as server software, php version and full file system path to the site."
"value": "The Duplicator WordPress plugin before 1.4.7 does not authenticate or authorize visitors before displaying information about the system such as server software, php version and full file system path to the site."
},
{
"lang": "es",
@ -40,8 +40,18 @@
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"source": "contact@wpscan.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-862"
}
]
},
{
"source": "nvd@nist.gov",
"type": "Secondary",
"description": [
{
"lang": "en",
@ -52,16 +62,6 @@
"value": "CWE-862"
}
]
},
{
"source": "contact@wpscan.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
],
"configurations": [

59
CVE-2022/CVE-2022-343xx/CVE-2022-34352.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2022-34352",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2023-06-27T18:15:11.993",
"lastModified": "2023-06-27T18:34:43.840",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
"lang": "en",
"value": "\nIBM QRadar SIEM 7.5.0 is vulnerable to information exposure allowing a delegated Admin tenant user with a specific domain security profile assigned to see data from other domains. IBM X-Force ID: 230403.\n\n"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@us.ibm.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "psirt@us.ibm.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-200"
}
]
}
],
"references": [
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/230403",
"source": "psirt@us.ibm.com"
},
{
"url": "https://www.ibm.com/support/pages/node/7006057",
"source": "psirt@us.ibm.com"
}
]
}

16
CVE-2022/CVE-2022-363xx/CVE-2022-36323.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-36323",
"sourceIdentifier": "productcert@siemens.com",
"published": "2022-08-10T12:15:12.863",
"lastModified": "2023-04-11T10:15:16.123",
"vulnStatus": "Modified",
"lastModified": "2023-06-27T19:43:45.920",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -60,8 +60,18 @@
},
"weaknesses": [
{
"source": "productcert@siemens.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "productcert@siemens.com",
"type": "Secondary",
"description": [
{
"lang": "en",

10
CVE-2022/CVE-2022-363xx/CVE-2022-36325.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36325",
"sourceIdentifier": "productcert@siemens.com",
"published": "2022-08-10T12:15:12.997",
"lastModified": "2023-02-23T16:18:22.937",
"lastModified": "2023-06-27T19:51:47.307",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -60,22 +60,22 @@
},
"weaknesses": [
{
"source": "productcert@siemens.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-80"
"value": "NVD-CWE-Other"
}
]
},
{
"source": "nvd@nist.gov",
"source": "productcert@siemens.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
"value": "CWE-80"
}
]
}

14
CVE-2022/CVE-2022-363xx/CVE-2022-36375.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36375",
"sourceIdentifier": "audit@patchstack.com",
"published": "2022-07-25T20:15:08.160",
"lastModified": "2022-08-01T12:16:46.977",
"lastModified": "2023-06-27T19:35:19.823",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -60,8 +60,18 @@
},
"weaknesses": [
{
"source": "audit@patchstack.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},
{
"source": "audit@patchstack.com",
"type": "Secondary",
"description": [
{
"lang": "en",

4
CVE-2022/CVE-2022-368xx/CVE-2022-36832.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36832",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-08-05T16:15:14.937",
"lastModified": "2022-10-27T17:26:40.213",
"lastModified": "2023-06-27T18:02:04.343",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-269"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-368xx/CVE-2022-36848.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36848",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-09-09T15:15:11.397",
"lastModified": "2022-09-10T03:47:34.330",
"lastModified": "2023-06-27T18:03:01.097",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-368xx/CVE-2022-36852.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36852",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-09-09T15:15:11.643",
"lastModified": "2022-09-10T03:46:35.067",
"lastModified": "2023-06-27T18:05:50.510",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-368xx/CVE-2022-36857.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36857",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-09-09T15:15:11.970",
"lastModified": "2022-09-10T03:44:01.107",
"lastModified": "2023-06-27T18:05:55.260",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-368xx/CVE-2022-36859.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36859",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-09-09T15:15:12.103",
"lastModified": "2022-09-21T20:35:43.663",
"lastModified": "2023-06-27T18:09:36.497",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-20"
"value": "CWE-79"
}
]
},

4
CVE-2022/CVE-2022-368xx/CVE-2022-36876.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-36876",
"sourceIdentifier": "mobile.security@samsung.com",
"published": "2022-09-09T15:15:13.133",
"lastModified": "2022-09-21T20:25:47.643",
"lastModified": "2023-06-27T18:09:47.827",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "NVD-CWE-Other"
}
]
},

4
CVE-2022/CVE-2022-381xx/CVE-2022-38191.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-38191",
"sourceIdentifier": "psirt@esri.com",
"published": "2022-08-15T21:15:12.410",
"lastModified": "2022-08-16T17:16:35.347",
"lastModified": "2023-06-27T19:52:58.290",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-74"
"value": "CWE-79"
}
]
},

4
CVE-2022/CVE-2022-386xx/CVE-2022-38690.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-38690",
"sourceIdentifier": "security@unisoc.com",
"published": "2022-10-14T19:15:13.970",
"lastModified": "2022-10-17T20:05:15.003",
"lastModified": "2023-06-27T19:59:39.177",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -45,7 +45,7 @@
"description": [
{
"lang": "en",
"value": "CWE-787"
"value": "CWE-667"
}
]
},

6
CVE-2022/CVE-2022-38xx/CVE-2022-3882.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-3882",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-12-12T18:15:11.267",
"lastModified": "2022-12-15T17:50:26.207",
"lastModified": "2023-06-27T18:33:25.183",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -39,6 +39,10 @@
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
},
{
"lang": "en",
"value": "CWE-863"

8
CVE-2022/CVE-2022-390xx/CVE-2022-39019.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-39019",
"sourceIdentifier": "vdp@themissinglink.com.au",
"published": "2022-10-31T21:15:12.173",
"lastModified": "2022-11-01T19:45:41.773",
"lastModified": "2023-06-27T18:44:33.693",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -61,11 +61,7 @@
"description": [
{
"lang": "en",
"value": "CWE-287"
},
{
"lang": "en",
"value": "CWE-434"
"value": "NVD-CWE-Other"
}
]
},

8
CVE-2022/CVE-2022-390xx/CVE-2022-39057.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-39057",
"sourceIdentifier": "twcert@cert.org.tw",
"published": "2022-10-18T06:15:09.197",
"lastModified": "2022-10-20T15:08:13.537",
"lastModified": "2023-06-27T18:44:28.473",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -45,7 +45,11 @@
"description": [
{
"lang": "en",
"value": "CWE-77"
"value": "CWE-78"
},
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
},

8
CVE-2022/CVE-2022-392xx/CVE-2022-39274.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-39274",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-10-06T18:16:16.103",
"lastModified": "2022-12-08T03:11:02.383",
"lastModified": "2023-06-27T18:44:14.190",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -60,17 +60,17 @@
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-120"
"value": "CWE-193"
}
]
},
{
"source": "nvd@nist.gov",
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{

4
CVE-2022/CVE-2022-392xx/CVE-2022-39283.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-39283",
"sourceIdentifier": "security-advisories@github.com",
"published": "2022-10-12T23:15:09.527",
"lastModified": "2023-02-23T01:37:14.560",
"lastModified": "2023-06-27T18:44:21.357",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -65,7 +65,7 @@
"description": [
{
"lang": "en",
"value": "CWE-125"
"value": "CWE-908"
}
]
},

4
CVE-2022/CVE-2022-39xx/CVE-2022-3910.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-3910",
"sourceIdentifier": "cve-coordination@google.com",
"published": "2022-11-22T13:15:13.167",
"lastModified": "2023-02-14T21:13:50.050",
"lastModified": "2023-06-27T19:29:20.300",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -61,7 +61,7 @@
"description": [
{
"lang": "en",
"value": "CWE-416"
"value": "NVD-CWE-Other"
}
]
},

8
CVE-2022/CVE-2022-39xx/CVE-2022-3911.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-3911",
"sourceIdentifier": "contact@wpscan.com",
"published": "2023-01-02T22:15:15.627",
"lastModified": "2023-01-09T19:05:04.753",
"lastModified": "2023-06-27T18:34:57.497",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -41,7 +41,11 @@
"description": [
{
"lang": "en",
"value": "CWE-863"
"value": "CWE-352"
},
{
"lang": "en",
"value": "CWE-862"
}
]
},

4
CVE-2022/CVE-2022-39xx/CVE-2022-3993.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-3993",
"sourceIdentifier": "security@huntr.dev",
"published": "2022-11-14T18:15:17.770",
"lastModified": "2022-11-17T22:14:27.827",
"lastModified": "2023-06-27T19:27:43.117",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -63,7 +63,7 @@
"description": [
{
"lang": "en",
"value": "CWE-287"
"value": "CWE-307"
}
]
},

20
CVE-2022/CVE-2022-39xx/CVE-2022-3999.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-3999",
"sourceIdentifier": "contact@wpscan.com",
"published": "2022-12-12T18:15:12.620",
"lastModified": "2023-02-03T18:15:14.287",
"vulnStatus": "Modified",
"lastModified": "2023-06-27T18:33:33.137",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -36,7 +36,7 @@
},
"weaknesses": [
{
"source": "contact@wpscan.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
@ -48,6 +48,20 @@
"value": "CWE-862"
}
]
},
{
"source": "contact@wpscan.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-352"
},
{
"lang": "en",
"value": "CWE-862"
}
]
}
],
"configurations": [

4
CVE-2022/CVE-2022-401xx/CVE-2022-40145.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-40145",
"sourceIdentifier": "security@apache.org",
"published": "2022-12-21T16:15:08.930",
"lastModified": "2022-12-28T19:25:07.650",
"lastModified": "2023-06-27T18:34:53.067",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -41,7 +41,7 @@
"description": [
{
"lang": "en",
"value": "CWE-74"
"value": "NVD-CWE-Other"
}
]
},

14
CVE-2022/CVE-2022-40xx/CVE-2022-4011.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-4011",
"sourceIdentifier": "cna@vuldb.com",
"published": "2022-11-16T08:15:23.623",
"lastModified": "2022-11-18T20:25:40.553",
"lastModified": "2023-06-27T19:28:04.927",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -56,8 +56,18 @@
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-116"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",

14
CVE-2022/CVE-2022-40xx/CVE-2022-4014.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2022-4014",
"sourceIdentifier": "cna@vuldb.com",
"published": "2022-11-16T08:15:28.527",
"lastModified": "2022-11-18T20:43:14.727",
"lastModified": "2023-06-27T19:28:28.807",
"vulnStatus": "Analyzed",
"descriptions": [
{
@ -56,8 +56,18 @@
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
"description": [
{
"lang": "en",

Some files were not shown because too many files have changed in this diff Show More