admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-08 19:47:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-10-15T04:00:22.575673+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-10-15 04:00:26 +00:00
parent bbe65273b0
commit caaea1c4d1
14 changed files with 263 additions and 65 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
CVE-2022/CVE-2022-281xx/CVE-2022-28183.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-28183",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-05-17T20:15:08.790",
"lastModified": "2023-10-03T15:15:36.377",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:08:41.393",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -157,7 +157,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

9
CVE-2022/CVE-2022-316xx/CVE-2022-31608.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-31608",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-11-19T00:15:24.927",
"lastModified": "2023-10-03T15:15:36.763",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:03:21.460",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -239,7 +239,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

9
CVE-2022/CVE-2022-316xx/CVE-2022-31615.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-31615",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-11-19T00:15:26.543",
"lastModified": "2023-10-03T15:15:36.850",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:04:58.207",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -239,7 +239,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

9
CVE-2022/CVE-2022-346xx/CVE-2022-34665.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-34665",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-11-19T00:15:27.557",
"lastModified": "2023-10-03T15:15:36.943",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:05:25.987",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -321,7 +321,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

29
CVE-2022/CVE-2022-346xx/CVE-2022-34670.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-34670",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-12-30T23:15:09.337",
"lastModified": "2023-10-03T15:15:37.157",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:06:07.240",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -323,12 +323,30 @@
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
}
]
}
]
}
],
"references": [
{
"url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Mailing List"
]
},
{
"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5415",
@ -339,7 +357,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

9
CVE-2022/CVE-2022-346xx/CVE-2022-34673.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-34673",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-12-30T23:15:09.610",
"lastModified": "2023-10-03T15:15:37.273",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:10:42.377",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -137,7 +137,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

37
CVE-2022/CVE-2022-346xx/CVE-2022-34674.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-34674",
"sourceIdentifier": "psirt@nvidia.com",
"published": "2022-12-30T23:15:09.710",
"lastModified": "2023-10-03T15:15:37.380",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:12:15.797",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -17,19 +17,19 @@
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.8,
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.5,
"exploitabilityScore": 1.8,
"impactScore": 4.2
},
{
@ -323,12 +323,30 @@
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
}
]
}
]
}
],
"references": [
{
"url": "https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Mailing List"
]
},
{
"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5415",
@ -339,7 +357,10 @@
},
{
"url": "https://security.gentoo.org/glsa/202310-02",
"source": "psirt@nvidia.com"
"source": "psirt@nvidia.com",
"tags": [
"Third Party Advisory"
]
}
]
}

32
CVE-2023/CVE-2023-281xx/CVE-2023-28198.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-28198",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-08-14T23:15:10.830",
"lastModified": "2023-09-11T18:15:09.477",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:06:50.990",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -75,12 +75,38 @@
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.1",
"matchCriteriaId": "A007F029-38D8-4D0D-8DF2-A2F6CB9ADE60"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.1",
"matchCriteriaId": "8C1E75F9-1855-4668-8E78-2A6F0F4FCBA1"
}
]
}
]
}
],
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2023/09/11/1",
"source": "product-security@apple.com"
"source": "product-security@apple.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "https://support.apple.com/en-us/HT213670",

14
CVE-2023/CVE-2023-300xx/CVE-2023-30058.json
View File

@ -2,12 +2,16 @@
"id": "CVE-2023-30058",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-09-11T16:15:07.560",
"lastModified": "2023-09-14T22:15:08.043",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:01:50.940",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "novel-plus 3.6.2 is vulnerable to SQL Injection."
},
{
"lang": "es",
"value": "novel-plus 3.6.2 es vulnerable a la inyecci\u00f3n SQL."
}
],
"metrics": {
@ -73,7 +77,11 @@
},
{
"url": "https://github.com/Rabb1tQ/HillstoneCVEs/blob/main/CVE-2023-30058/CVE-2023-30058.md",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://github.com/Rabb1tQ/HillstoneCVEs/tree/main/CVE-2023-30058",

32
CVE-2023/CVE-2023-323xx/CVE-2023-32370.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-32370",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-09-06T02:15:09.070",
"lastModified": "2023-09-11T18:15:09.927",
"vulnStatus": "Modified",
"lastModified": "2023-10-15T02:01:24.430",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -63,12 +63,38 @@
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.1",
"matchCriteriaId": "A007F029-38D8-4D0D-8DF2-A2F6CB9ADE60"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.1",
"matchCriteriaId": "8C1E75F9-1855-4668-8E78-2A6F0F4FCBA1"
}
]
}
]
}
],
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2023/09/11/1",
"source": "product-security@apple.com"
"source": "product-security@apple.com",
"tags": [
"Mailing List",
"Third Party Advisory"
]
},
{
"url": "https://support.apple.com/en-us/HT213670",

59
CVE-2023/CVE-2023-403xx/CVE-2023-40378.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2023-40378",
"sourceIdentifier": "psirt@us.ibm.com",
"published": "2023-10-15T02:15:09.647",
"lastModified": "2023-10-15T02:15:09.647",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "IBM Directory Server for IBM i contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain component access to the host operating system. IBM X-Force ID: 263584."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@us.ibm.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 4.9,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.4,
"impactScore": 3.4
}
]
},
"weaknesses": [
{
"source": "psirt@us.ibm.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-269"
}
]
}
],
"references": [
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/263584",
"source": "psirt@us.ibm.com"
},
{
"url": "https://www.ibm.com/support/pages/node/7047240",
"source": "psirt@us.ibm.com"
}
]
}

28
CVE-2023/CVE-2023-403xx/CVE-2023-40397.json
View File

@ -2,12 +2,16 @@
"id": "CVE-2023-40397",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-09-06T21:15:13.850",
"lastModified": "2023-09-12T12:02:28.163",
"lastModified": "2023-10-15T02:01:02.130",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. A remote attacker may be able to cause arbitrary javascript code execution."
},
{
"lang": "es",
"value": "El problema se solucion\u00f3 mejorando las comprobaciones. Este problema se solucion\u00f3 en macOS Ventura 13.5. Un atacante remoto puede ser capaz de provocar la ejecuci\u00f3n arbitraria de c\u00f3digo javascript."
}
],
"metrics": {
@ -62,6 +66,28 @@
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:webkitgtk:webkitgtk:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.5",
"matchCriteriaId": "8323D399-B803-4CE3-ABB4-DB6972FB22AC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:wpewebkit:wpe_webkit:*:*:*:*:*:*:*:*",
"versionEndExcluding": "2.40.5",
"matchCriteriaId": "53249158-E300-4F0D-A16D-9C19701E2E05"
}
]
}
]
}
],
"references": [

8
CVE-2023/CVE-2023-436xx/CVE-2023-43655.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-43655",
"sourceIdentifier": "security-advisories@github.com",
"published": "2023-09-29T20:15:09.987",
"lastModified": "2023-10-04T01:46:28.943",
"vulnStatus": "Analyzed",
"lastModified": "2023-10-15T03:15:09.323",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
@ -130,6 +130,10 @@
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KFOPGPW2KS37O3KJWBRGTUWHTXCQXBS2/",
"source": "security-advisories@github.com"
}
]
}

44
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-10-15T02:00:23.517998+00:00
2023-10-15T04:00:22.575673+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-10-15T01:59:34.363000+00:00
2023-10-15T03:15:09.323000+00:00
```
### Last Data Feed Release
@ -29,40 +29,32 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
227816
227817
```
### CVEs added in the last Commit
Recently added CVEs: `3`
Recently added CVEs: `1`
* [CVE-2023-5585](CVE-2023/CVE-2023-55xx/CVE-2023-5585.json) (`2023-10-15T00:15:10.363`)
* [CVE-2023-45871](CVE-2023/CVE-2023-458xx/CVE-2023-45871.json) (`2023-10-15T01:15:09.027`)
* [CVE-2023-5586](CVE-2023/CVE-2023-55xx/CVE-2023-5586.json) (`2023-10-15T01:15:09.100`)
* [CVE-2023-40378](CVE-2023/CVE-2023-403xx/CVE-2023-40378.json) (`2023-10-15T02:15:09.647`)
### CVEs modified in the last Commit
Recently modified CVEs: `18`
Recently modified CVEs: `12`
* [CVE-2020-11987](CVE-2020/CVE-2020-119xx/CVE-2020-11987.json) (`2023-10-15T00:15:09.663`)
* [CVE-2022-38398](CVE-2022/CVE-2022-383xx/CVE-2022-38398.json) (`2023-10-15T00:15:09.897`)
* [CVE-2022-38648](CVE-2022/CVE-2022-386xx/CVE-2022-38648.json) (`2023-10-15T00:15:10.010`)
* [CVE-2022-40146](CVE-2022/CVE-2022-401xx/CVE-2022-40146.json) (`2023-10-15T00:15:10.087`)
* [CVE-2022-44729](CVE-2022/CVE-2022-447xx/CVE-2022-44729.json) (`2023-10-15T00:15:10.170`)
* [CVE-2022-44730](CVE-2022/CVE-2022-447xx/CVE-2022-44730.json) (`2023-10-15T00:15:10.257`)
* [CVE-2022-28184](CVE-2022/CVE-2022-281xx/CVE-2022-28184.json) (`2023-10-15T01:55:32.577`)
* [CVE-2022-28185](CVE-2022/CVE-2022-281xx/CVE-2022-28185.json) (`2023-10-15T01:58:46.053`)
* [CVE-2022-34666](CVE-2022/CVE-2022-346xx/CVE-2022-34666.json) (`2023-10-15T01:59:34.363`)
* [CVE-2023-44107](CVE-2023/CVE-2023-441xx/CVE-2023-44107.json) (`2023-10-15T01:38:58.053`)
* [CVE-2023-44108](CVE-2023/CVE-2023-441xx/CVE-2023-44108.json) (`2023-10-15T01:44:06.033`)
* [CVE-2023-44106](CVE-2023/CVE-2023-441xx/CVE-2023-44106.json) (`2023-10-15T01:47:39.467`)
* [CVE-2023-44116](CVE-2023/CVE-2023-441xx/CVE-2023-44116.json) (`2023-10-15T01:49:29.117`)
* [CVE-2023-44118](CVE-2023/CVE-2023-441xx/CVE-2023-44118.json) (`2023-10-15T01:50:06.557`)
* [CVE-2023-44119](CVE-2023/CVE-2023-441xx/CVE-2023-44119.json) (`2023-10-15T01:51:34.233`)
* [CVE-2023-4874](CVE-2023/CVE-2023-48xx/CVE-2023-4874.json) (`2023-10-15T01:54:55.797`)
* [CVE-2023-4875](CVE-2023/CVE-2023-48xx/CVE-2023-4875.json) (`2023-10-15T01:55:18.347`)
* [CVE-2023-0199](CVE-2023/CVE-2023-01xx/CVE-2023-0199.json) (`2023-10-15T01:57:55.350`)
* [CVE-2022-31608](CVE-2022/CVE-2022-316xx/CVE-2022-31608.json) (`2023-10-15T02:03:21.460`)
* [CVE-2022-31615](CVE-2022/CVE-2022-316xx/CVE-2022-31615.json) (`2023-10-15T02:04:58.207`)
* [CVE-2022-34665](CVE-2022/CVE-2022-346xx/CVE-2022-34665.json) (`2023-10-15T02:05:25.987`)
* [CVE-2022-34670](CVE-2022/CVE-2022-346xx/CVE-2022-34670.json) (`2023-10-15T02:06:07.240`)
* [CVE-2022-28183](CVE-2022/CVE-2022-281xx/CVE-2022-28183.json) (`2023-10-15T02:08:41.393`)
* [CVE-2022-34673](CVE-2022/CVE-2022-346xx/CVE-2022-34673.json) (`2023-10-15T02:10:42.377`)
* [CVE-2022-34674](CVE-2022/CVE-2022-346xx/CVE-2022-34674.json) (`2023-10-15T02:12:15.797`)
* [CVE-2023-40397](CVE-2023/CVE-2023-403xx/CVE-2023-40397.json) (`2023-10-15T02:01:02.130`)
* [CVE-2023-32370](CVE-2023/CVE-2023-323xx/CVE-2023-32370.json) (`2023-10-15T02:01:24.430`)
* [CVE-2023-30058](CVE-2023/CVE-2023-300xx/CVE-2023-30058.json) (`2023-10-15T02:01:50.940`)
* [CVE-2023-28198](CVE-2023/CVE-2023-281xx/CVE-2023-28198.json) (`2023-10-15T02:06:50.990`)
* [CVE-2023-43655](CVE-2023/CVE-2023-436xx/CVE-2023-43655.json) (`2023-10-15T03:15:09.323`)
## Download and Usage