admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-07 19:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-09-09T23:55:18.245839+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-09-09 23:55:21 +00:00
parent 9a491431aa
commit cde7fc08f1
7 changed files with 167 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
CVE-2023/CVE-2023-294xx/CVE-2023-29491.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-29491",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-04-14T01:15:08.570",
"lastModified": "2023-09-06T21:15:11.787",
"lastModified": "2023-09-09T22:15:07.570",
"vulnStatus": "Modified",
"descriptions": [
{
@ -99,6 +99,14 @@
"url": "https://support.apple.com/kb/HT213843",
"source": "cve@mitre.org"
},
{
"url": "https://support.apple.com/kb/HT213844",
"source": "cve@mitre.org"
},
{
"url": "https://support.apple.com/kb/HT213845",
"source": "cve@mitre.org"
},
{
"url": "https://www.openwall.com/lists/oss-security/2023/04/12/5",
"source": "cve@mitre.org",

10
CVE-2023/CVE-2023-324xx/CVE-2023-32422.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-32422",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-06-23T18:15:13.630",
"lastModified": "2023-09-06T08:15:43.783",
"lastModified": "2023-09-09T22:15:08.817",
"vulnStatus": "Modified",
"descriptions": [
{
@ -111,6 +111,14 @@
{
"url": "https://support.apple.com/kb/HT213764",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213844",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213845",
"source": "product-security@apple.com"
}
]
}

10
CVE-2023/CVE-2023-386xx/CVE-2023-38605.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-38605",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-09-06T21:15:12.783",
"lastModified": "2023-09-07T01:10:21.083",
"lastModified": "2023-09-09T22:15:09.117",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
@ -15,6 +15,14 @@
{
"url": "https://support.apple.com/en-us/HT213843",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213842",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213844",
"source": "product-security@apple.com"
}
]
}

14
CVE-2023/CVE-2023-403xx/CVE-2023-40392.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-40392",
"sourceIdentifier": "product-security@apple.com",
"published": "2023-09-06T21:15:13.560",
"lastModified": "2023-09-07T01:10:21.083",
"lastModified": "2023-09-09T22:15:09.297",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
@ -15,6 +15,18 @@
{
"url": "https://support.apple.com/en-us/HT213843",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213842",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213844",
"source": "product-security@apple.com"
},
{
"url": "https://support.apple.com/kb/HT213845",
"source": "product-security@apple.com"
}
]
}

28
CVE-2023/CVE-2023-419xx/CVE-2023-41915.json Normal file
View File

@ -0,0 +1,28 @@
{
"id": "CVE-2023-41915",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-09-09T22:15:09.530",
"lastModified": "2023-09-09T22:15:09.530",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "OpenPMIx PMIx before 4.2.6 and 5.0.x before 5.0.1 allows attackers to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0."
}
],
"metrics": {},
"references": [
{
"url": "https://docs.openpmix.org/en/latest/security.html",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/openpmix/openpmix/releases/tag/v4.2.6",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/openpmix/openpmix/releases/tag/v5.0.1",
"source": "cve@mitre.org"
}
]
}

88
CVE-2023/CVE-2023-48xx/CVE-2023-4865.json Normal file
View File

@ -0,0 +1,88 @@
{
"id": "CVE-2023-4865",
"sourceIdentifier": "cna@vuldb.com",
"published": "2023-09-09T23:15:40.483",
"lastModified": "2023-09-09T23:15:40.483",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been found in SourceCodester Take-Note App 1.0 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-239350 is the identifier assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"availabilityImpact": "NONE",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
}
],
"references": [
{
"url": "https://skypoc.wordpress.com/2023/09/05/sourcecodester-take-note-app-v1-0-has-multiple-vulnerabilities/",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.239350",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.239350",
"source": "cna@vuldb.com"
}
]
}

18
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-09-09T22:00:24.954234+00:00
2023-09-09T23:55:18.245839+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-09-09T21:15:43.717000+00:00
2023-09-09T23:15:40.483000+00:00
```
### Last Data Feed Release
@ -29,21 +29,25 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
224553
224555
```
### CVEs added in the last Commit
Recently added CVEs: `1`
Recently added CVEs: `2`
* [CVE-2023-4864](CVE-2023/CVE-2023-48xx/CVE-2023-4864.json) (`2023-09-09T21:15:43.717`)
* [CVE-2023-41915](CVE-2023/CVE-2023-419xx/CVE-2023-41915.json) (`2023-09-09T22:15:09.530`)
* [CVE-2023-4865](CVE-2023/CVE-2023-48xx/CVE-2023-4865.json) (`2023-09-09T23:15:40.483`)
### CVEs modified in the last Commit
Recently modified CVEs: `1`
Recently modified CVEs: `4`
* [CVE-2022-38392](CVE-2022/CVE-2022-383xx/CVE-2022-38392.json) (`2023-09-09T21:15:43.120`)
* [CVE-2023-29491](CVE-2023/CVE-2023-294xx/CVE-2023-29491.json) (`2023-09-09T22:15:07.570`)
* [CVE-2023-32422](CVE-2023/CVE-2023-324xx/CVE-2023-32422.json) (`2023-09-09T22:15:08.817`)
* [CVE-2023-38605](CVE-2023/CVE-2023-386xx/CVE-2023-38605.json) (`2023-09-09T22:15:09.117`)
* [CVE-2023-40392](CVE-2023/CVE-2023-403xx/CVE-2023-40392.json) (`2023-09-09T22:15:09.297`)
## Download and Usage