Auto-Update: 2023-11-28T03:00:19.194193+00:00

2025-07-09 16:05:11 +00:00 · 2023-11-28 03:00:23 +00:00 · 2023-11-28 03:00:23 +00:00 · d81e01c7e0
commit d81e01c7e0
parent 1e762b365c
14 changed files with 465 additions and 22 deletions
--- a/CVE-2023/CVE-2023-305xx/CVE-2023-30585.json
+++ b/CVE-2023/CVE-2023-305xx/CVE-2023-30585.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2023-30585",
+  "sourceIdentifier": "support@hackerone.com",
+  "published": "2023-11-28T02:15:42.077",
+  "lastModified": "2023-11-28T02:15:42.077",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A vulnerability has been identified in the Node.js (.msi version) installation process, specifically affecting Windows users who install Node.js using the .msi installer. This vulnerability emerges during the repair operation, where the \"msiexec.exe\" process, running under the NT AUTHORITY\\SYSTEM context, attempts to read the %USERPROFILE% environment variable from the current user's registry.\n\nThe issue arises when the path referenced by the %USERPROFILE% environment variable does not exist. In such cases, the \"msiexec.exe\" process attempts to create the specified path in an unsafe manner, potentially leading to the creation of arbitrary folders in arbitrary locations.\n\nThe severity of this vulnerability is heightened by the fact that the %USERPROFILE% environment variable in the Windows registry can be modified by standard (or \"non-privileged\") users. Consequently, unprivileged actors, including malicious entities or trojans, can manipulate the environment variable key to deceive the privileged \"msiexec.exe\" process. This manipulation can result in the creation of folders in unintended and potentially malicious locations.\n\nIt is important to note that this vulnerability is specific to Windows users who install Node.js using the .msi installer. Users who opt for other installation methods are not affected by this particular issue."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://nodejs.org/en/blog/vulnerability/june-2023-security-releases",
+      "source": "support@hackerone.com"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-351xx/CVE-2023-35136.json
+++ b/CVE-2023/CVE-2023-351xx/CVE-2023-35136.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-35136",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:42.143",
+  "lastModified": "2023-11-28T02:15:42.143",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An improper input validation vulnerability in the \u201cQuagga\u201d package of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, and VPN series firmware versions 4.30 through 5.37, could allow an authenticated local attacker to access configuration files on an affected device."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-20"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-351xx/CVE-2023-35139.json
+++ b/CVE-2023/CVE-2023-351xx/CVE-2023-35139.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-35139",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:42.347",
+  "lastModified": "2023-11-28T02:15:42.347",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A cross-site scripting (XSS) vulnerability in the CGI program of the Zyxel ATP series firmware versions 5.10 through 5.37, USG FLEX series firmware versions 5.00 through 5.37, USG FLEX 50(W) series firmware versions 5.10 through 5.37, USG20(W)-VPN series firmware versions 5.10 through 5.37, and VPN series firmware versions 5.00 through 5.37, could allow an unauthenticated LAN-based attacker to store malicious scripts in a vulnerable device. A successful XSS attack could then result in the stored malicious scripts being executed to steal cookies when the user visits the specific CGI used for dumping ZTP logs."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
+          "attackVector": "ADJACENT_NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "NONE",
+          "baseScore": 5.2,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 2.1,
+        "impactScore": 2.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-379xx/CVE-2023-37925.json
+++ b/CVE-2023/CVE-2023-379xx/CVE-2023-37925.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-37925",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:42.547",
+  "lastModified": "2023-11-28T02:15:42.547",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An improper privilege management vulnerability in the debug CLI command of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, VPN series firmware versions 4.30 through 5.37, NWA50AX firmware version 6.29(ABYW.2), WAC500 firmware version 6.65(ABVS.1), WAX300H firmware version 6.60(ACHF.1), and WBE660S firmware version 6.65(ACGG.1), could allow an authenticated local attacker to access system files on an affected device."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-269"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-379xx/CVE-2023-37926.json
+++ b/CVE-2023/CVE-2023-379xx/CVE-2023-37926.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-37926",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:42.740",
+  "lastModified": "2023-11-28T02:15:42.740",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A buffer overflow vulnerability in the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, and VPN series firmware versions 4.30 through 5.37, could allow an authenticated local attacker to cause denial-of-service (DoS) conditions by executing the CLI command to dump system logs on an affected device."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-120"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-424xx/CVE-2023-42459.json
+++ b/CVE-2023/CVE-2023-424xx/CVE-2023-42459.json
@ -2,8 +2,8 @@
  "id": "CVE-2023-42459",
  "sourceIdentifier": "security-advisories@github.com",
  "published": "2023-10-16T21:15:10.923",
-  "lastModified": "2023-10-23T14:46:11.370",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2023-11-28T01:15:07.107",
+  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
@ -132,6 +132,10 @@
      "tags": [
        "Vendor Advisory"
      ]
+    },
+    {
+      "url": "https://www.debian.org/security/2023/dsa-5568",
+      "source": "security-advisories@github.com"
    }
  ]
 }
--- a/CVE-2023/CVE-2023-43xx/CVE-2023-4397.json
+++ b/CVE-2023/CVE-2023-43xx/CVE-2023-4397.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-4397",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:42.990",
+  "lastModified": "2023-11-28T02:15:42.990",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "A buffer overflow vulnerability in the Zyxel ATP series firmware version 5.37, USG FLEX series firmware version 5.37, USG FLEX 50(W) series firmware version 5.37, and USG20(W)-VPN series firmware version 5.37, could allow an authenticated local attacker with administrator privileges to cause denial-of-service (DoS) conditions by executing the CLI command with crafted strings on an affected device."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH",
+          "baseScore": 4.4,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 0.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-120"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-43xx/CVE-2023-4398.json
+++ b/CVE-2023/CVE-2023-43xx/CVE-2023-4398.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-4398",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:43.187",
+  "lastModified": "2023-11-28T02:15:43.187",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An integer overflow vulnerability in the source code of the QuickSec IPSec toolkit used in the VPN feature of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, and VPN series firmware versions 4.30 through 5.37, could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions on an affected device by sending a crafted IKE packet."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH",
+          "baseScore": 7.5,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-190"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-458xx/CVE-2023-45853.json
+++ b/CVE-2023/CVE-2023-458xx/CVE-2023-45853.json
@ -2,7 +2,7 @@
  "id": "CVE-2023-45853",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-10-14T02:15:09.323",
-  "lastModified": "2023-10-20T21:15:09.867",
+  "lastModified": "2023-11-28T01:15:07.247",
  "vulnStatus": "Modified",
  "descriptions": [
    {
@ -104,6 +104,10 @@
        "Patch"
      ]
    },
+    {
+      "url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00026.html",
+      "source": "cve@mitre.org"
+    },
    {
      "url": "https://www.winimage.com/zLibDll/minizip.html",
      "source": "cve@mitre.org",
--- a/CVE-2023/CVE-2023-475xx/CVE-2023-47503.json
+++ b/CVE-2023/CVE-2023-475xx/CVE-2023-47503.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2023-47503",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2023-11-28T02:15:42.947",
+  "lastModified": "2023-11-28T02:15:42.947",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue in jflyfox jfinalCMS v.5.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the login.jsp component in the template management module."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/jflyfox/jfinal_cms/issues/58",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2023/CVE-2023-47xx/CVE-2023-4762.json
+++ b/CVE-2023/CVE-2023-47xx/CVE-2023-4762.json
@ -2,7 +2,7 @@
  "id": "CVE-2023-4762",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2023-09-05T22:15:09.677",
-  "lastModified": "2023-11-25T11:15:21.037",
+  "lastModified": "2023-11-28T01:15:07.410",
  "vulnStatus": "Modified",
  "descriptions": [
    {
@ -153,6 +153,10 @@
        "Third Party Advisory"
      ]
    },
+    {
+      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-4762",
+      "source": "chrome-cve-admin@google.com"
+    },
    {
      "url": "https://security.gentoo.org/glsa/202311-11",
      "source": "chrome-cve-admin@google.com"
--- a/CVE-2023/CVE-2023-491xx/CVE-2023-49145.json
+++ b/CVE-2023/CVE-2023-491xx/CVE-2023-49145.json
@ -2,7 +2,7 @@
  "id": "CVE-2023-49145",
  "sourceIdentifier": "security@apache.org",
  "published": "2023-11-27T23:15:07.780",
-  "lastModified": "2023-11-27T23:15:07.780",
+  "lastModified": "2023-11-28T01:15:07.333",
  "vulnStatus": "Received",
  "descriptions": [
    {
@ -47,6 +47,10 @@
    }
  ],
  "references": [
+    {
+      "url": "http://www.openwall.com/lists/oss-security/2023/11/27/5",
+      "source": "security@apache.org"
+    },
    {
      "url": "https://lists.apache.org/thread/j8rd0qsvgoj0khqck5f49jfbp0fm8r1o",
      "source": "security@apache.org"
--- a/CVE-2023/CVE-2023-56xx/CVE-2023-5650.json
+++ b/CVE-2023/CVE-2023-56xx/CVE-2023-5650.json
@ -0,0 +1,55 @@
+{
+  "id": "CVE-2023-5650",
+  "sourceIdentifier": "security@zyxel.com.tw",
+  "published": "2023-11-28T02:15:43.380",
+  "lastModified": "2023-11-28T02:15:43.380",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An improper privilege management vulnerability in the ZySH of the Zyxel ATP series firmware versions 4.32 through 5.37, USG FLEX series firmware versions 4.50 through 5.37, USG FLEX 50(W) series firmware versions 4.16 through 5.37, USG20(W)-VPN series firmware versions 4.16 through 5.37, and VPN series firmware versions 4.30 through 5.37, could allow an authenticated local attacker to modify the URL of the registration page in the web GUI of an affected device."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "security@zyxel.com.tw",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "NONE",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "security@zyxel.com.tw",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-269"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.zyxel.com/global/en/support/security-advisories/zyxel-security-advisory-for-multiple-vulnerabilities-in-firewalls-and-aps",
+      "source": "security@zyxel.com.tw"
+    }
+  ]
+}
--- a/README.md
+++ b/README.md
@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2023-11-28T00:55:17.995431+00:00
+2023-11-28T03:00:19.194193+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2023-11-28T00:15:07.183000+00:00
+2023-11-28T02:15:43.380000+00:00
 ```

 ### Last Data Feed Release
@ -23,36 +23,38 @@ Repository synchronizes with the NVD every 2 hours.
 Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest)

 ```plain
-2023-11-27T01:00:13.550530+00:00
+2023-11-28T01:00:13.532978+00:00
 ```

 ### Total Number of included CVEs

 ```plain
-231589
+231598
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `10`
+Recently added CVEs: `9`

-* [CVE-2023-42364](CVE-2023/CVE-2023-423xx/CVE-2023-42364.json) (`2023-11-27T23:15:07.313`)
-* [CVE-2023-42365](CVE-2023/CVE-2023-423xx/CVE-2023-42365.json) (`2023-11-27T23:15:07.373`)
-* [CVE-2023-42366](CVE-2023/CVE-2023-423xx/CVE-2023-42366.json) (`2023-11-27T23:15:07.420`)
-* [CVE-2023-46349](CVE-2023/CVE-2023-463xx/CVE-2023-46349.json) (`2023-11-27T23:15:07.470`)
-* [CVE-2023-46355](CVE-2023/CVE-2023-463xx/CVE-2023-46355.json) (`2023-11-27T23:15:07.520`)
-* [CVE-2023-46480](CVE-2023/CVE-2023-464xx/CVE-2023-46480.json) (`2023-11-27T23:15:07.567`)
-* [CVE-2023-48188](CVE-2023/CVE-2023-481xx/CVE-2023-48188.json) (`2023-11-27T23:15:07.613`)
-* [CVE-2023-49145](CVE-2023/CVE-2023-491xx/CVE-2023-49145.json) (`2023-11-27T23:15:07.780`)
-* [CVE-2023-29770](CVE-2023/CVE-2023-297xx/CVE-2023-29770.json) (`2023-11-28T00:15:07.033`)
-* [CVE-2023-47437](CVE-2023/CVE-2023-474xx/CVE-2023-47437.json) (`2023-11-28T00:15:07.093`)
+* [CVE-2023-30585](CVE-2023/CVE-2023-305xx/CVE-2023-30585.json) (`2023-11-28T02:15:42.077`)
+* [CVE-2023-35136](CVE-2023/CVE-2023-351xx/CVE-2023-35136.json) (`2023-11-28T02:15:42.143`)
+* [CVE-2023-35139](CVE-2023/CVE-2023-351xx/CVE-2023-35139.json) (`2023-11-28T02:15:42.347`)
+* [CVE-2023-37925](CVE-2023/CVE-2023-379xx/CVE-2023-37925.json) (`2023-11-28T02:15:42.547`)
+* [CVE-2023-37926](CVE-2023/CVE-2023-379xx/CVE-2023-37926.json) (`2023-11-28T02:15:42.740`)
+* [CVE-2023-47503](CVE-2023/CVE-2023-475xx/CVE-2023-47503.json) (`2023-11-28T02:15:42.947`)
+* [CVE-2023-4397](CVE-2023/CVE-2023-43xx/CVE-2023-4397.json) (`2023-11-28T02:15:42.990`)
+* [CVE-2023-4398](CVE-2023/CVE-2023-43xx/CVE-2023-4398.json) (`2023-11-28T02:15:43.187`)
+* [CVE-2023-5650](CVE-2023/CVE-2023-56xx/CVE-2023-5650.json) (`2023-11-28T02:15:43.380`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `1`
+Recently modified CVEs: `4`

-* [CVE-2023-6265](CVE-2023/CVE-2023-62xx/CVE-2023-6265.json) (`2023-11-27T23:15:07.973`)
+* [CVE-2023-42459](CVE-2023/CVE-2023-424xx/CVE-2023-42459.json) (`2023-11-28T01:15:07.107`)
+* [CVE-2023-45853](CVE-2023/CVE-2023-458xx/CVE-2023-45853.json) (`2023-11-28T01:15:07.247`)
+* [CVE-2023-49145](CVE-2023/CVE-2023-491xx/CVE-2023-49145.json) (`2023-11-28T01:15:07.333`)
+* [CVE-2023-4762](CVE-2023/CVE-2023-47xx/CVE-2023-4762.json) (`2023-11-28T01:15:07.410`)


 ## Download and Usage