admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-08 03:27:17 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2023-06-14T02:00:28.587262+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2023-06-14 02:00:32 +00:00
parent a386af6177
commit f864273110
69 changed files with 3347 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

66
CVE-2021/CVE-2021-468xx/CVE-2021-46889.json
View File

@ -2,19 +2,77 @@
"id": "CVE-2021-46889",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-07T14:15:09.640",
"lastModified": "2023-06-07T14:35:57.670",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:43:41.160",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
"value": "The 10Web Photo Gallery plugin through 1.5.69 for WordPress allows XSS via theme_id for bwg_frontend_data. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-31693."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:10web:photo_gallery:*:*:*:*:*:wordpress:*:*",
"versionEndIncluding": "1.5.69",
"matchCriteriaId": "E4C069B0-4C43-45BA-8AD2-D6DDAE195A70"
}
]
}
]
}
],
"references": [
{
"url": "https://packetstormsecurity.com/files/162227/WordPress-Photo-Gallery-1.5.69-Cross-Site-Scripting.html",
"source": "cve@mitre.org"
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
]
}
]
}

8
CVE-2022/CVE-2022-249xx/CVE-2022-24990.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2022-24990",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-02-07T18:15:09.100",
"lastModified": "2023-02-16T14:24:23.660",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-14T00:15:09.333",
"vulnStatus": "Modified",
"cisaExploitAdd": "2023-02-10",
"cisaActionDue": "2023-03-03",
"cisaRequiredAction": "Apply updates per vendor instructions.",
@ -221,6 +221,10 @@
}
],
"references": [
{
"url": "http://packetstormsecurity.com/files/172904/TerraMaster-TOS-4.2.29-Remote-Code-Execution.html",
"source": "cve@mitre.org"
},
{
"url": "https://forum.terra-master.com/en/viewforum.php?f=28",
"source": "cve@mitre.org",

106
CVE-2023/CVE-2023-01xx/CVE-2023-0121.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0121",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:09.727",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:03:58.017",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "13.2.4",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "47CF7160-B10A-4F08-9F88-CD16666A78D0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "13.2.4",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "71449E20-5C25-48A6-901F-9A1A57855717"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0121.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/387549",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1774688",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

106
CVE-2023/CVE-2023-05xx/CVE-2023-0508.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-0508",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:09.823",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:10:27.567",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.4.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "FF09675D-DF86-415B-AF42-7A6F43100C53"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.4.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "3939EBF5-9026-48D1-AAAF-1658A5A28388"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0508.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/389328",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1842314",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

79
CVE-2023/CVE-2023-18xx/CVE-2023-1825.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-1825",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:09.900",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:16:36.050",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,14 +54,65 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-668"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.7.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "FAB9401E-A399-46FF-A992-EE795C92B8F0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1825.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/384035",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
}
]
}

104
CVE-2023/CVE-2023-20xx/CVE-2023-2001.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2001",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:09.967",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:25:39.517",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,92 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "23B36DD0-0B07-4CF1-A521-A58D43C6CB26"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "FCB6D202-8EC7-4305-A540-8E9EC1E7F337"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2001.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/406764",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1908423",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

106
CVE-2023/CVE-2023-20xx/CVE-2023-2013.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2013",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:10.030",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:33:51.510",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-noinfo"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "1.2.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "191878CA-7DF1-4895-A267-78B0EC6284DF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "1.2.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "21D45CBA-6F26-4822-8DA6-CD07667D8520"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2013.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/406844",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1940441",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

106
CVE-2023/CVE-2023-20xx/CVE-2023-2015.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2015",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:10.087",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:41:00.120",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.8.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "AE098F93-5FF4-4DFF-A63F-D188E1D53FC4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.8.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "505C9224-85B9-4390-827C-DDA3FF73C34E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2015.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/407137",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1941091",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

43
CVE-2023/CVE-2023-215xx/CVE-2023-21565.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-21565",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.433",
"lastModified": "2023-06-14T00:15:09.433",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Azure DevOps Server Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 4.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21565",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-215xx/CVE-2023-21569.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-21569",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.497",
"lastModified": "2023-06-14T00:15:09.497",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Azure DevOps Server Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.1,
"impactScore": 3.4
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21569",
"source": "secure@microsoft.com"
}
]
}

106
CVE-2023/CVE-2023-21xx/CVE-2023-2198.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2198",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:10.150",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:49:49.157",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-1333"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "8.7.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "87236166-9FB8-4766-AB87-AA4F6AEB8EE6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "8.7.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "79D863F6-D709-4F8F-A078-EB1D3AB14F1D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2198.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/408273",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1947187",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

106
CVE-2023/CVE-2023-21xx/CVE-2023-2199.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-2199",
"sourceIdentifier": "cve@gitlab.com",
"published": "2023-06-07T17:15:10.207",
"lastModified": "2023-06-07T17:28:57.443",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2023-06-14T01:57:17.037",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -12,6 +12,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
},
{
"source": "cve@gitlab.com",
"type": "Secondary",
@ -34,18 +54,94 @@
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-1333"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "12.0.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "A59F1E9F-514F-4A85-B7DF-53599B79D1AC"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "12.0.0",
"versionEndExcluding": "15.10.8",
"matchCriteriaId": "5C2C66EB-C376-4326-BDE9-5C49B5EA8A87"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "C612DD9C-BFBD-49A3-9936-BB7D2C7ADBED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "15.11.0",
"versionEndExcluding": "15.11.7",
"matchCriteriaId": "A6944880-86FD-4D58-8217-667BD48B019A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:community:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "C060C573-5005-487A-8AB2-DE66531685A1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:gitlab:gitlab:*:*:*:*:enterprise:*:*:*",
"versionStartIncluding": "16.0.0",
"versionEndExcluding": "16.0.2",
"matchCriteriaId": "D19BAB29-C57C-4410-A093-44AFFF3984DF"
}
]
}
]
}
],
"references": [
{
"url": "https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-2199.json",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://gitlab.com/gitlab-org/gitlab/-/issues/408272",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://hackerone.com/reports/1943819",
"source": "cve@gitlab.com"
"source": "cve@gitlab.com",
"tags": [
"Permissions Required",
"Third Party Advisory"
]
}
]
}

43
CVE-2023/CVE-2023-249xx/CVE-2023-24938.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-24938",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.557",
"lastModified": "2023-06-14T00:15:09.557",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows CryptoAPI Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24938",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29346.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29346",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.620",
"lastModified": "2023-06-14T00:15:09.620",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "NTFS Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29346",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29351.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29351",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.677",
"lastModified": "2023-06-14T00:15:09.677",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Group Policy Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29351",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29352.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29352",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.733",
"lastModified": "2023-06-14T00:15:09.733",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Remote Desktop Security Feature Bypass Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29352",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29353.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29353",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.790",
"lastModified": "2023-06-14T00:15:09.790",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Sysinternals Process Monitor for Windows Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29353",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29355.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29355",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.847",
"lastModified": "2023-06-14T00:15:09.847",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "DHCP Server Service Information Disclosure Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29355",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29357.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29357",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.903",
"lastModified": "2023-06-14T00:15:09.903",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft SharePoint Server Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29357",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29358.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29358",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:09.957",
"lastModified": "2023-06-14T00:15:09.957",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows GDI Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29358",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29359.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29359",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.010",
"lastModified": "2023-06-14T00:15:10.010",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "GDI Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29359",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29360.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29360",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.067",
"lastModified": "2023-06-14T00:15:10.067",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows TPM Device Driver Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29360",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29361.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29361",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.117",
"lastModified": "2023-06-14T00:15:10.117",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29361",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29362.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29362",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.187",
"lastModified": "2023-06-14T00:15:10.187",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Remote Desktop Client Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29362",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29363.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29363",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.243",
"lastModified": "2023-06-14T00:15:10.243",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29363",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29364.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29364",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.300",
"lastModified": "2023-06-14T00:15:10.300",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Authentication Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29364",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29365.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29365",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.357",
"lastModified": "2023-06-14T00:15:10.357",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Media Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29365",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29366.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29366",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.417",
"lastModified": "2023-06-14T00:15:10.417",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Geolocation Service Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29366",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29367.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29367",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.473",
"lastModified": "2023-06-14T00:15:10.473",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "iSCSI Target WMI Provider Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29367",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29368.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29368",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.530",
"lastModified": "2023-06-14T00:15:10.530",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Filtering Platform Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29368",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29369.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29369",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.583",
"lastModified": "2023-06-14T00:15:10.583",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Remote Procedure Call Runtime Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29369",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29370.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29370",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.640",
"lastModified": "2023-06-14T00:15:10.640",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Media Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29370",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29371.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29371",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.697",
"lastModified": "2023-06-14T00:15:10.697",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows GDI Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29371",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29372.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29372",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.753",
"lastModified": "2023-06-14T00:15:10.753",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29372",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-293xx/CVE-2023-29373.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-29373",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.807",
"lastModified": "2023-06-14T00:15:10.807",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft ODBC Driver Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-29373",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32008.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32008",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.867",
"lastModified": "2023-06-14T00:15:10.867",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Resilient File System (ReFS) Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32008",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32009.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32009",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.917",
"lastModified": "2023-06-14T00:15:10.917",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Collaborative Translation Framework Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.0,
"impactScore": 6.0
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32009",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32010.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32010",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:10.970",
"lastModified": "2023-06-14T00:15:10.970",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Bus Filter Driver Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32010",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32011.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32011",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.043",
"lastModified": "2023-06-14T00:15:11.043",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows iSCSI Discovery Service Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32011",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32012.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32012",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.097",
"lastModified": "2023-06-14T00:15:11.097",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Container Manager Service Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.0,
"impactScore": 5.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32012",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32013.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32013",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.163",
"lastModified": "2023-06-14T00:15:11.163",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Hyper-V Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32013",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32014.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32014",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.217",
"lastModified": "2023-06-14T00:15:11.217",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32014",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32015.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32015",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.277",
"lastModified": "2023-06-14T00:15:11.277",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32015",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32016.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32016",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.333",
"lastModified": "2023-06-14T00:15:11.333",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Installer Information Disclosure Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32016",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32017.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32017",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.390",
"lastModified": "2023-06-14T00:15:11.390",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft PostScript Printer Driver Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32017",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32018.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32018",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.447",
"lastModified": "2023-06-14T00:15:11.447",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Hello Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32018",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32019.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32019",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.507",
"lastModified": "2023-06-14T00:15:11.507",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows Kernel Information Disclosure Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.0,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32019",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32020.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32020",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.563",
"lastModified": "2023-06-14T00:15:11.563",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows DNS Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW"
},
"exploitabilityScore": 2.2,
"impactScore": 1.4
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32020",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32021.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32021",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.620",
"lastModified": "2023-06-14T00:15:11.620",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Windows SMB Witness Service Security Feature Bypass Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 4.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32021",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32022.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32022",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.677",
"lastModified": "2023-06-14T00:15:11.677",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "<div data-wrapper=\"true\" style=\"font-family:'Segoe UI','Helvetica Neue',sans-serif; font-size:9pt\">\n<div>Windows Server Service Security Feature Bypass Vulnerability</div>\n</div>\n"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "HIGH",
"baseScore": 7.6,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 4.7
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32022",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32029.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32029",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.737",
"lastModified": "2023-06-14T00:15:11.737",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Excel Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32029",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-320xx/CVE-2023-32032.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-32032",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.790",
"lastModified": "2023-06-14T00:15:11.790",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.0,
"impactScore": 5.5
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-32032",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33126.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33126",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.853",
"lastModified": "2023-06-14T00:15:11.853",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": ".NET and Visual Studio Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.3,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33126",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33128.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33128",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.910",
"lastModified": "2023-06-14T00:15:11.910",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": ".NET and Visual Studio Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.3,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33128",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33129.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33129",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:11.967",
"lastModified": "2023-06-14T00:15:11.967",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft SharePoint Denial of Service Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33129",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33130.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33130",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.027",
"lastModified": "2023-06-14T00:15:12.027",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft SharePoint Server Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 7.3,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.1,
"impactScore": 5.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33130",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33131.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33131",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.087",
"lastModified": "2023-06-14T00:15:12.087",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Outlook Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33131",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33132.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33132",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.147",
"lastModified": "2023-06-14T00:15:12.147",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft SharePoint Server Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.1,
"impactScore": 4.2
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33132",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33133.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33133",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.213",
"lastModified": "2023-06-14T00:15:12.213",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Excel Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33133",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33135.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33135",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.267",
"lastModified": "2023-06-14T00:15:12.267",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": ".NET and Visual Studio Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.3,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33135",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33137.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33137",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.323",
"lastModified": "2023-06-14T00:15:12.323",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Excel Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33137",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33139.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33139",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.380",
"lastModified": "2023-06-14T00:15:12.380",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Visual Studio Information Disclosure Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33139",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33140.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33140",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.433",
"lastModified": "2023-06-14T00:15:12.433",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft OneNote Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33140",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33142.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33142",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.487",
"lastModified": "2023-06-14T00:15:12.487",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft SharePoint Server Elevation of Privilege Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33142",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33144.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33144",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.543",
"lastModified": "2023-06-14T00:15:12.543",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Visual Studio Code Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.3,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33144",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33145.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33145",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.597",
"lastModified": "2023-06-14T00:15:12.597",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Edge (Chromium-based) Information Disclosure Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33145",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2023/CVE-2023-331xx/CVE-2023-33146.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2023-33146",
"sourceIdentifier": "secure@microsoft.com",
"published": "2023-06-14T00:15:12.653",
"lastModified": "2023-06-14T00:15:12.653",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Office Remote Code Execution Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33146",
"source": "secure@microsoft.com"
}
]
}

8
CVE-2023/CVE-2023-343xx/CVE-2023-34362.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2023-34362",
"sourceIdentifier": "cve@mitre.org",
"published": "2023-06-02T14:15:09.487",
"lastModified": "2023-06-12T14:07:41.803",
"vulnStatus": "Analyzed",
"lastModified": "2023-06-14T00:15:12.713",
"vulnStatus": "Modified",
"cisaExploitAdd": "2023-06-02",
"cisaActionDue": "2023-06-23",
"cisaRequiredAction": "Apply updates per vendor instructions.",
@ -124,6 +124,10 @@
}
],
"references": [
{
"url": "http://packetstormsecurity.com/files/172883/MOVEit-Transfer-SQL-Injection-Remote-Code-Execution.html",
"source": "cve@mitre.org"
},
{
"url": "https://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023",
"source": "cve@mitre.org",

57
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2023-06-13T23:55:26.551878+00:00
2023-06-14T02:00:28.587262+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2023-06-13T23:15:08.937000+00:00
2023-06-14T01:57:17.037000+00:00
```
### Last Data Feed Release
@ -23,34 +23,61 @@ Repository synchronizes with the NVD every 2 hours.
Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest)
```plain
2023-06-13T00:00:13.574050+00:00
2023-06-14T00:00:13.767868+00:00
```
### Total Number of included CVEs
```plain
217618
217675
```
### CVEs added in the last Commit
Recently added CVEs: `6`
Recently added CVEs: `57`
* [CVE-2023-24469](CVE-2023/CVE-2023-244xx/CVE-2023-24469.json) (`2023-06-13T22:15:09.317`)
* [CVE-2023-31142](CVE-2023/CVE-2023-311xx/CVE-2023-31142.json) (`2023-06-13T22:15:09.380`)
* [CVE-2023-32061](CVE-2023/CVE-2023-320xx/CVE-2023-32061.json) (`2023-06-13T22:15:09.477`)
* [CVE-2023-32301](CVE-2023/CVE-2023-323xx/CVE-2023-32301.json) (`2023-06-13T22:15:09.560`)
* [CVE-2023-34250](CVE-2023/CVE-2023-342xx/CVE-2023-34250.json) (`2023-06-13T22:15:09.663`)
* [CVE-2023-24470](CVE-2023/CVE-2023-244xx/CVE-2023-24470.json) (`2023-06-13T23:15:08.937`)
* [CVE-2023-32015](CVE-2023/CVE-2023-320xx/CVE-2023-32015.json) (`2023-06-14T00:15:11.277`)
* [CVE-2023-32016](CVE-2023/CVE-2023-320xx/CVE-2023-32016.json) (`2023-06-14T00:15:11.333`)
* [CVE-2023-32017](CVE-2023/CVE-2023-320xx/CVE-2023-32017.json) (`2023-06-14T00:15:11.390`)
* [CVE-2023-32018](CVE-2023/CVE-2023-320xx/CVE-2023-32018.json) (`2023-06-14T00:15:11.447`)
* [CVE-2023-32019](CVE-2023/CVE-2023-320xx/CVE-2023-32019.json) (`2023-06-14T00:15:11.507`)
* [CVE-2023-32020](CVE-2023/CVE-2023-320xx/CVE-2023-32020.json) (`2023-06-14T00:15:11.563`)
* [CVE-2023-32021](CVE-2023/CVE-2023-320xx/CVE-2023-32021.json) (`2023-06-14T00:15:11.620`)
* [CVE-2023-32022](CVE-2023/CVE-2023-320xx/CVE-2023-32022.json) (`2023-06-14T00:15:11.677`)
* [CVE-2023-32029](CVE-2023/CVE-2023-320xx/CVE-2023-32029.json) (`2023-06-14T00:15:11.737`)
* [CVE-2023-32032](CVE-2023/CVE-2023-320xx/CVE-2023-32032.json) (`2023-06-14T00:15:11.790`)
* [CVE-2023-33126](CVE-2023/CVE-2023-331xx/CVE-2023-33126.json) (`2023-06-14T00:15:11.853`)
* [CVE-2023-33128](CVE-2023/CVE-2023-331xx/CVE-2023-33128.json) (`2023-06-14T00:15:11.910`)
* [CVE-2023-33129](CVE-2023/CVE-2023-331xx/CVE-2023-33129.json) (`2023-06-14T00:15:11.967`)
* [CVE-2023-33130](CVE-2023/CVE-2023-331xx/CVE-2023-33130.json) (`2023-06-14T00:15:12.027`)
* [CVE-2023-33131](CVE-2023/CVE-2023-331xx/CVE-2023-33131.json) (`2023-06-14T00:15:12.087`)
* [CVE-2023-33132](CVE-2023/CVE-2023-331xx/CVE-2023-33132.json) (`2023-06-14T00:15:12.147`)
* [CVE-2023-33133](CVE-2023/CVE-2023-331xx/CVE-2023-33133.json) (`2023-06-14T00:15:12.213`)
* [CVE-2023-33135](CVE-2023/CVE-2023-331xx/CVE-2023-33135.json) (`2023-06-14T00:15:12.267`)
* [CVE-2023-33137](CVE-2023/CVE-2023-331xx/CVE-2023-33137.json) (`2023-06-14T00:15:12.323`)
* [CVE-2023-33139](CVE-2023/CVE-2023-331xx/CVE-2023-33139.json) (`2023-06-14T00:15:12.380`)
* [CVE-2023-33140](CVE-2023/CVE-2023-331xx/CVE-2023-33140.json) (`2023-06-14T00:15:12.433`)
* [CVE-2023-33142](CVE-2023/CVE-2023-331xx/CVE-2023-33142.json) (`2023-06-14T00:15:12.487`)
* [CVE-2023-33144](CVE-2023/CVE-2023-331xx/CVE-2023-33144.json) (`2023-06-14T00:15:12.543`)
* [CVE-2023-33145](CVE-2023/CVE-2023-331xx/CVE-2023-33145.json) (`2023-06-14T00:15:12.597`)
* [CVE-2023-33146](CVE-2023/CVE-2023-331xx/CVE-2023-33146.json) (`2023-06-14T00:15:12.653`)
### CVEs modified in the last Commit
Recently modified CVEs: `3`
Recently modified CVEs: `11`
* [CVE-2022-38014](CVE-2022/CVE-2022-380xx/CVE-2022-38014.json) (`2023-06-13T22:15:09.057`)
* [CVE-2022-41085](CVE-2022/CVE-2022-410xx/CVE-2022-41085.json) (`2023-06-13T22:15:09.167`)
* [CVE-2022-41119](CVE-2022/CVE-2022-411xx/CVE-2022-41119.json) (`2023-06-13T22:15:09.243`)
* [CVE-2021-46889](CVE-2021/CVE-2021-468xx/CVE-2021-46889.json) (`2023-06-14T01:43:41.160`)
* [CVE-2022-24990](CVE-2022/CVE-2022-249xx/CVE-2022-24990.json) (`2023-06-14T00:15:09.333`)
* [CVE-2023-34362](CVE-2023/CVE-2023-343xx/CVE-2023-34362.json) (`2023-06-14T00:15:12.713`)
* [CVE-2023-0121](CVE-2023/CVE-2023-01xx/CVE-2023-0121.json) (`2023-06-14T01:03:58.017`)
* [CVE-2023-0508](CVE-2023/CVE-2023-05xx/CVE-2023-0508.json) (`2023-06-14T01:10:27.567`)
* [CVE-2023-1825](CVE-2023/CVE-2023-18xx/CVE-2023-1825.json) (`2023-06-14T01:16:36.050`)
* [CVE-2023-2001](CVE-2023/CVE-2023-20xx/CVE-2023-2001.json) (`2023-06-14T01:25:39.517`)
* [CVE-2023-2013](CVE-2023/CVE-2023-20xx/CVE-2023-2013.json) (`2023-06-14T01:33:51.510`)
* [CVE-2023-2015](CVE-2023/CVE-2023-20xx/CVE-2023-2015.json) (`2023-06-14T01:41:00.120`)
* [CVE-2023-2198](CVE-2023/CVE-2023-21xx/CVE-2023-2198.json) (`2023-06-14T01:49:49.157`)
* [CVE-2023-2199](CVE-2023/CVE-2023-21xx/CVE-2023-2199.json) (`2023-06-14T01:57:17.037`)
## Download and Usage