nvd-json-data-feeds/CVE-2021/CVE-2021-420xx/CVE-2021-42049.json

{
  "id": "CVE-2021-42049",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2022-09-29T03:15:14.763",
  "lastModified": "2022-09-30T16:58:00.377",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in the Translate extension in MediaWiki through 1.36.2. Oversighters cannot undo revisions or oversight on pages where they suppressed information (such as PII). This allows oversighters to whitewash revisions."
    },
    {
      "lang": "es",
      "value": "Se ha detectado un problema en la extensi\u00f3n Translate de MediaWiki a partir de la versi\u00f3n 1.36.2. Los supervisores no pueden deshacer las revisiones o la supervisi\u00f3n de las p\u00e1ginas en las que han suprimido informaci\u00f3n (como PII). Esto permite a supervisores blanquear las revisiones"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "LOW",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "availabilityImpact": "HIGH",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:*",
              "versionEndIncluding": "1.36.2",
              "matchCriteriaId": "852AD0A4-1F54-4352-8554-34DE96EF04D9"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://gerrit.wikimedia.org/r/q/I4d95220ef414337147235f7ebedc9b945c3348e3",
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ]
    },
    {
      "url": "https://phabricator.wikimedia.org/T286884",
      "source": "cve@mitre.org",
      "tags": [
        "Permissions Required",
        "Vendor Advisory"
      ]
    }
  ]
}