Auto-Update: 2024-09-05T22:00:17.805555+00:00

fkie-cad · Sep 5, 2024 · 14a80da · 14a80da
1 parent 0c67f5a
commit 14a80da
Show file tree

Hide file tree

Showing 32 changed files with 6,710 additions and 249 deletions.
diff --git a/CVE-2020/CVE-2020-368xx/CVE-2020-36830.json b/CVE-2020/CVE-2020-368xx/CVE-2020-36830.json
@@ -2,8 +2,8 @@
   "id": "CVE-2020-36830",
   "sourceIdentifier": "[email protected]",
   "published": "2024-09-02T18:15:20.967",
-  "lastModified": "2024-09-03T12:59:02.453",
-  "vulnStatus": "Awaiting Analysis",
+  "lastModified": "2024-09-05T21:47:09.243",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -61,6 +61,26 @@
       }
     ],
     "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH",
+          "baseScore": 7.5,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 3.6
+      },
       {
         "source": "[email protected]",
         "type": "Secondary",
@@ -120,26 +140,59 @@
       ]
     }
   ],
+  "configurations": [
+    {
+      "nodes": [
+        {
+          "operator": "OR",
+          "negate": false,
+          "cpeMatch": [
+            {
+              "vulnerable": true,
+              "criteria": "cpe:2.3:a:nescalante:urlregex:*:*:*:*:*:*:*:*",
+              "versionEndExcluding": "0.5.1",
+              "matchCriteriaId": "B39F961B-8853-47C2-8321-CB87E016FD72"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "url": "https://github.com/nescalante/urlregex/commit/e5a085afe6abfaea1d1a78f54c45af9ef43ca1f9",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Patch"
+      ]
     },
     {
       "url": "https://github.com/nescalante/urlregex/pull/8",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Exploit"
+      ]
     },
     {
       "url": "https://github.com/nescalante/urlregex/releases/tag/v0.5.1",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Release Notes"
+      ]
     },
     {
       "url": "https://vuldb.com/?ctiid.276269",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Permissions Required"
+      ]
     },
     {
       "url": "https://vuldb.com/?id.276269",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Third Party Advisory"
+      ]
     }
   ]
 }
diff --git a/CVE-2022/CVE-2022-435xx/CVE-2022-43554.json b/CVE-2022/CVE-2022-435xx/CVE-2022-43554.json
@@ -2,8 +2,8 @@
   "id": "CVE-2022-43554",
   "sourceIdentifier": "[email protected]",
   "published": "2023-11-03T20:15:08.690",
-  "lastModified": "2023-11-09T20:48:39.960",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2024-09-05T20:35:00.757",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -71,6 +71,16 @@
           "value": "CWE-306"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-306"
+        }
+      ]
     }
   ],
   "configurations": [

diff --git a/CVE-2022/CVE-2022-445xx/CVE-2022-44569.json b/CVE-2022/CVE-2022-445xx/CVE-2022-44569.json
@@ -2,8 +2,8 @@
   "id": "CVE-2022-44569",
   "sourceIdentifier": "[email protected]",
   "published": "2023-11-03T20:15:08.813",
-  "lastModified": "2023-11-09T20:49:57.513",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2024-09-05T20:35:02.730",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -71,6 +71,16 @@
           "value": "CWE-287"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-287"
+        }
+      ]
     }
   ],
   "configurations": [

diff --git a/CVE-2022/CVE-2022-474xx/CVE-2022-47420.json b/CVE-2022/CVE-2022-474xx/CVE-2022-47420.json
@@ -2,7 +2,7 @@
   "id": "CVE-2022-47420",
   "sourceIdentifier": "[email protected]",
   "published": "2023-11-06T08:15:21.757",
-  "lastModified": "2024-07-08T10:15:02.050",
+  "lastModified": "2024-09-05T20:35:04.407",
   "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 3.9,
         "impactScore": 5.9
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
       }
     ]
   },

diff --git a/CVE-2022/CVE-2022-474xx/CVE-2022-47428.json b/CVE-2022/CVE-2022-474xx/CVE-2022-47428.json
@@ -2,8 +2,8 @@
   "id": "CVE-2022-47428",
   "sourceIdentifier": "[email protected]",
   "published": "2023-11-06T08:15:21.830",
-  "lastModified": "2023-11-14T15:35:13.593",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2024-09-05T20:35:05.117",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 3.9,
         "impactScore": 5.9
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
       }
     ]
   },

diff --git a/CVE-2023/CVE-2023-213xx/CVE-2023-21390.json b/CVE-2023/CVE-2023-213xx/CVE-2023-21390.json
@@ -2,8 +2,8 @@
   "id": "CVE-2023-21390",
   "sourceIdentifier": "[email protected]",
   "published": "2023-10-30T18:15:09.643",
-  "lastModified": "2023-11-07T00:49:59.537",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2024-09-05T20:35:07.280",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 1.8,
         "impactScore": 5.9
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH",
+          "baseScore": 7.8,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 5.9
       }
     ]
   },
@@ -49,6 +69,16 @@
           "value": "CWE-863"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-863"
+        }
+      ]
     }
   ],
   "configurations": [

diff --git a/CVE-2023/CVE-2023-366xx/CVE-2023-36677.json b/CVE-2023/CVE-2023-366xx/CVE-2023-36677.json
@@ -2,8 +2,8 @@
   "id": "CVE-2023-36677",
   "sourceIdentifier": "[email protected]",
   "published": "2023-11-03T23:15:08.417",
-  "lastModified": "2023-11-09T20:31:09.167",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2024-09-05T20:35:08.677",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 2.8,
         "impactScore": 5.9
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH",
+          "baseScore": 8.8,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 2.8,
+        "impactScore": 5.9
       }
     ]
   },