Auto-Update: 2024-10-10T22:00:17.541767+00:00

fkie-cad · Oct 10, 2024 · 201482c · 201482c
1 parent 3137bd8
commit 201482c
Show file tree

Hide file tree

Showing 57 changed files with 8,280 additions and 303 deletions.
diff --git a/CVE-2022/CVE-2022-42xx/CVE-2022-4244.json b/CVE-2022/CVE-2022-42xx/CVE-2022-4244.json
@@ -2,8 +2,8 @@
   "id": "CVE-2022-4244",
   "sourceIdentifier": "[email protected]",
   "published": "2023-09-25T20:15:10.220",
-  "lastModified": "2024-05-03T16:15:08.730",
-  "vulnStatus": "Modified",
+  "lastModified": "2024-10-10T20:04:34.603",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -90,9 +90,9 @@
           "cpeMatch": [
             {
               "vulnerable": true,
-              "criteria": "cpe:2.3:a:codehaus-plexus_project:codehaus-plexus:*:*:*:*:*:*:*:*",
+              "criteria": "cpe:2.3:a:codehaus-plexus:plexus-utils:*:*:*:*:*:*:*:*",
               "versionEndExcluding": "3.0.24",
-              "matchCriteriaId": "AAE606F1-EBAB-4832-8F66-495E84147298"
+              "matchCriteriaId": "EA55EA05-9741-46F1-95D7-6F4E2ACAEE8A"
             }
           ]
         }
@@ -118,7 +118,10 @@
   "references": [
     {
       "url": "https://access.redhat.com/errata/RHSA-2023:2135",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Third Party Advisory"
+      ]
     },
     {
       "url": "https://access.redhat.com/errata/RHSA-2023:3906",

diff --git a/CVE-2022/CVE-2022-42xx/CVE-2022-4245.json b/CVE-2022/CVE-2022-42xx/CVE-2022-4245.json
@@ -2,8 +2,8 @@
   "id": "CVE-2022-4245",
   "sourceIdentifier": "[email protected]",
   "published": "2023-09-25T20:15:10.400",
-  "lastModified": "2024-05-03T16:15:08.987",
-  "vulnStatus": "Modified",
+  "lastModified": "2024-10-10T20:02:34.187",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -90,9 +90,9 @@
           "cpeMatch": [
             {
               "vulnerable": true,
-              "criteria": "cpe:2.3:a:codehaus-plexus_project:codehaus-plexus:*:*:*:*:*:*:*:*",
+              "criteria": "cpe:2.3:a:codehaus-plexus:plexus-utils:*:*:*:*:*:*:*:*",
               "versionEndExcluding": "3.0.24",
-              "matchCriteriaId": "AAE606F1-EBAB-4832-8F66-495E84147298"
+              "matchCriteriaId": "EA55EA05-9741-46F1-95D7-6F4E2ACAEE8A"
             }
           ]
         }
@@ -118,7 +118,10 @@
   "references": [
     {
       "url": "https://access.redhat.com/errata/RHSA-2023:2135",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Third Party Advisory"
+      ]
     },
     {
       "url": "https://access.redhat.com/errata/RHSA-2023:3906",

diff --git a/CVE-2023/CVE-2023-223xx/CVE-2023-22342.json b/CVE-2023/CVE-2023-223xx/CVE-2023-22342.json
@@ -2,8 +2,8 @@
   "id": "CVE-2023-22342",
   "sourceIdentifier": "[email protected]",
   "published": "2024-02-14T14:15:39.063",
-  "lastModified": "2024-02-14T15:02:01.453",
-  "vulnStatus": "Awaiting Analysis",
+  "lastModified": "2024-10-10T21:28:04.290",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -17,6 +17,26 @@
   ],
   "metrics": {
     "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L",
+          "attackVector": "LOCAL",
+          "attackComplexity": "HIGH",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "LOW",
+          "baseScore": 7.7,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 1.1,
+        "impactScore": 6.0
+      },
       {
         "source": "[email protected]",
         "type": "Secondary",
@@ -40,6 +60,16 @@
     ]
   },
   "weaknesses": [
+    {
+      "source": "[email protected]",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "NVD-CWE-noinfo"
+        }
+      ]
+    },
     {
       "source": "[email protected]",
       "type": "Secondary",
@@ -51,10 +81,31 @@
       ]
     }
   ],
+  "configurations": [
+    {
+      "nodes": [
+        {
+          "operator": "OR",
+          "negate": false,
+          "cpeMatch": [
+            {
+              "vulnerable": true,
+              "criteria": "cpe:2.3:a:intel:thunderbolt_dch_driver:*:*:*:*:*:windows:*:*",
+              "versionEndExcluding": "88",
+              "matchCriteriaId": "39941EA6-827E-4A1A-AE6D-8E09C2014183"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00851.html",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Vendor Advisory"
+      ]
     }
   ]
 }
diff --git a/CVE-2023/CVE-2023-223xx/CVE-2023-22390.json b/CVE-2023/CVE-2023-223xx/CVE-2023-22390.json
@@ -2,8 +2,8 @@
   "id": "CVE-2023-22390",
   "sourceIdentifier": "[email protected]",
   "published": "2024-02-14T14:15:39.433",
-  "lastModified": "2024-02-14T15:02:01.453",
-  "vulnStatus": "Awaiting Analysis",
+  "lastModified": "2024-10-10T21:27:55.377",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -17,6 +17,26 @@
   ],
   "metrics": {
     "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE",
+          "baseScore": 6.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 2.0,
+        "impactScore": 4.0
+      },
       {
         "source": "[email protected]",
         "type": "Secondary",
@@ -40,6 +60,16 @@
     ]
   },
   "weaknesses": [
+    {
+      "source": "[email protected]",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "NVD-CWE-noinfo"
+        }
+      ]
+    },
     {
       "source": "[email protected]",
       "type": "Secondary",
@@ -51,10 +81,31 @@
       ]
     }
   ],
+  "configurations": [
+    {
+      "nodes": [
+        {
+          "operator": "OR",
+          "negate": false,
+          "cpeMatch": [
+            {
+              "vulnerable": true,
+              "criteria": "cpe:2.3:a:intel:thunderbolt_dch_driver:*:*:*:*:*:windows:*:*",
+              "versionEndExcluding": "88",
+              "matchCriteriaId": "39941EA6-827E-4A1A-AE6D-8E09C2014183"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00851.html",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Vendor Advisory"
+      ]
     }
   ]
 }
diff --git a/CVE-2023/CVE-2023-228xx/CVE-2023-22848.json b/CVE-2023/CVE-2023-228xx/CVE-2023-22848.json
@@ -2,8 +2,8 @@
   "id": "CVE-2023-22848",
   "sourceIdentifier": "[email protected]",
   "published": "2024-02-14T14:15:39.757",
-  "lastModified": "2024-02-14T15:02:01.453",
-  "vulnStatus": "Awaiting Analysis",
+  "lastModified": "2024-10-10T21:27:48.390",
+  "vulnStatus": "Analyzed",
   "cveTags": [],
   "descriptions": [
     {
@@ -17,6 +17,26 @@
   ],
   "metrics": {
     "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Primary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
+      },
       {
         "source": "[email protected]",
         "type": "Secondary",
@@ -40,6 +60,16 @@
     ]
   },
   "weaknesses": [
+    {
+      "source": "[email protected]",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "NVD-CWE-noinfo"
+        }
+      ]
+    },
     {
       "source": "[email protected]",
       "type": "Secondary",
@@ -51,10 +81,31 @@
       ]
     }
   ],
+  "configurations": [
+    {
+      "nodes": [
+        {
+          "operator": "OR",
+          "negate": false,
+          "cpeMatch": [
+            {
+              "vulnerable": true,
+              "criteria": "cpe:2.3:a:intel:thunderbolt_dch_driver:*:*:*:*:*:windows:*:*",
+              "versionEndExcluding": "88",
+              "matchCriteriaId": "39941EA6-827E-4A1A-AE6D-8E09C2014183"
+            }
+          ]
+        }
+      ]
+    }
+  ],
   "references": [
     {
       "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00851.html",
-      "source": "[email protected]"
+      "source": "[email protected]",
+      "tags": [
+        "Vendor Advisory"
+      ]
     }
   ]
 }