From 0fa379e8bd02848f7343dd0217a756c14049f419 Mon Sep 17 00:00:00 2001 From: cvelistV5 Github Action Date: Thu, 23 Jan 2025 20:59:11 +0000 Subject: [PATCH] 3 changes (0 new | 3 updated): - 0 new CVEs: - 3 updated CVEs: CVE-2022-3898, CVE-2023-31845, CVE-2023-32081 --- cves/2022/3xxx/CVE-2022-3898.json | 34 ++++++++++++++- cves/2023/31xxx/CVE-2023-31845.json | 68 +++++++++++++++++++++++++++-- cves/2023/32xxx/CVE-2023-32081.json | 34 ++++++++++++++- 3 files changed, 130 insertions(+), 6 deletions(-) diff --git a/cves/2022/3xxx/CVE-2022-3898.json b/cves/2022/3xxx/CVE-2022-3898.json index 8bdd2a424d0f..947c676c7422 100644 --- a/cves/2022/3xxx/CVE-2022-3898.json +++ b/cves/2022/3xxx/CVE-2022-3898.json @@ -9,7 +9,7 @@ "requesterUserId": "8d345d3f-a59e-4410-a440-fac6e918fcfc", "dateReserved": "2022-11-08T16:36:03.783Z", "datePublished": "2022-11-29T20:42:19.502Z", - "dateUpdated": "2024-08-03T01:20:58.843Z" + "dateUpdated": "2025-01-23T20:50:42.802Z" }, "containers": { "cna": { @@ -114,6 +114,38 @@ ] } ] + }, + { + "metrics": [ + { + "other": { + "type": "ssvc", + "content": { + "timestamp": "2025-01-23T20:49:52.507604Z", + "id": "CVE-2022-3898", + "options": [ + { + "Exploitation": "none" + }, + { + "Automatable": "no" + }, + { + "Technical Impact": "total" + } + ], + "role": "CISA Coordinator", + "version": "2.0.3" + } + } + } + ], + "title": "CISA ADP Vulnrichment", + "providerMetadata": { + "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "shortName": "CISA-ADP", + "dateUpdated": "2025-01-23T20:50:42.802Z" + } } ] } diff --git a/cves/2023/31xxx/CVE-2023-31845.json b/cves/2023/31xxx/CVE-2023-31845.json index 7634c80b1ead..16a26ee7194b 100644 --- a/cves/2023/31xxx/CVE-2023-31845.json +++ b/cves/2023/31xxx/CVE-2023-31845.json @@ -6,16 +6,16 @@ "cveId": "CVE-2023-31845", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", - "dateUpdated": "2024-08-02T14:56:35.551Z", - "dateReserved": "2023-04-29T00:00:00", - "datePublished": "2023-05-15T00:00:00" + "dateUpdated": "2025-01-23T20:57:06.139Z", + "dateReserved": "2023-04-29T00:00:00.000Z", + "datePublished": "2023-05-15T00:00:00.000Z" }, "containers": { "cna": { "providerMetadata": { "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", - "dateUpdated": "2023-05-15T00:00:00" + "dateUpdated": "2023-05-15T00:00:00.000Z" }, "descriptions": [ { @@ -68,6 +68,66 @@ ] } ] + }, + { + "problemTypes": [ + { + "descriptions": [ + { + "type": "CWE", + "cweId": "CWE-89", + "lang": "en", + "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')" + } + ] + } + ], + "metrics": [ + { + "cvssV3_1": { + "scope": "UNCHANGED", + "version": "3.1", + "baseScore": 7.2, + "attackVector": "NETWORK", + "baseSeverity": "HIGH", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "integrityImpact": "HIGH", + "userInteraction": "NONE", + "attackComplexity": "LOW", + "availabilityImpact": "HIGH", + "privilegesRequired": "HIGH", + "confidentialityImpact": "HIGH" + } + }, + { + "other": { + "type": "ssvc", + "content": { + "timestamp": "2025-01-23T20:57:00.621553Z", + "id": "CVE-2023-31845", + "options": [ + { + "Exploitation": "poc" + }, + { + "Automatable": "no" + }, + { + "Technical Impact": "total" + } + ], + "role": "CISA Coordinator", + "version": "2.0.3" + } + } + } + ], + "title": "CISA ADP Vulnrichment", + "providerMetadata": { + "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "shortName": "CISA-ADP", + "dateUpdated": "2025-01-23T20:57:06.139Z" + } } ] } diff --git a/cves/2023/32xxx/CVE-2023-32081.json b/cves/2023/32xxx/CVE-2023-32081.json index ee19ac82659c..ac7a973f2255 100644 --- a/cves/2023/32xxx/CVE-2023-32081.json +++ b/cves/2023/32xxx/CVE-2023-32081.json @@ -8,7 +8,7 @@ "assignerShortName": "GitHub_M", "dateReserved": "2023-05-01T16:47:35.316Z", "datePublished": "2023-05-12T13:49:56.969Z", - "dateUpdated": "2024-08-02T15:03:29.081Z" + "dateUpdated": "2025-01-23T20:55:31.692Z" }, "containers": { "cna": { @@ -117,6 +117,38 @@ "url": "https://github.com/vert-x3/vertx-stomp/commit/0de4bc5a44ddb57e74d92c445f16456fa03f265b" } ] + }, + { + "metrics": [ + { + "other": { + "type": "ssvc", + "content": { + "timestamp": "2025-01-23T20:55:08.715333Z", + "id": "CVE-2023-32081", + "options": [ + { + "Exploitation": "none" + }, + { + "Automatable": "yes" + }, + { + "Technical Impact": "partial" + } + ], + "role": "CISA Coordinator", + "version": "2.0.3" + } + } + } + ], + "title": "CISA ADP Vulnrichment", + "providerMetadata": { + "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "shortName": "CISA-ADP", + "dateUpdated": "2025-01-23T20:55:31.692Z" + } } ] }