fkie-cad
diff --git a/‎CVE-2023/CVE-2023-370xx/CVE-2023-37037.json
Lines changed: 31 additions & 1 deletion b/‎CVE-2023/CVE-2023-370xx/CVE-2023-37037.json
Lines changed: 31 additions & 1 deletion
diff --git a/‎CVE-2023/CVE-2023-429xx/CVE-2023-42930.json
Lines changed: 21 additions & 1 deletion b/‎CVE-2023/CVE-2023-429xx/CVE-2023-42930.json
Lines changed: 21 additions & 1 deletion
diff --git a/‎CVE-2023/CVE-2023-475xx/CVE-2023-47539.json
Lines changed: 56 additions & 0 deletions b/‎CVE-2023/CVE-2023-475xx/CVE-2023-47539.json
Lines changed: 56 additions & 0 deletions
diff --git a/‎CVE-2024/CVE-2024-209xx/CVE-2024-20941.json
Lines changed: 12 additions & 2 deletions b/‎CVE-2024/CVE-2024-209xx/CVE-2024-20941.json
Lines changed: 12 additions & 2 deletions
diff --git a/‎CVE-2024/CVE-2024-211xx/CVE-2024-21113.json
Lines changed: 13 additions & 3 deletions b/‎CVE-2024/CVE-2024-211xx/CVE-2024-21113.json
Lines changed: 13 additions & 3 deletions
diff --git a/‎CVE-2024/CVE-2024-217xx/CVE-2024-21760.json
Lines changed: 56 additions & 0 deletions b/‎CVE-2024/CVE-2024-217xx/CVE-2024-21760.json
Lines changed: 56 additions & 0 deletions
diff --git a/‎CVE-2024/CVE-2024-237xx/CVE-2024-23786.json
Lines changed: 31 additions & 1 deletion b/‎CVE-2024/CVE-2024-237xx/CVE-2024-23786.json
Lines changed: 31 additions & 1 deletion
diff --git a/‎CVE-2024/CVE-2024-280xx/CVE-2024-28069.json
Lines changed: 25 additions & 2 deletions b/‎CVE-2024/CVE-2024-280xx/CVE-2024-28069.json
Lines changed: 25 additions & 2 deletions
@@ -2,7 +2,7 @@
   "id": "CVE-2023-37037",
   "sourceIdentifier": "[email protected]",
   "published": "2025-01-21T23:15:11.080",
-  "lastModified": "2025-02-18T21:15:19.017",
+  "lastModified": "2025-03-18T14:15:36.540",
   "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 2.8,
         "impactScore": 3.6
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
+          "baseScore": 6.5,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "ADJACENT_NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 2.8,
+        "impactScore": 3.6
       }
     ]
   },
@@ -49,6 +69,16 @@
           "value": "CWE-476"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-476"
+        }
+      ]
     }
   ],
   "configurations": [
 
@@ -2,7 +2,7 @@
   "id": "CVE-2023-42930",
   "sourceIdentifier": "[email protected]",
   "published": "2024-03-28T16:15:08.090",
-  "lastModified": "2024-11-21T08:23:32.203",
+  "lastModified": "2025-03-18T14:15:37.640",
   "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 1.8,
         "impactScore": 3.6
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
+          "baseScore": 5.5,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "LOCAL",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "REQUIRED",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "NONE",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "NONE"
+        },
+        "exploitabilityScore": 1.8,
+        "impactScore": 3.6
       }
     ]
   },
 
@@ -0,0 +1,56 @@
+{
+  "id": "CVE-2023-47539",
+  "sourceIdentifier": "[email protected]",
+  "published": "2025-03-18T14:15:37.830",
+  "lastModified": "2025-03-18T14:15:37.830",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An improper access control vulnerability in FortiMail version 7.4.0 configured with RADIUS authentication and remote_wildcard enabled may allow a remote unauthenticated attacker to bypass admin login via a crafted HTTP request."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "[email protected]",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-284"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://fortiguard.com/psirt/FG-IR-23-439",
+      "source": "[email protected]"
+    }
+  ]
+}
@@ -2,7 +2,7 @@
   "id": "CVE-2024-20941",
   "sourceIdentifier": "[email protected]",
   "published": "2024-02-17T02:15:48.560",
-  "lastModified": "2024-11-21T08:53:28.627",
+  "lastModified": "2025-03-18T14:15:37.983",
   "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
@@ -19,7 +19,7 @@
     "cvssMetricV31": [
       {
         "source": "[email protected]",
-        "type": "Primary",
+        "type": "Secondary",
         "cvssData": {
           "version": "3.1",
           "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
@@ -49,6 +49,16 @@
           "value": "NVD-CWE-noinfo"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-125"
+        }
+      ]
     }
   ],
   "configurations": [
 
@@ -2,8 +2,8 @@
   "id": "CVE-2024-21113",
   "sourceIdentifier": "[email protected]",
   "published": "2024-04-16T22:15:33.127",
-  "lastModified": "2024-12-05T15:16:15.940",
-  "vulnStatus": "Analyzed",
+  "lastModified": "2025-03-18T14:15:38.140",
+  "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
     {
@@ -19,7 +19,7 @@
     "cvssMetricV31": [
       {
         "source": "[email protected]",
-        "type": "Primary",
+        "type": "Secondary",
         "cvssData": {
           "version": "3.1",
           "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
@@ -49,6 +49,16 @@
           "value": "NVD-CWE-noinfo"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-284"
+        }
+      ]
     }
   ],
   "configurations": [
 
@@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-21760",
+  "sourceIdentifier": "[email protected]",
+  "published": "2025-03-18T14:15:38.297",
+  "lastModified": "2025-03-18T14:15:38.297",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An improper control of generation of code ('Code Injection') vulnerability [CWE-94]\u00a0in\u00a0FortiSOAR Connector FortiSOAR 7.4 all versions, 7.3 all versions, 7.2 all versions, 7.0 all versions, 6.4 all versions may allow\u00a0an authenticated attacker\u00a0to execute arbitrary code on the host via a playbook code snippet."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "[email protected]",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H",
+          "baseScore": 8.4,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 1.7,
+        "impactScore": 6.0
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "[email protected]",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-94"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://fortiguard.fortinet.com/psirt/FG-IR-23-420",
+      "source": "[email protected]"
+    }
+  ]
+}
@@ -2,7 +2,7 @@
   "id": "CVE-2024-23786",
   "sourceIdentifier": "[email protected]",
   "published": "2024-02-14T10:15:08.727",
-  "lastModified": "2024-11-21T08:58:24.090",
+  "lastModified": "2025-03-18T14:15:38.450",
   "vulnStatus": "Modified",
   "cveTags": [],
   "descriptions": [
@@ -36,6 +36,26 @@
         },
         "exploitabilityScore": 2.8,
         "impactScore": 5.8
+      },
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N",
+          "baseScore": 9.3,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "NONE"
+        },
+        "exploitabilityScore": 2.8,
+        "impactScore": 5.8
       }
     ]
   },
@@ -49,6 +69,16 @@
           "value": "CWE-79"
         }
       ]
+    },
+    {
+      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-79"
+        }
+      ]
     }
   ],
   "configurations": [
 
@@ -2,7 +2,7 @@
   "id": "CVE-2024-28069",
   "sourceIdentifier": "[email protected]",
   "published": "2024-03-16T06:15:13.763",
-  "lastModified": "2024-11-21T09:05:44.903",
+  "lastModified": "2025-03-18T14:15:38.693",
   "vulnStatus": "Awaiting Analysis",
   "cveTags": [],
   "descriptions": [
@@ -15,7 +15,30 @@
       "value": "Una vulnerabilidad en el componente de chat heredado de Mitel MiContact Center Business hasta la versi\u00f3n 10.0.0.4 podr\u00eda permitir que un atacante no autenticado lleve a cabo un ataque de divulgaci\u00f3n de informaci\u00f3n debido a una configuraci\u00f3n incorrecta. Un exploit exitoso podr\u00eda permitir a un atacante acceder a informaci\u00f3n confidencial y potencialmente realizar acciones no autorizadas dentro del componente vulnerable."
     }
   ],
-  "metrics": {},
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+          "baseScore": 7.5,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 3.6
+      }
+    ]
+  },
   "weaknesses": [
     {
       "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",