diff --git a/cache/NVD.dat b/cache/NVD.dat index ef1aac90a97..e8fe848d396 100644 --- a/cache/NVD.dat +++ b/cache/NVD.dat @@ -100,3 +100,5 @@ fee42c5c3350c0778bb8eca01c5e2efa 7abe9e444fb931d9847478bb3d8226b0 85ca0426243514b04281aa2dcc9a082a e0f12a28e563b380d0bcd0cb148c9532 +e2a2e5f66f7313ce93cb9b8dcde37c58 +24cc779bd99caa6238823d0a69145f2c diff --git a/data/cves.db b/data/cves.db index be44640dd5d..f894ff94f0b 100644 Binary files a/data/cves.db and b/data/cves.db differ diff --git a/docs/index.html b/docs/index.html index b2ed9618c2e..e05960fcbb9 100644 --- a/docs/index.html +++ b/docs/index.html @@ -1,4 +1,4 @@ - + @@ -2315,6 +2315,14 @@

眈眈探求 | 详情 + + e2a2e5f66f7313ce93cb9b8dcde37c58 + CVE-2023-21520 + 2023-09-12 20:15:07 + A PII Enumeration via Credential Recovery in the Self Service (Credential Recovery) of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization. + 详情 + + 85ca0426243514b04281aa2dcc9a082a CVE-2023-21522 @@ -2387,6 +2395,14 @@

眈眈探求 | 详情 + + 24cc779bd99caa6238823d0a69145f2c + CVE-2023-2071 + 2023-09-12 14:15:09 + Rockwell Automation FactoryTalk View Machine Edition on the PanelView Plus, improperly verifies user’s input, which allows unauthenticated attacker to achieve remote code executed via crafted malicious packets.  The device has the functionality, through a CIP class, to execute exported functions from libraries.  There is a routine that restricts it to execute specific functions from two dynamic link library files.  By using a CIP class, an attacker can upload a self-made library to the device which allows the attacker to bypass the security check and execute any code written in the function. + 详情 + + 7c1f5e1b9d461277f697f2c39a7601b2 CVE-2023-27169 @@ -2451,22 +2467,6 @@

眈眈探求 | 详情 - - fee42c5c3350c0778bb8eca01c5e2efa - CVE-2023-2705 - 2023-09-11 20:15:08 - The gAppointments WordPress plugin before 1.10.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against admin - 详情 - - - - ce11eb07fe14170208adf7b1b2a208c4 - CVE-2023-4881 - 2023-09-11 17:15:07 - A stack based out-of-bounds write flaw was found in the netfilter subsystem in the Linux kernel. If the expression length is a multiple of 4 (register size), the `nft_exthdr_eval` family of functions writes 4 NULL bytes past the end of the `regs` argument, leading to stack corruption and potential information disclosure or a denial of service. - 详情 - -