generated content from 2025-01-13

CVELab · Jan 13, 2025 · dc7073f · dc7073f
1 parent 331bc89
commit dc7073f
Show file tree

Hide file tree

Showing 9 changed files with 184 additions and 0 deletions.
diff --git a/mapping.csv b/mapping.csv
@@ -263143,3 +263143,11 @@ vulnerability,CVE-2024-56138,vulnerability--310d8a33-d2fd-473a-be58-152ebdf8e744
 vulnerability,CVE-2024-56323,vulnerability--bc72cab1-81d0-428c-918a-24d89f6c7f46
 vulnerability,CVE-2024-57811,vulnerability--ad176bda-2060-459d-b9a5-004fa53ae6f0
 vulnerability,CVE-2024-51491,vulnerability--e368db9c-4e80-4c47-a881-637ba77ddf6a
+vulnerability,CVE-2023-42228,vulnerability--98ee8e8b-2054-4c1a-9606-01510c25bf61
+vulnerability,CVE-2023-42232,vulnerability--6b88bbcd-9a81-4efa-b713-308fa77d2245
+vulnerability,CVE-2023-42229,vulnerability--79afb741-ce4f-4018-86ed-608f106c6265
+vulnerability,CVE-2023-42227,vulnerability--98ed8319-04f2-4443-b904-66f9a3861d50
+vulnerability,CVE-2023-42231,vulnerability--1853ccec-8138-4d86-baa6-86c8b75228c2
+vulnerability,CVE-2023-42230,vulnerability--03b43292-8712-4837-94d6-619c7b3029c7
+vulnerability,CVE-2023-42225,vulnerability--e2a0a503-7437-4671-ac6f-1d8570c3260c
+vulnerability,CVE-2023-42226,vulnerability--b2ef7fe8-0cab-44cb-a12e-ae6e4082464c
diff --git a/objects/vulnerability/vulnerability--03b43292-8712-4837-94d6-619c7b3029c7.json b/objects/vulnerability/vulnerability--03b43292-8712-4837-94d6-619c7b3029c7.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--57b80f61-ba6d-42be-9d4a-557e9aaa20f3",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--03b43292-8712-4837-94d6-619c7b3029c7",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.512443Z",
+            "modified": "2025-01-13T23:17:52.512443Z",
+            "name": "CVE-2023-42230",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Cross Site Scripting (XSS) via the WSCView/Save function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42230"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--1853ccec-8138-4d86-baa6-86c8b75228c2.json b/objects/vulnerability/vulnerability--1853ccec-8138-4d86-baa6-86c8b75228c2.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--c720a844-aab0-455d-be1c-fd172f581c01",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--1853ccec-8138-4d86-baa6-86c8b75228c2",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.506636Z",
+            "modified": "2025-01-13T23:17:52.506636Z",
+            "name": "CVE-2023-42231",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can delete admin users by sending a request to the \"WSCView/Delete\" function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42231"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--6b88bbcd-9a81-4efa-b713-308fa77d2245.json b/objects/vulnerability/vulnerability--6b88bbcd-9a81-4efa-b713-308fa77d2245.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--05c07d3f-5e3d-45d1-a4e4-b82532478b68",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--6b88bbcd-9a81-4efa-b713-308fa77d2245",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.466856Z",
+            "modified": "2025-01-13T23:17:52.466856Z",
+            "name": "CVE-2023-42232",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the Navigator/Index function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42232"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--79afb741-ce4f-4018-86ed-608f106c6265.json b/objects/vulnerability/vulnerability--79afb741-ce4f-4018-86ed-608f106c6265.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--926c89c0-745d-4945-ba01-6668134e92a2",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--79afb741-ce4f-4018-86ed-608f106c6265",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.48222Z",
+            "modified": "2025-01-13T23:17:52.48222Z",
+            "name": "CVE-2023-42229",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal. Arbitrary files can be created on the system via authenticated SOAP requests to the WSConnector service.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42229"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--98ed8319-04f2-4443-b904-66f9a3861d50.json b/objects/vulnerability/vulnerability--98ed8319-04f2-4443-b904-66f9a3861d50.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--a1968e84-e8ce-45f1-8f6e-8ab9ed807f05",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--98ed8319-04f2-4443-b904-66f9a3861d50",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.493159Z",
+            "modified": "2025-01-13T23:17:52.493159Z",
+            "name": "CVE-2023-42227",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the WSCView/Save function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42227"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--98ee8e8b-2054-4c1a-9606-01510c25bf61.json b/objects/vulnerability/vulnerability--98ee8e8b-2054-4c1a-9606-01510c25bf61.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--35630c9e-c393-4409-8fbd-60ea5ea41500",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--98ee8e8b-2054-4c1a-9606-01510c25bf61",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.460302Z",
+            "modified": "2025-01-13T23:17:52.460302Z",
+            "name": "CVE-2023-42228",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Incorrect Access Control. Low privileged users can edit their own ACL rules by sending a request to the \"AclList/SaveAclRules\" administrative function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42228"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--b2ef7fe8-0cab-44cb-a12e-ae6e4082464c.json b/objects/vulnerability/vulnerability--b2ef7fe8-0cab-44cb-a12e-ae6e4082464c.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--0363a274-edd9-4efa-8817-ce9d01e40f12",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--b2ef7fe8-0cab-44cb-a12e-ae6e4082464c",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.521088Z",
+            "modified": "2025-01-13T23:17:52.521088Z",
+            "name": "CVE-2023-42226",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via Email/SaveAttachment function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42226"
+                }
+            ]
+        }
+    ]
+}
diff --git a/objects/vulnerability/vulnerability--e2a0a503-7437-4671-ac6f-1d8570c3260c.json b/objects/vulnerability/vulnerability--e2a0a503-7437-4671-ac6f-1d8570c3260c.json
@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--43a5b480-6247-4122-8375-5367927628cd",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--e2a0a503-7437-4671-ac6f-1d8570c3260c",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2025-01-13T23:17:52.515712Z",
+            "modified": "2025-01-13T23:17:52.515712Z",
+            "name": "CVE-2023-42225",
+            "description": "Pat Infinite Solutions HelpdeskAdvanced <= 11.0.33 is vulnerable to Directory Traversal via the Attachment/DownloadTempFile function.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2023-42225"
+                }
+            ]
+        }
+    ]
+}