github
diff --git a/‎advisories/github-reviewed/2022/04/GHSA-3276-p9f2-8q89/GHSA-3276-p9f2-8q89.json
Lines changed: 96 additions & 0 deletions b/‎advisories/github-reviewed/2022/04/GHSA-3276-p9f2-8q89/GHSA-3276-p9f2-8q89.json
Lines changed: 96 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2022/04/GHSA-3276-p9f2-8q89/GHSA-3276-p9f2-8q89.json
Lines changed: 0 additions & 43 deletions b/‎advisories/unreviewed/2022/04/GHSA-3276-p9f2-8q89/GHSA-3276-p9f2-8q89.json
Lines changed: 0 additions & 43 deletions
diff --git a/‎advisories/unreviewed/2022/04/GHSA-m8cx-f5qj-q68r/GHSA-m8cx-f5qj-q68r.json
Lines changed: 1 addition & 1 deletion b/‎advisories/unreviewed/2022/04/GHSA-m8cx-f5qj-q68r/GHSA-m8cx-f5qj-q68r.json
Lines changed: 1 addition & 1 deletion
diff --git a/‎advisories/unreviewed/2023/12/GHSA-4m6w-vxqg-9rmm/GHSA-4m6w-vxqg-9rmm.json
Lines changed: 8 additions & 0 deletions b/‎advisories/unreviewed/2023/12/GHSA-4m6w-vxqg-9rmm/GHSA-4m6w-vxqg-9rmm.json
Lines changed: 8 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2023/12/GHSA-jr4h-682w-x2ph/GHSA-jr4h-682w-x2ph.json
Lines changed: 12 additions & 0 deletions b/‎advisories/unreviewed/2023/12/GHSA-jr4h-682w-x2ph/GHSA-jr4h-682w-x2ph.json
Lines changed: 12 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2024/01/GHSA-h994-99h2-49qc/GHSA-h994-99h2-49qc.json
Lines changed: 1 addition & 0 deletions b/‎advisories/unreviewed/2024/01/GHSA-h994-99h2-49qc/GHSA-h994-99h2-49qc.json
Lines changed: 1 addition & 0 deletions
diff --git a/‎advisories/unreviewed/2024/01/GHSA-mmc5-hgpc-m8q5/GHSA-mmc5-hgpc-m8q5.json
Lines changed: 8 additions & 0 deletions b/‎advisories/unreviewed/2024/01/GHSA-mmc5-hgpc-m8q5/GHSA-mmc5-hgpc-m8q5.json
Lines changed: 8 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2024/01/GHSA-qmff-49xc-7rf6/GHSA-qmff-49xc-7rf6.json
Lines changed: 13 additions & 1 deletion b/‎advisories/unreviewed/2024/01/GHSA-qmff-49xc-7rf6/GHSA-qmff-49xc-7rf6.json
Lines changed: 13 additions & 1 deletion
diff --git a/‎advisories/unreviewed/2024/02/GHSA-4qgw-xmfm-r629/GHSA-4qgw-xmfm-r629.json
Lines changed: 31 additions & 0 deletions b/‎advisories/unreviewed/2024/02/GHSA-4qgw-xmfm-r629/GHSA-4qgw-xmfm-r629.json
Lines changed: 31 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2024/02/GHSA-7frw-5wm8-4qp7/GHSA-7frw-5wm8-4qp7.json
Lines changed: 38 additions & 0 deletions b/‎advisories/unreviewed/2024/02/GHSA-7frw-5wm8-4qp7/GHSA-7frw-5wm8-4qp7.json
Lines changed: 38 additions & 0 deletions
diff --git a/‎advisories/unreviewed/2024/02/GHSA-7pxx-x33w-55ch/GHSA-7pxx-x33w-55ch.json
Lines changed: 35 additions & 0 deletions b/‎advisories/unreviewed/2024/02/GHSA-7pxx-x33w-55ch/GHSA-7pxx-x33w-55ch.json
Lines changed: 35 additions & 0 deletions
@@ -0,0 +1,96 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-3276-p9f2-8q89",
+  "modified": "2024-02-07T21:31:25Z",
+  "published": "2022-04-21T01:57:47Z",
+  "aliases": [
+    "CVE-2010-3670"
+  ],
+  "summary": "TYPO3 is vulnerable to insecure randomness during hash generation in forgot password function",
+  "details": "TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the \"forgot password\" function.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N"
+    }
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Packagist",
+        "name": "typo3/cms-frontend"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "4.3.4"
+            }
+          ]
+        }
+      ]
+    },
+    {
+      "package": {
+        "ecosystem": "Packagist",
+        "name": "typo3/cms-frontend"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "4.4.0"
+            },
+            {
+              "fixed": "4.4.1"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-3670"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/TYPO3/typo3/commit/09ab77653161f23e266470a5984d4d5e64588355"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/TYPO3/typo3/commit/c03e944d200bf427bb18cad15f2ad36bc83061c9"
+    },
+    {
+      "type": "WEB",
+      "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=590719"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/TYPO3-CMS/frontend"
+    },
+    {
+      "type": "WEB",
+      "url": "https://security-tracker.debian.org/tracker/CVE-2010-3670"
+    },
+    {
+      "type": "WEB",
+      "url": "https://typo3.org/security/advisory/typo3-sa-2010-012/#Insecure_Randomness"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-326"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2024-02-07T21:31:25Z",
+    "nvd_published_at": "2019-11-05T20:15:00Z"
+  }
+}
@@ -28,7 +28,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
-
+      "CWE-266"
     ],
     "severity": "HIGH",
     "github_reviewed": false,
 
@@ -21,6 +21,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6606"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0723"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0725"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2023-6606"
 
@@ -21,6 +21,18 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6610"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0723"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0724"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0725"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2023-6610"
 
@@ -28,6 +28,7 @@
   ],
   "database_specific": {
     "cwe_ids": [
+      "CWE-22",
       "CWE-36"
     ],
     "severity": "MODERATE",
 
@@ -21,6 +21,14 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-7192"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0723"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0725"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2023-7192"
 
@@ -1,7 +1,7 @@
 {
   "schema_version": "1.4.0",
   "id": "GHSA-qmff-49xc-7rf6",
-  "modified": "2024-01-24T21:30:32Z",
+  "modified": "2024-02-07T21:30:26Z",
   "published": "2024-01-17T18:31:36Z",
   "aliases": [
     "CVE-2024-0646"
@@ -21,6 +21,18 @@
       "type": "ADVISORY",
       "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-0646"
     },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0723"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0724"
+    },
+    {
+      "type": "WEB",
+      "url": "https://access.redhat.com/errata/RHSA-2024:0725"
+    },
     {
       "type": "WEB",
       "url": "https://access.redhat.com/security/cve/CVE-2024-0646"
 
@@ -0,0 +1,31 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-4qgw-xmfm-r629",
+  "modified": "2024-02-07T21:30:27Z",
+  "published": "2024-02-07T21:30:27Z",
+  "aliases": [
+    "CVE-2024-22984"
+  ],
+  "details": "Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
+  "severity": [
+
+  ],
+  "affected": [
+
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22984"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2024-02-07T20:15:49Z"
+  }
+}
@@ -0,0 +1,38 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7frw-5wm8-4qp7",
+  "modified": "2024-02-07T21:30:27Z",
+  "published": "2024-02-07T21:30:27Z",
+  "aliases": [
+    "CVE-2024-23769"
+  ],
+  "details": "Improper privilege control for the named pipe in Samsung Magician PC Software 8.0.0 (for Windows) allows a local attacker to read privileged data.",
+  "severity": [
+    {
+      "type": "CVSS_V3",
+      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H"
+    }
+  ],
+  "affected": [
+
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-23769"
+    },
+    {
+      "type": "WEB",
+      "url": "https://semiconductor.samsung.com/support/quality-support/product-security-updates/"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+
+    ],
+    "severity": "HIGH",
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2024-02-07T19:15:08Z"
+  }
+}
@@ -0,0 +1,35 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-7pxx-x33w-55ch",
+  "modified": "2024-02-07T21:30:27Z",
+  "published": "2024-02-07T21:30:27Z",
+  "aliases": [
+    "CVE-2024-24488"
+  ],
+  "details": "An issue in Shenzen Tenda Technology CP3V2.0 V11.10.00.2311090948 allows a local attacker to obtain sensitive information via the password component.",
+  "severity": [
+
+  ],
+  "affected": [
+
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24488"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/minj-ae/CVE-2024-24488"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+
+    ],
+    "severity": null,
+    "github_reviewed": false,
+    "github_reviewed_at": null,
+    "nvd_published_at": "2024-02-07T20:15:49Z"
+  }
+}