Fix severity mismatches

Cleanup language on a new test
2023-03-27 14:12:43 -04:00 · 2023-03-27 14:12:43 -04:00 · 14b104d9bd
parent 5c619a6038
commit 14b104d9bd
3 changed files with 4 additions and 4 deletions
--- a/cves/2022/CVE-2022-1398.yaml
+++ b/cves/2022/CVE-2022-1398.yaml
@ -5,7 +5,7 @@ info:
  author: theamanrawat
  severity: medium
  description: |
-    The External Media without Import WordPress plugin through 1.1.2 does not have any authorisation and does to ensure that medias added via URLs are external medias, which could allow any authenticated users, such as subscriber to perform blind SSRF attacks.
+    The External Media without Import WordPress plugin through 1.1.2 does not have any authorization and does not ensure that media added via URLs are external media, which could allow any authenticated users (including subscriber) to perform blind SSRF attacks.
  reference:
    - https://wpscan.com/vulnerability/5440d177-e995-403e-b2c9-42ceda14579e
    - https://wordpress.org/plugins/external-media-without-import/
--- a/exposed-panels/kubeview-dashboard.yaml
+++ b/exposed-panels/kubeview-dashboard.yaml
@ -3,7 +3,7 @@ id: kubeview-dashboard
 info:
  name: KubeView Dashboard - Detect
  author: ja1sh
-  severity: low
+  severity: info
  description: |
    KubeView dashboard was detected.
  classification:
--- a/vulnerabilities/other/couchdb-adminparty.yaml
+++ b/vulnerabilities/other/couchdb-adminparty.yaml
@ -8,8 +8,8 @@ info:
  reference:
    - https://docs.couchdb.org/en/stable/intro/security.html#authentication-database
  classification:
-    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
-    cvss-score: 5.3
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
+    cvss-score: 7.5
    cwe-id: CWE-200
  tags: couchdb