Auto Generated CVE annotations [Sun Aug 21 08:47:30 UTC 2022] 🤖

2022-08-21 08:47:30 +00:00 · 2022-08-21 08:47:30 +00:00 · 58a6099749
parent dd6d575960
commit 58a6099749
2 changed files with 10 additions and 4 deletions
--- a/cves/2021/CVE-2021-43734.yaml
+++ b/cves/2021/CVE-2021-43734.yaml
@ -4,16 +4,19 @@ info:
  name: kkFileview v4.0.0 - Directory Traversal
  author: arafatansari
  severity: high
+  description: |
+    kkFileview v4.0.0 has arbitrary file read through a directory traversal vulnerability which may lead to sensitive file leak on related host.
  reference:
    - https://github.com/kekingcn/kkFileView/issues/304
    - https://nvd.nist.gov/vuln/detail/CVE-2021-43734
-  description: |
-    kkFileview v4.0.0 has arbitrary file read through a directory traversal vulnerability which may lead to sensitive file leak on related host.
  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
+    cvss-score: 7.5
    cve-id: CVE-2021-43734
+    cwe-id: CWE-22
  metadata:
-    verified: true
    shodan-query: http.html:"kkFileView"
+    verified: "true"
  tags: cve,cve2021,kkfileview,traversal

 requests:
--- a/cves/2022/CVE-2022-29349.yaml
+++ b/cves/2022/CVE-2022-29349.yaml
@ -10,10 +10,13 @@ info:
    - https://github.com/kekingcn/kkFileView/issues/347
    - https://nvd.nist.gov/vuln/detail/CVE-2022-29349
  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 6.1
    cve-id: CVE-2022-29349
+    cwe-id: CWE-79
  metadata:
-    verified: true
    shodan-query: http.html:"kkFileView"
+    verified: "true"
  tags: cve,cve2022,kkFileView,xss

 requests: