Auto Generated CVE annotations [Sat Mar 26 09:11:31 UTC 2022] 🤖

2022-03-26 09:11:31 +00:00 · 2022-03-26 09:11:31 +00:00 · ac87976a84
parent 57d9a99774
commit ac87976a84
2 changed files with 11 additions and 1 deletions
--- a/cves/2021/CVE-2021-45967.yaml
+++ b/cves/2021/CVE-2021-45967.yaml
@ -3,13 +3,18 @@ id: CVE-2021-45967
 info:
  name: Pascom CPS SSRF
  author: dwisiswant0
-  severity: high
+  severity: critical
  description: |
    Pascom version packaged with Cloud Phone System (CPS)
    versions before 7.20 contains a known SSRF issue
  reference:
    - https://kerbit.io/research/read/blog/4
  tags: cve,cve2021,pascom,lfi
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
+    cvss-score: 9.80
+    cve-id: CVE-2021-45967
+    cwe-id: CWE-918

 requests:
  - method: GET
--- a/cves/2021/CVE-2021-45968.yaml
+++ b/cves/2021/CVE-2021-45968.yaml
@ -10,6 +10,11 @@ info:
  reference:
    - https://kerbit.io/research/read/blog/4
  tags: cve,cve2021,pascom,lfi
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
+    cvss-score: 7.50
+    cve-id: CVE-2021-45968
+    cwe-id: CWE-22

 requests:
  - raw: