{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2023-45372","assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","dateUpdated":"2024-09-19T17:50:13.935Z","dateReserved":"2023-10-09T00:00:00.000Z","datePublished":"2023-10-09T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre","dateUpdated":"2023-10-09T05:32:40.875Z"},"descriptions":[{"lang":"en","value":"An issue was discovered in the Wikibase extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. During item merging, ItemMergeInteractor does not have an edit filter running (e.g., AbuseFilter)."}],"affected":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}],"references":[{"url":"https://phabricator.wikimedia.org/T345064"},{"url":"https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Wikibase/+/961264"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"n/a"}]}]},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T20:21:16.371Z"},"title":"CVE Program Container","references":[{"url":"https://phabricator.wikimedia.org/T345064","tags":["x_transferred"]},{"url":"https://gerrit.wikimedia.org/r/c/mediawiki/extensions/Wikibase/+/961264","tags":["x_transferred"]}]},{"problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-693","lang":"en","description":"CWE-693 Protection Mechanism Failure"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-09-19T17:46:55.485669Z","id":"CVE-2023-45372","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-19T17:50:13.935Z"}}]}}