Is there a way to fully read CVE descriptions, not only theirs titles

[ShockwaveNN]

It's more a general question, not about specific CVE

As far as I know - we know the names of those CVE's, but not its full description, body, and exact correspondence of CVE and commands from ./pwnlyoffice like for example, I know that CVE-2021-43446 is
bash ./pwnlyoffice.py -d 1234 -u https://theonlyofficesiteurl macro macros/nextcloud_addadmin.js

But I'm not sure CVE-2021-43445 is about some exact command?

[strawp]

`pwnlyoffice` will attempt to auth with the websocket with no credentials. If it has access denied then it will attempt by providing a JWT signed with either "secret" or whatever secret is supplied with `--jwtsecret`

…

On Tue, Jan 4, 2022 at 3:45 PM Pavel Lobashov ***@***.***> wrote: It's more a general question, not about specific CVE As far as I know - we know the names of those CVE's, but not its full description, body, and exact correspondence of CVE and commands from ./pwnlyoffice like for example, I know that CVE-2021-43446 is `bash ./pwnlyoffice.py -d 1234 -u https://theonlyofficesiteurl macro macros/nextcloud_addadmin.js But I'm not sure CVE-2021-43445 is about some exact command? — Reply to this email directly, view it on GitHub <#13>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AAEF5VNBOUESJWLQFAXXC4LUUMI2RANCNFSM5LHX2BNA> . Triage notifications on the go with GitHub Mobile for iOS <https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675> or Android <https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>. You are receiving this because you are subscribed to this thread.Message ID: ***@***.***>

[strawp]

The full descriptions I think were sent over in a previous email which was what was submitted to mitre. A full technical writeup hasn't been done yet but I can give you this when it's ready to share

[ShockwaveNN]

Yeah, this will be very helpfull, thanks