From 08f99e137739bff4082507c3ce5b8cd72da75c9a Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 21 Jan 2025 04:00:58 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2024/13xxx/CVE-2024-13568.json | 18 ++++++++++++++++++ 2025/0xxx/CVE-2025-0354.json | 4 ++-- 2025/0xxx/CVE-2025-0355.json | 4 ++-- 2025/0xxx/CVE-2025-0356.json | 4 ++-- 4 files changed, 24 insertions(+), 6 deletions(-) create mode 100644 2024/13xxx/CVE-2024-13568.json diff --git a/2024/13xxx/CVE-2024-13568.json b/2024/13xxx/CVE-2024-13568.json new file mode 100644 index 00000000000..5f31f6ba62e --- /dev/null +++ b/2024/13xxx/CVE-2024-13568.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-13568", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2025/0xxx/CVE-2025-0354.json b/2025/0xxx/CVE-2025-0354.json index 2ac05ca3f0a..4eebbd5dcc9 100644 --- a/2025/0xxx/CVE-2025-0354.json +++ b/2025/0xxx/CVE-2025-0354.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to inject an arbitrary script via the internet." + "value": "Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to inject an arbitrary script via the network." } ] }, @@ -125,7 +125,7 @@ "credits": [ { "lang": "en", - "value": "Takayuki Sasaki of Yokohama National University." + "value": "Takayuki Sasaki and Katsunari Yoshioka of Yokohama National University." } ], "impact": { diff --git a/2025/0xxx/CVE-2025-0355.json b/2025/0xxx/CVE-2025-0355.json index 6bc714b324e..fd63a259531 100644 --- a/2025/0xxx/CVE-2025-0355.json +++ b/2025/0xxx/CVE-2025-0355.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to get a Wi-Fi password via the internet." + "value": "Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to get a Wi-Fi password via the network." } ] }, @@ -158,7 +158,7 @@ "credits": [ { "lang": "en", - "value": "Takayuki Sasaki of Yokohama National University." + "value": "Takayuki Sasaki and Katsunari Yoshioka of Yokohama National University." } ], "impact": { diff --git a/2025/0xxx/CVE-2025-0356.json b/2025/0xxx/CVE-2025-0356.json index 472c1128850..e62b69c2fd4 100644 --- a/2025/0xxx/CVE-2025-0356.json +++ b/2025/0xxx/CVE-2025-0356.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a attacker to execute arbitrary OS commands via the internet." + "value": "NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a attacker to execute arbitrary OS commands via the network." } ] }, @@ -81,7 +81,7 @@ "credits": [ { "lang": "en", - "value": "Kakeru Kajihara." + "value": "Kakeru Kajihara of NTT Security Holdings." } ], "impact": {