From 52b4a449643ceafed42cc971257f1b13e6b5c4fb Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 2 Apr 2024 07:02:30 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2024/21xxx/CVE-2024-21419.json | 2 +- 2024/2xxx/CVE-2024-2182.json | 253 ++++++++------------------------- 2024/2xxx/CVE-2024-2406.json | 95 +------------ 3 files changed, 66 insertions(+), 284 deletions(-) diff --git a/2024/21xxx/CVE-2024-21419.json b/2024/21xxx/CVE-2024-21419.json index 1f171589404..374be713010 100644 --- a/2024/21xxx/CVE-2024-21419.json +++ b/2024/21xxx/CVE-2024-21419.json @@ -41,7 +41,7 @@ { "version_affected": "<", "version_name": "9.0", - "version_value": "9.1.26" + "version_value": "9.1.27" } ] } diff --git a/2024/2xxx/CVE-2024-2182.json b/2024/2xxx/CVE-2024-2182.json index df5ec0d8f9d..4056438e122 100644 --- a/2024/2xxx/CVE-2024-2182.json +++ b/2024/2xxx/CVE-2024-2182.json @@ -76,146 +76,6 @@ "vendor_name": "Red Hat", "product": { "product_data": [ - { - "product_name": "Fast Datapath for Red Hat Enterprise Linux 8", - "version": { - "version_data": [ - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:23.06.1-112.el8fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:22.12.1-94.el8fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:22.03.3-71.el8fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:23.03.1-100.el8fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - } - ] - } - }, - { - "product_name": "Fast Datapath for Red Hat Enterprise Linux 9", - "version": { - "version_data": [ - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:23.09.0-136.el9fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:23.06.1-112.el9fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:22.12.1-94.el9fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:22.03.3-71.el9fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - }, - { - "version_value": "not down converted", - "x_cve_json_5_version_data": { - "versions": [ - { - "version": "0:23.03.1-100.el9fdp", - "lessThan": "*", - "versionType": "rpm", - "status": "unaffected" - } - ], - "defaultStatus": "affected" - } - } - ] - } - }, { "product_name": "Fast Datapath for RHEL 7", "version": { @@ -275,6 +135,30 @@ "defaultStatus": "unknown" } }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, { "version_value": "not down converted", "x_cve_json_5_version_data": { @@ -291,7 +175,37 @@ { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" + } + }, + { + "version_value": "not down converted", + "x_cve_json_5_version_data": { + "defaultStatus": "unknown" } }, { @@ -316,37 +230,37 @@ { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } }, { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } }, { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } }, { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } }, { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } }, { "version_value": "not down converted", "x_cve_json_5_version_data": { - "defaultStatus": "affected" + "defaultStatus": "unknown" } } ] @@ -380,51 +294,6 @@ }, "references": { "reference_data": [ - { - "url": "https://access.redhat.com/errata/RHSA-2024:1385", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1385" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1386", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1386" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1387", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1387" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1388", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1388" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1390", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1390" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1391", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1391" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1392", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1392" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1393", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1393" - }, - { - "url": "https://access.redhat.com/errata/RHSA-2024:1394", - "refsource": "MISC", - "name": "https://access.redhat.com/errata/RHSA-2024:1394" - }, { "url": "https://access.redhat.com/security/cve/CVE-2024-2182", "refsource": "MISC", diff --git a/2024/2xxx/CVE-2024-2406.json b/2024/2xxx/CVE-2024-2406.json index 23d62ee4ec9..02b0f050a67 100644 --- a/2024/2xxx/CVE-2024-2406.json +++ b/2024/2xxx/CVE-2024-2406.json @@ -1,104 +1,17 @@ { - "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", + "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-2406", - "ASSIGNER": "cna@vuldb.com", - "STATE": "PUBLIC" + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" }, "description": { "description_data": [ { "lang": "eng", - "value": "A vulnerability, which was classified as critical, was found in Gacjie Server up to 1.0. This affects the function index of the file /app/admin/controller/Upload.php. The manipulation of the argument file leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-256503." - }, - { - "lang": "deu", - "value": "Es wurde eine kritische Schwachstelle in Gacjie Server bis 1.0 gefunden. Dabei betrifft es die Funktion index der Datei /app/admin/controller/Upload.php. Mittels dem Manipulieren des Arguments file mit unbekannten Daten kann eine unrestricted upload-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung." - } - ] - }, - "problemtype": { - "problemtype_data": [ - { - "description": [ - { - "lang": "eng", - "value": "CWE-434 Unrestricted Upload", - "cweId": "CWE-434" - } - ] - } - ] - }, - "affects": { - "vendor": { - "vendor_data": [ - { - "vendor_name": "Gacjie", - "product": { - "product_data": [ - { - "product_name": "Server", - "version": { - "version_data": [ - { - "version_affected": "=", - "version_value": "1.0" - } - ] - } - } - ] - } - } - ] - } - }, - "references": { - "reference_data": [ - { - "url": "https://vuldb.com/?id.256503", - "refsource": "MISC", - "name": "https://vuldb.com/?id.256503" - }, - { - "url": "https://vuldb.com/?ctiid.256503", - "refsource": "MISC", - "name": "https://vuldb.com/?ctiid.256503" - }, - { - "url": "https://note.zhaoj.in/share/7kZiVRqSuiMx", - "refsource": "MISC", - "name": "https://note.zhaoj.in/share/7kZiVRqSuiMx" - } - ] - }, - "credits": [ - { - "lang": "en", - "value": "glzjin (VulDB User)" - } - ], - "impact": { - "cvss": [ - { - "version": "3.1", - "baseScore": 5.4, - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", - "baseSeverity": "MEDIUM" - }, - { - "version": "3.0", - "baseScore": 5.4, - "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L", - "baseSeverity": "MEDIUM" - }, - { - "version": "2.0", - "baseScore": 5.5, - "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:P" + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." } ] }