admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2024-05-29 00:00:36 +00:00
parent db5218915b
commit 6faa30c2ce
No known key found for this signature in database
GPG Key ID: BC5FD8F2443B23B7
96 changed files with 406 additions and 277 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
2024/20xxx/CVE-2024-20667.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')",
"cweId": "CWE-77"
}
]
}

2
2024/20xxx/CVE-2024-20669.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

3
2024/20xxx/CVE-2024-20679.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId": "CWE-79"
}
]
}

3
2024/20xxx/CVE-2024-20684.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

3
2024/20xxx/CVE-2024-20690.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-310: Cryptographic Issues",
"cweId": "CWE-310"
}
]
}

3
2024/20xxx/CVE-2024-20691.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-125: Out-of-bounds Read",
"cweId": "CWE-125"
}
]
}

3
2024/20xxx/CVE-2024-20692.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-326: Inadequate Encryption Strength",
"cweId": "CWE-326"
}
]
}

3
2024/20xxx/CVE-2024-20694.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-908: Use of Uninitialized Resource",
"cweId": "CWE-908"
}
]
}

3
2024/20xxx/CVE-2024-20695.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-284: Improper Access Control",
"cweId": "CWE-284"
}
]
}

5
2024/20xxx/CVE-2024-20696.json
View File

@ -11,7 +11,7 @@
"description_data": [
{
"lang": "eng",
"value": "Windows Libarchive Remote Code Execution Vulnerability"
"value": "Windows libarchive Remote Code Execution Vulnerability"
}
]
},
@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

5
2024/20xxx/CVE-2024-20697.json
View File

@ -11,7 +11,7 @@
"description_data": [
{
"lang": "eng",
"value": "Windows Libarchive Remote Code Execution Vulnerability"
"value": "Windows libarchive Remote Code Execution Vulnerability"
}
]
},
@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/20xxx/CVE-2024-20698.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-190: Integer Overflow or Wraparound",
"cweId": "CWE-190"
}
]
}

3
2024/20xxx/CVE-2024-20700.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')",
"cweId": "CWE-362"
}
]
}

3
2024/21xxx/CVE-2024-21307.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-416: Use After Free",
"cweId": "CWE-416"
}
]
}

3
2024/21xxx/CVE-2024-21309.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-191: Integer Underflow (Wrap or Wraparound)",
"cweId": "CWE-191"
}
]
}

3
2024/21xxx/CVE-2024-21310.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-197: Numeric Truncation Error",
"cweId": "CWE-197"
}
]
}

3
2024/21xxx/CVE-2024-21311.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-125: Out-of-bounds Read",
"cweId": "CWE-125"
}
]
}

3
2024/21xxx/CVE-2024-21312.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

3
2024/21xxx/CVE-2024-21313.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-209: Generation of Error Message Containing Sensitive Information",
"cweId": "CWE-209"
}
]
}

3
2024/21xxx/CVE-2024-21314.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-125: Out-of-bounds Read",
"cweId": "CWE-125"
}
]
}

3
2024/21xxx/CVE-2024-21315.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

3
2024/21xxx/CVE-2024-21316.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Security Feature Bypass"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

3
2024/21xxx/CVE-2024-21318.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-502: Deserialization of Untrusted Data",
"cweId": "CWE-502"
}
]
}

3
2024/21xxx/CVE-2024-21319.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

3
2024/21xxx/CVE-2024-21320.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
"cweId": "CWE-200"
}
]
}

3
2024/21xxx/CVE-2024-21325.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-426: Untrusted Search Path",
"cweId": "CWE-426"
}
]
}

3
2024/21xxx/CVE-2024-21327.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId": "CWE-79"
}
]
}

3
2024/21xxx/CVE-2024-21328.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId": "CWE-79"
}
]
}

3
2024/21xxx/CVE-2024-21329.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-59: Improper Link Resolution Before File Access ('Link Following')",
"cweId": "CWE-59"
}
]
}

15
2024/21xxx/CVE-2024-21330.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}
@ -106,6 +107,18 @@
]
}
},
{
"product_name": "Azure HDInsight",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "1.0",
"version_value": "omi-1.8.1-0"
}
]
}
},
{
"product_name": "Open Management Infrastructure",
"version": {

3
2024/21xxx/CVE-2024-21334.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-416: Use After Free",
"cweId": "CWE-416"
}
]
}

3
2024/21xxx/CVE-2024-21337.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21338.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-822: Untrusted Pointer Dereference",
"cweId": "CWE-822"
}
]
}

3
2024/21xxx/CVE-2024-21339.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-416: Use After Free",
"cweId": "CWE-416"
}
]
}

3
2024/21xxx/CVE-2024-21340.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-126: Buffer Over-read",
"cweId": "CWE-126"
}
]
}

3
2024/21xxx/CVE-2024-21341.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21342.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-400: Uncontrolled Resource Consumption",
"cweId": "CWE-400"
}
]
}

3
2024/21xxx/CVE-2024-21343.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-125: Out-of-bounds Read",
"cweId": "CWE-125"
}
]
}

3
2024/21xxx/CVE-2024-21344.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-125: Out-of-bounds Read",
"cweId": "CWE-125"
}
]
}

3
2024/21xxx/CVE-2024-21345.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21346.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-822: Untrusted Pointer Dereference",
"cweId": "CWE-822"
}
]
}

3
2024/21xxx/CVE-2024-21347.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21348.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21349.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21350.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-190: Integer Overflow or Wraparound",
"cweId": "CWE-190"
}
]
}

3
2024/21xxx/CVE-2024-21352.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-197: Numeric Truncation Error",
"cweId": "CWE-197"
}
]
}

3
2024/21xxx/CVE-2024-21353.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21354.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-122: Heap-based Buffer Overflow",
"cweId": "CWE-122"
}
]
}

3
2024/21xxx/CVE-2024-21355.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-591: Sensitive Data Storage in Improperly Locked Memory",
"cweId": "CWE-591"
}
]
}

3
2024/21xxx/CVE-2024-21356.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-476: NULL Pointer Dereference",
"cweId": "CWE-476"
}
]
}

3
2024/21xxx/CVE-2024-21357.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')",
"cweId": "CWE-843"
}
]
}

26
2024/21xxx/CVE-2024-21392.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-400: Uncontrolled Resource Consumption",
"cweId": "CWE-400"
}
]
}
@ -46,6 +47,29 @@
]
}
},
{
"product_name": "PowerShell 7.3",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.3.0",
"version_value": "7.3.12"
}
]
}
},
{
"product_name": "PowerShell 7.4",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "N/A"
}
]
}
},
{
"product_name": ".NET 7.0",
"version": {

3
2024/21xxx/CVE-2024-21407.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-416: Use After Free",
"cweId": "CWE-416"
}
]
}

36
2024/21xxx/CVE-2024-21409.json
View File

@ -83,6 +83,42 @@
]
}
},
{
"product_name": "PowerShell 7.3",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.3.0",
"version_value": "7.3.12"
}
]
}
},
{
"product_name": "PowerShell 7.4",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.4.0",
"version_value": "7.4.2"
}
]
}
},
{
"product_name": "PowerShell 7.2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.2.0",
"version_value": "7.2.19"
}
]
}
},
{
"product_name": ".NET 6.0",
"version": {

3
2024/21xxx/CVE-2024-21418.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-284: Improper Access Control",
"cweId": "CWE-284"
}
]
}

3
2024/21xxx/CVE-2024-21426.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-416: Use After Free",
"cweId": "CWE-416"
}
]
}

148
2024/21xxx/CVE-2024-21427.json
View File

@ -35,18 +35,6 @@
"vendor_name": "Microsoft",
"product": {
"product_data": [
{
"product_name": "Windows 10 Version 1809",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5576"
}
]
}
},
{
"product_name": "Windows Server 2019",
"version": {
@ -54,7 +42,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5576"
"version_value": "10.0.17763.5696"
}
]
}
@ -66,7 +54,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5576"
"version_value": "10.0.17763.5696"
}
]
}
@ -78,79 +66,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.20348.2340"
}
]
}
},
{
"product_name": "Windows 11 version 21H2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22000.2836"
}
]
}
},
{
"product_name": "Windows 10 Version 21H2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.19044.4170"
}
]
}
},
{
"product_name": "Windows 11 version 22H2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3296"
}
]
}
},
{
"product_name": "Windows 10 Version 22H2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.19045.4170"
}
]
}
},
{
"product_name": "Windows 11 version 22H3",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22631.3296"
}
]
}
},
{
"product_name": "Windows 11 Version 23H2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22631.3296"
"version_value": "10.0.20348.2402"
}
]
}
@ -162,31 +78,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.25398.763"
}
]
}
},
{
"product_name": "Windows 10 Version 1507",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.10240.20526"
}
]
}
},
{
"product_name": "Windows 10 Version 1607",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6796"
"version_value": "10.0.25398.830"
}
]
}
@ -198,7 +90,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6796"
"version_value": "10.0.14393.6897"
}
]
}
@ -210,31 +102,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6796"
}
]
}
},
{
"product_name": "Windows Server 2012",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "6.2.0",
"version_value": "6.2.9200.24768"
}
]
}
},
{
"product_name": "Windows Server 2012 (Server Core installation)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "6.2.0",
"version_value": "6.2.9200.24768"
"version_value": "10.0.14393.6897"
}
]
}
@ -246,7 +114,7 @@
{
"version_affected": "<",
"version_name": "6.3.0",
"version_value": "6.3.9600.21871"
"version_value": "6.3.9600.21924"
}
]
}
@ -258,7 +126,7 @@
{
"version_affected": "<",
"version_name": "6.3.0",
"version_value": "6.3.9600.21871"
"version_value": "6.3.9600.21924"
}
]
}

3
2024/21xxx/CVE-2024-21432.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-59: Improper Link Resolution Before File Access ('Link Following')",
"cweId": "CWE-59"
}
]
}

3
2024/21xxx/CVE-2024-21435.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-426: Untrusted Search Path",
"cweId": "CWE-426"
}
]
}

3
2024/21xxx/CVE-2024-21436.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-284: Improper Access Control",
"cweId": "CWE-284"
}
]
}

3
2024/21xxx/CVE-2024-21440.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-197: Numeric Truncation Error",
"cweId": "CWE-197"
}
]
}

3
2024/21xxx/CVE-2024-21444.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-190: Integer Overflow or Wraparound",
"cweId": "CWE-190"
}
]
}

3
2024/21xxx/CVE-2024-21448.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Information Disclosure"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

2
2024/26xxx/CVE-2024-26158.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

3
2024/26xxx/CVE-2024-26169.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-269: Improper Privilege Management",
"cweId": "CWE-269"
}
]
}

3
2024/26xxx/CVE-2024-26170.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-20: Improper Input Validation",
"cweId": "CWE-20"
}
]
}

2
2024/26xxx/CVE-2024-26172.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26179.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

3
2024/26xxx/CVE-2024-26185.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Tampering"
"value": "CWE-73: External Control of File Name or Path",
"cweId": "CWE-73"
}
]
}

27
2024/26xxx/CVE-2024-26190.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Denial of Service"
"value": "CWE-400: Uncontrolled Resource Consumption",
"cweId": "CWE-400"
}
]
}
@ -118,6 +119,30 @@
]
}
},
{
"product_name": "PowerShell 7.3",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.3.0",
"version_value": "7.3.12"
}
]
}
},
{
"product_name": "PowerShell 7.4",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "7.4.0",
"version_value": "7.4.2"
}
]
}
},
{
"product_name": "Microsoft Visual Studio 2022 version 17.4",
"version": {

9
2024/26xxx/CVE-2024-26198.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Remote Code Execution"
"value": "CWE-426: Untrusted Search Path",
"cweId": "CWE-426"
}
]
}
@ -41,7 +42,7 @@
{
"version_affected": "<",
"version_name": "15.02.0",
"version_value": "15.02.1544.009"
"version_value": "15.02.1258.034"
}
]
}
@ -53,7 +54,7 @@
{
"version_affected": "<",
"version_name": "15.02.0",
"version_value": "15.02.1258.032"
"version_value": "15.02.1544.011"
}
]
}
@ -65,7 +66,7 @@
{
"version_affected": "<",
"version_name": "15.01.0",
"version_value": "15.01.2507.037"
"version_value": "15.01.2507.039"
}
]
}

3
2024/26xxx/CVE-2024-26199.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Elevation of Privilege"
"value": "CWE-59: Improper Link Resolution Before File Access ('Link Following')",
"cweId": "CWE-59"
}
]
}

2
2024/26xxx/CVE-2024-26200.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26205.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26232.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22631.3447"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26250.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26252.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26253.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26254.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26255.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/26xxx/CVE-2024-26256.json
View File

@ -42,7 +42,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28896.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28898.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28901.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

32
2024/28xxx/CVE-2024-28902.json
View File

@ -42,7 +42,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5696"
"version_value": "10.0.17763.5820"
}
]
}
@ -54,7 +54,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5696"
"version_value": "10.0.17763.5820"
}
]
}
@ -66,7 +66,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.17763.5696"
"version_value": "10.0.17763.5820"
}
]
}
@ -78,7 +78,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.20348.2402"
"version_value": "10.0.20348.2461"
}
]
}
@ -102,7 +102,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.19044.4291"
"version_value": "10.0.19044.4412"
}
]
}
@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3593"
}
]
}
@ -126,7 +126,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.19045.4291"
"version_value": "10.0.19045.4412"
}
]
}
@ -138,7 +138,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22631.3447"
"version_value": "10.0.22631.3593"
}
]
}
@ -150,7 +150,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22631.3447"
"version_value": "10.0.22631.3593"
}
]
}
@ -162,7 +162,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.25398.830"
"version_value": "10.0.25398.887"
}
]
}
@ -174,7 +174,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.10240.20596"
"version_value": "10.0.10240.20651"
}
]
}
@ -186,7 +186,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6897"
"version_value": "10.0.14393.6981"
}
]
}
@ -198,7 +198,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6897"
"version_value": "10.0.14393.6981"
}
]
}
@ -210,7 +210,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.14393.6897"
"version_value": "10.0.14393.6981"
}
]
}
@ -222,7 +222,7 @@
{
"version_affected": "<",
"version_name": "6.3.0",
"version_value": "6.3.9600.21924"
"version_value": "6.3.9600.21972"
}
]
}
@ -234,7 +234,7 @@
{
"version_affected": "<",
"version_name": "6.3.0",
"version_value": "6.3.9600.21924"
"version_value": "6.3.9600.21972"
}
]
}

2
2024/28xxx/CVE-2024-28903.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28919.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28920.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28921.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28922.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

2
2024/28xxx/CVE-2024-28923.json
View File

@ -114,7 +114,7 @@
{
"version_affected": "<",
"version_name": "10.0.0",
"version_value": "10.0.22621.3435"
"version_value": "10.0.22621.3447"
}
]
}

3
2024/29xxx/CVE-2024-29049.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')",
"cweId": "CWE-79"
}
]
}

32
2024/29xxx/CVE-2024-29059.json
View File

@ -42,7 +42,7 @@
{
"version_affected": "<",
"version_name": "4.8.0",
"version_value": "4.8.4682.0"
"version_value": "4.8.04690.02"
}
]
}
@ -54,7 +54,7 @@
{
"version_affected": "<",
"version_name": "4.8.0",
"version_value": "4.8.4682.0"
"version_value": "4.8.04690.02"
}
]
}
@ -66,19 +66,7 @@
{
"version_affected": "<",
"version_name": "4.7.0",
"version_value": "4.7.4076.0"
}
]
}
},
{
"product_name": "Microsoft .NET Framework 3.5 AND 4.6.2/4.7/4.7.1/4.7.2",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "3.0.0.0",
"version_value": "10.0.14393.6614"
"version_value": "4.7.04081.03"
}
]
}
@ -90,7 +78,7 @@
{
"version_affected": "<",
"version_name": "4.7.0",
"version_value": "4.7.4076.0"
"version_value": "4.7.04081.03"
}
]
}
@ -102,7 +90,7 @@
{
"version_affected": "<",
"version_name": "4.8.1",
"version_value": "4.8.9206.0"
"version_value": "4.8.09214.01"
}
]
}
@ -114,7 +102,7 @@
{
"version_affected": "<",
"version_name": "4.7.0",
"version_value": "4.7.4076.0"
"version_value": "4.7.04081.03"
}
]
}
@ -138,7 +126,7 @@
{
"version_affected": "<",
"version_name": "2.0.0",
"version_value": "3.0.50727.8975"
"version_value": "3.0.50727.8976"
}
]
}
@ -150,7 +138,7 @@
{
"version_affected": "<",
"version_name": "3.0.0",
"version_value": "3.0.50727.8975"
"version_value": "3.0.50727.8976"
}
]
}
@ -162,7 +150,7 @@
{
"version_affected": "<",
"version_name": "3.5.0",
"version_value": "3.0.50727.8975"
"version_value": "3.0.50727.8976"
}
]
}
@ -174,7 +162,7 @@
{
"version_affected": "<",
"version_name": "3.5.0",
"version_value": "3.0.50727.8975"
"version_value": "3.0.30729.8959"
}
]
}

3
2024/29xxx/CVE-2024-29981.json
View File

@ -21,7 +21,8 @@
"description": [
{
"lang": "eng",
"value": "Spoofing"
"value": "CWE-1021: Improper Restriction of Rendered UI Layers or Frames",
"cweId": "CWE-1021"
}
]
}

18
2024/36xxx/CVE-2024-36473.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-36473",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

100
2024/5xxx/CVE-2024-5437.json
View File

@ -1,17 +1,109 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-5437",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "cna@vuldb.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as problematic. Affected is the function save_category of the file /admin/index.php?page=categories. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-266442 is the identifier assigned to this vulnerability."
},
{
"lang": "deu",
"value": "Es wurde eine problematische Schwachstelle in SourceCodester Simple Online Bidding System 1.0 ausgemacht. Es geht dabei um die Funktion save_category der Datei /admin/index.php?page=categories. Dank der Manipulation des Arguments name mit unbekannten Daten kann eine cross site scripting-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk passieren. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-79 Cross Site Scripting",
"cweId": "CWE-79"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "SourceCodester",
"product": {
"product_data": [
{
"product_name": "Simple Online Bidding System",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "1.0"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://vuldb.com/?id.266442",
"refsource": "MISC",
"name": "https://vuldb.com/?id.266442"
},
{
"url": "https://vuldb.com/?ctiid.266442",
"refsource": "MISC",
"name": "https://vuldb.com/?ctiid.266442"
},
{
"url": "https://vuldb.com/?submit.345066",
"refsource": "MISC",
"name": "https://vuldb.com/?submit.345066"
},
{
"url": "https://github.com/pijiawei/CVE/blob/pijiawei-photo/SourceCodester%20Simple%20Online%20Bidding%20System%20XSS.md",
"refsource": "MISC",
"name": "https://github.com/pijiawei/CVE/blob/pijiawei-photo/SourceCodester%20Simple%20Online%20Bidding%20System%20XSS.md"
}
]
},
"credits": [
{
"lang": "en",
"value": "pijiawei (VulDB User)"
}
],
"impact": {
"cvss": [
{
"version": "3.1",
"baseScore": 3.5,
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"baseSeverity": "LOW"
},
{
"version": "3.0",
"baseScore": 3.5,
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N",
"baseSeverity": "LOW"
},
{
"version": "2.0",
"baseScore": 4,
"vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N"
}
]
}