admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2025-01-24 17:00:58 +00:00
parent 66471c77c2
commit 86e50f6951
No known key found for this signature in database
GPG Key ID: BC5FD8F2443B23B7
28 changed files with 713 additions and 617 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
2021/47xxx/CVE-2021-47035.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "b802d070a52a",
"version_value": "c848416cc05a"
"version_name": "b802d070a52a1565b47daaa808872cfbd4a17b01",
"version_value": "89bd620798704a8805fc9db0d71d7f812cf5b3d2"
},
{
"version_value": "not down converted",
@ -57,12 +57,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.37",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.38",
"lessThanOrEqual": "5.10.*",
@ -102,11 +96,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/c848416cc05afc1589edba04fe00b85c2f797ee3",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/c848416cc05afc1589edba04fe00b85c2f797ee3"
},
{
"url": "https://git.kernel.org/stable/c/89bd620798704a8805fc9db0d71d7f812cf5b3d2",
"refsource": "MISC",
@ -130,6 +119,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

28
2021/47xxx/CVE-2021-47315.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "a20cbdeffce2",
"version_value": "b7a2bcb4a373"
"version_name": "a20cbdeffce247a2b6fb83cd8d22433994068565",
"version_value": "d0d04b95e8ed0223844a1d58497c686fe2e4a955"
},
{
"version_value": "not down converted",
@ -57,18 +57,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "4.4.276",
"lessThanOrEqual": "4.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "4.4.277",
"lessThanOrEqual": "4.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "4.9.276",
"lessThanOrEqual": "4.9.*",
@ -132,16 +120,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/b7a2bcb4a3731d68f938207f75ed3e1d41774510",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/b7a2bcb4a3731d68f938207f75ed3e1d41774510"
},
{
"url": "https://git.kernel.org/stable/c/bd051b3e184fa56eeb6276ee913ba4d48069024b",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/bd051b3e184fa56eeb6276ee913ba4d48069024b"
},
{
"url": "https://git.kernel.org/stable/c/d0d04b95e8ed0223844a1d58497c686fe2e4a955",
"refsource": "MISC",
@ -185,6 +163,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

50
2021/47xxx/CVE-2021-47490.json
View File

@ -40,37 +40,13 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "bd99782f3ca4"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "132a3d998d6753047f22152731fba2b0d6b463dd"
},
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "5.4.157",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.4.158",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.77",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.78",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.14.16",
"lessThanOrEqual": "5.14.*",
@ -98,26 +74,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/bd99782f3ca491879e8524c89b1c0f40071903bd",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/bd99782f3ca491879e8524c89b1c0f40071903bd"
},
{
"url": "https://git.kernel.org/stable/c/960b1fdfc39aba8f41e9e27b2de0c925c74182d9",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/960b1fdfc39aba8f41e9e27b2de0c925c74182d9"
},
{
"url": "https://git.kernel.org/stable/c/c21b4002214c1c7e7b627b9b53375612f7aab6db",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/c21b4002214c1c7e7b627b9b53375612f7aab6db"
},
{
"url": "https://git.kernel.org/stable/c/bbc920fb320f1c241cc34ac85edaa0058922246a",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/bbc920fb320f1c241cc34ac85edaa0058922246a"
},
{
"url": "https://git.kernel.org/stable/c/132a3d998d6753047f22152731fba2b0d6b463dd",
"refsource": "MISC",
@ -131,6 +87,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

17
2022/48xxx/CVE-2022-48853.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "c132f2ba716b"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "c132f2ba716b5ee6b35f82226a6e5417d013d753"
},
{
"version_value": "not down converted",
@ -71,12 +71,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.110",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.29",
"lessThanOrEqual": "5.15.*",
@ -130,11 +124,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/6bfc5377a210dbda2a237f16d94d1bd4f1335026"
},
{
"url": "https://git.kernel.org/stable/c/d4d975e7921079f877f828099bb8260af335508f",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/d4d975e7921079f877f828099bb8260af335508f"
},
{
"url": "https://git.kernel.org/stable/c/7403f4118ab94be837ab9d770507537a8057bc63",
"refsource": "MISC",
@ -153,6 +142,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

18
2024/13xxx/CVE-2024-13721.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-13721",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

17
2024/26xxx/CVE-2024-26885.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "6f9d451ab1a3",
"version_value": "1f5e352b9088"
"version_name": "6f9d451ab1a33728adb72d7ff66a7b374d665176",
"version_value": "1f5e352b9088211fa5eb4e1639cd365f4f7d2f65"
},
{
"version_value": "not down converted",
@ -63,12 +63,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.214",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.227",
"lessThanOrEqual": "5.10.*",
@ -131,11 +125,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/1f5e352b9088211fa5eb4e1639cd365f4f7d2f65"
},
{
"url": "https://git.kernel.org/stable/c/225da02acdc97af01b6bc6ce1a3e5362bf01d3fb",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/225da02acdc97af01b6bc6ce1a3e5362bf01d3fb"
},
{
"url": "https://git.kernel.org/stable/c/4b81a9f92b3676cb74b907a7a209b3d15bd9a7f9",
"refsource": "MISC",
@ -174,6 +163,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

37
2024/26xxx/CVE-2024-26886.json
View File

@ -40,18 +40,13 @@
"version_data": [
{
"version_affected": "<",
"version_name": "37f71e2c9f51",
"version_value": "cb8adca52f30"
"version_name": "1d576c3a5af850bf11fbd103f9ba11aa6d6061fb",
"version_value": "64be3c6154886200708da0dfe259705fb992416c"
},
{
"version_affected": "<",
"version_name": "1d576c3a5af8",
"version_value": "64be3c615488"
},
{
"version_affected": "<",
"version_name": "2e07e8348ea4",
"version_value": "817e8138ce86"
"version_name": "2e07e8348ea454615e268222ae3fc240421be768",
"version_value": "817e8138ce86001b2fa5c63d6ede756e205a01f7"
},
{
"version_value": "not down converted",
@ -67,18 +62,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.83",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.118",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.23",
"lessThanOrEqual": "6.6.*",
@ -118,16 +101,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/cb8adca52f306563d958a863bb0cbae9c184d1ae",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/cb8adca52f306563d958a863bb0cbae9c184d1ae"
},
{
"url": "https://git.kernel.org/stable/c/0625d7c240b307b78640dcd823cb738cb900a8ba",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/0625d7c240b307b78640dcd823cb738cb900a8ba"
},
{
"url": "https://git.kernel.org/stable/c/64be3c6154886200708da0dfe259705fb992416c",
"refsource": "MISC",
@ -151,6 +124,6 @@
]
},
"generator": {
"engine": "bippy-8e903de6a542"
"engine": "bippy-5f407fcff5a0"
}
}

49
2024/26xxx/CVE-2024-26889.json
View File

@ -40,33 +40,28 @@
"version_data": [
{
"version_affected": "<",
"version_name": "194ab82c1ea1",
"version_value": "6d5a9d4a7bcb"
"version_name": "194ab82c1ea187512ff2f822124bd05b63fc9f76",
"version_value": "6d5a9d4a7bcbb7534ce45a18a52e7bd23e69d8ac"
},
{
"version_affected": "<",
"version_name": "b48595f5b1c6",
"version_value": "54a03e4ac1a4"
"version_name": "b48595f5b1c6e81e06e164e7d2b7a30b1776161e",
"version_value": "54a03e4ac1a41edf8a5087bd59f8241b0de96d3d"
},
{
"version_affected": "<",
"version_name": "ffb060b136dd",
"version_value": "d47e6c1932ce"
"version_name": "ffb060b136dd75a033ced0fc0aed2882c02e8b56",
"version_value": "d47e6c1932cee02954ea588c9f09fd5ecefeadfc"
},
{
"version_affected": "<",
"version_name": "bbec1724519e",
"version_value": "2e845867b4e2"
"version_name": "bbec1724519ecd9c468d1186a8f30b7567175bfb",
"version_value": "2e845867b4e279eff0a19ade253390470e07e8a1"
},
{
"version_affected": "<",
"version_name": "a55d53ad5c86",
"version_value": "68644bf5ec6b"
},
{
"version_affected": "<",
"version_name": "dcda165706b9",
"version_value": "a41c8efe659c"
"version_name": "dcda165706b9fbfd685898d46a6749d7d397e0c0",
"version_value": "a41c8efe659caed0e21422876bbb6b73c15b5244"
},
{
"version_value": "not down converted",
@ -106,18 +101,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.83",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.118",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.23",
"lessThanOrEqual": "6.6.*",
@ -177,16 +160,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/2e845867b4e279eff0a19ade253390470e07e8a1"
},
{
"url": "https://git.kernel.org/stable/c/68644bf5ec6baaff40fc39b3529c874bfda709bd",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/68644bf5ec6baaff40fc39b3529c874bfda709bd"
},
{
"url": "https://git.kernel.org/stable/c/4c69abb4d41ece30d9f4cfdf51cf3ee838f48723",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/4c69abb4d41ece30d9f4cfdf51cf3ee838f48723"
},
{
"url": "https://git.kernel.org/stable/c/a41c8efe659caed0e21422876bbb6b73c15b5244",
"refsource": "MISC",
@ -210,6 +183,6 @@
]
},
"generator": {
"engine": "bippy-8e903de6a542"
"engine": "bippy-5f407fcff5a0"
}
}

104
2024/26xxx/CVE-2024-26920.json
View File

@ -40,18 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "57f2a2ad73e9",
"version_value": "bcf4a115a506"
},
{
"version_affected": "<",
"version_name": "0026e356e51a",
"version_value": "8ffd5590f4d6"
},
{
"version_affected": "<",
"version_name": "0bbe7f719985",
"version_value": "56cfbe607107"
"version_name": "0bbe7f719985efd9adb3454679ecef0984cb6800",
"version_value": "36be97e9eb535fe3008a5cb040b1e56f29f2e398"
},
{
"version_value": "not down converted",
@ -67,54 +57,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "4.19.307",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "4.19.313",
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.4.269",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.4.275",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.210",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.216",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.149",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.157",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.79",
"lessThanOrEqual": "6.1.*",
@ -154,46 +96,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/bcf4a115a5068f3331fafb8c176c1af0da3d8b19",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/bcf4a115a5068f3331fafb8c176c1af0da3d8b19"
},
{
"url": "https://git.kernel.org/stable/c/34925d01baf3ee62ab21c21efd9e2c44c24c004a",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/34925d01baf3ee62ab21c21efd9e2c44c24c004a"
},
{
"url": "https://git.kernel.org/stable/c/8ffd5590f4d6ef5460acbeac7fbdff7025f9b419",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/8ffd5590f4d6ef5460acbeac7fbdff7025f9b419"
},
{
"url": "https://git.kernel.org/stable/c/2450a69d2ee75d1f0112d509ac82ef98f5ad6b5f",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/2450a69d2ee75d1f0112d509ac82ef98f5ad6b5f"
},
{
"url": "https://git.kernel.org/stable/c/56cfbe60710772916a5ba092c99542332b48e870",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/56cfbe60710772916a5ba092c99542332b48e870"
},
{
"url": "https://git.kernel.org/stable/c/26ebeffff238488466fa578be3b35b8a46e69906",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/26ebeffff238488466fa578be3b35b8a46e69906"
},
{
"url": "https://git.kernel.org/stable/c/b5085b5ac1d96ea2a8a6240f869655176ce44197",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/b5085b5ac1d96ea2a8a6240f869655176ce44197"
},
{
"url": "https://git.kernel.org/stable/c/2a3073d58382157ab396734ed4e421ba9e969db1",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/2a3073d58382157ab396734ed4e421ba9e969db1"
},
{
"url": "https://git.kernel.org/stable/c/36be97e9eb535fe3008a5cb040b1e56f29f2e398",
"refsource": "MISC",
@ -217,6 +119,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

50
2024/27xxx/CVE-2024-27022.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "8d9bfb260814",
"version_value": "0c42f7e039ab"
"version_name": "8d9bfb2608145cf3e408428c224099e1585471af",
"version_value": "abdb88dd272bbeb93efe01d8e0b7b17e24af3a34"
},
{
"version_value": "not down converted",
@ -57,30 +57,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.90",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.95",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.30",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.35",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.8.8",
"lessThanOrEqual": "6.8.*",
@ -108,26 +84,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/0c42f7e039aba3de6d7dbf92da708e2b2ecba557",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/0c42f7e039aba3de6d7dbf92da708e2b2ecba557"
},
{
"url": "https://git.kernel.org/stable/c/04b0c41912349aff11a1bbaef6a722bd7fbb90ac",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/04b0c41912349aff11a1bbaef6a722bd7fbb90ac"
},
{
"url": "https://git.kernel.org/stable/c/cec11fa2eb512ebe3a459c185f4aca1d44059bbf",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/cec11fa2eb512ebe3a459c185f4aca1d44059bbf"
},
{
"url": "https://git.kernel.org/stable/c/dd782da470761077f4d1120e191f1a35787cda6e",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/dd782da470761077f4d1120e191f1a35787cda6e"
},
{
"url": "https://git.kernel.org/stable/c/abdb88dd272bbeb93efe01d8e0b7b17e24af3a34",
"refsource": "MISC",
@ -141,6 +97,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

24
2024/35xxx/CVE-2024-35995.json
View File

@ -41,24 +41,12 @@
{
"version_affected": "<",
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "4949affd5288b867cdf115f5b08d6166b2027f87"
"version_value": "01fc53be672acae37e611c80cc0b4f3939584de3"
},
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "5.15.154",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.155",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.90",
"lessThanOrEqual": "6.1.*",
@ -98,16 +86,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/4949affd5288b867cdf115f5b08d6166b2027f87",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/4949affd5288b867cdf115f5b08d6166b2027f87"
},
{
"url": "https://git.kernel.org/stable/c/b54c4632946ae42f2b39ed38abd909bbf78cbcc2",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/b54c4632946ae42f2b39ed38abd909bbf78cbcc2"
},
{
"url": "https://git.kernel.org/stable/c/01fc53be672acae37e611c80cc0b4f3939584de3",
"refsource": "MISC",

28
2024/42xxx/CVE-2024-42067.json
View File

@ -40,25 +40,13 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "08f6c05feb1d"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "044da7ae7afd4ef60806d73654a2e6a79aa4ed7a"
},
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "6.6.37",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.38",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.9.8",
"lessThanOrEqual": "6.9.*",
@ -86,16 +74,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/08f6c05feb1db21653e98ca84ea04ca032d014c7",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/08f6c05feb1db21653e98ca84ea04ca032d014c7"
},
{
"url": "https://git.kernel.org/stable/c/9fef36cad60d4226f9d06953cd56d1d2f9119730",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/9fef36cad60d4226f9d06953cd56d1d2f9119730"
},
{
"url": "https://git.kernel.org/stable/c/044da7ae7afd4ef60806d73654a2e6a79aa4ed7a",
"refsource": "MISC",
@ -109,6 +87,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

28
2024/42xxx/CVE-2024-42068.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "a359696856ca"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "a359696856ca9409fb97655c5a8ef0f549cb6e03"
},
{
"version_value": "not down converted",
@ -59,18 +59,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.37",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.38",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.9.8",
"lessThanOrEqual": "6.9.*",
@ -108,16 +96,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/e4f602e3ff749ba770bf8ff10196e18358de6720"
},
{
"url": "https://git.kernel.org/stable/c/fdd411af8178edc6b7bf260f8fa4fba1bedd0a6d",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/fdd411af8178edc6b7bf260f8fa4fba1bedd0a6d"
},
{
"url": "https://git.kernel.org/stable/c/e3540e5a7054d6daaf9a1415a48aacb092112a89",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/e3540e5a7054d6daaf9a1415a48aacb092112a89"
},
{
"url": "https://git.kernel.org/stable/c/05412471beba313ecded95aa17b25fe84bb2551a",
"refsource": "MISC",
@ -131,6 +109,6 @@
]
},
"generator": {
"engine": "bippy-9e1c9544281a"
"engine": "bippy-5f407fcff5a0"
}
}

24
2024/44xxx/CVE-2024-44949.json
View File

@ -41,24 +41,12 @@
{
"version_affected": "<",
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "dadac97f066a67334268132c1e2d0fd599fbcbec"
"version_value": "00baca74fb5879e5f9034b6156671301f500f8ee"
},
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "5.15.174",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.175",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.119",
"lessThanOrEqual": "6.1.*",
@ -98,16 +86,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/dadac97f066a67334268132c1e2d0fd599fbcbec",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/dadac97f066a67334268132c1e2d0fd599fbcbec"
},
{
"url": "https://git.kernel.org/stable/c/3dfd8991ad33b10c2fb027a4cfcf57579fa786c1",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/3dfd8991ad33b10c2fb027a4cfcf57579fa786c1"
},
{
"url": "https://git.kernel.org/stable/c/00baca74fb5879e5f9034b6156671301f500f8ee",
"refsource": "MISC",

33
2024/47xxx/CVE-2024-47683.json
View File

@ -53,24 +53,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.54",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.10.13",
"lessThanOrEqual": "6.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.11.2",
"lessThanOrEqual": "6.11.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.12",
"lessThanOrEqual": "*",
@ -97,21 +79,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/7c887efda1201110211fed8921a92a713e0b6bcd"
},
{
"url": "https://git.kernel.org/stable/c/a53841b074cc196c3caaa37e1f15d6bc90943b97",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/a53841b074cc196c3caaa37e1f15d6bc90943b97"
},
{
"url": "https://git.kernel.org/stable/c/6f9c39e8169384d2a5ca9bf323a0c1b81b3d0f3a",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/6f9c39e8169384d2a5ca9bf323a0c1b81b3d0f3a"
},
{
"url": "https://git.kernel.org/stable/c/d45c64d933586d409d3f1e0ecaca4da494b1d9c6",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/d45c64d933586d409d3f1e0ecaca4da494b1d9c6"
},
{
"url": "https://git.kernel.org/stable/c/8151a6c13111b465dbabe07c19f572f7cbd16fef",
"refsource": "MISC",

24
2024/49xxx/CVE-2024-49926.json
View File

@ -41,24 +41,12 @@
{
"version_affected": "<",
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "224fd631c41b81697aa622d38615bfbf446b91cf"
"version_value": "b3b2431ed27f4ebc28e26cdf005c1de42dc60bdf"
},
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "6.1.120",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.123",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.60",
"lessThanOrEqual": "6.6.*",
@ -98,16 +86,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/224fd631c41b81697aa622d38615bfbf446b91cf",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/224fd631c41b81697aa622d38615bfbf446b91cf"
},
{
"url": "https://git.kernel.org/stable/c/acddb87620142f38fda834cd1ec661512ca59241",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/acddb87620142f38fda834cd1ec661512ca59241"
},
{
"url": "https://git.kernel.org/stable/c/b3b2431ed27f4ebc28e26cdf005c1de42dc60bdf",
"refsource": "MISC",

28
2024/50xxx/CVE-2024-50010.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "c9b77438077d"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "c9b77438077d5a20c79ead95bcdaf9bd4797baaf"
},
{
"version_value": "not down converted",
@ -71,18 +71,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.11.3",
"lessThanOrEqual": "6.11.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.11.11",
"lessThanOrEqual": "6.11.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.12",
"lessThanOrEqual": "*",
@ -124,16 +112,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/0d16f53c91111cec914f0811fcc526a2ba77b20d"
},
{
"url": "https://git.kernel.org/stable/c/d62ba2a5536df83473a2ac15ab302258e3845251",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/d62ba2a5536df83473a2ac15ab302258e3845251"
},
{
"url": "https://git.kernel.org/stable/c/b8b0e9650eeb6637b4e1cf3d6aaf0e96f87862e7",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/b8b0e9650eeb6637b4e1cf3d6aaf0e96f87862e7"
},
{
"url": "https://git.kernel.org/stable/c/0d196e7589cefe207d5d41f37a0a28a1fdeeb7c6",
"refsource": "MISC",
@ -142,6 +120,6 @@
]
},
"generator": {
"engine": "bippy-8e903de6a542"
"engine": "bippy-5f407fcff5a0"
}
}

50
2024/50xxx/CVE-2024-50282.json
View File

@ -40,8 +40,8 @@
"version_data": [
{
"version_affected": "<",
"version_name": "1da177e4c3f4",
"version_value": "673bdb4200c0"
"version_name": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
"version_value": "673bdb4200c092692f83b5f7ba3df57021d52d29"
},
{
"version_value": "not down converted",
@ -53,30 +53,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.4.286",
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.10.230",
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "5.15.172",
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.1.117",
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.61",
"lessThanOrEqual": "6.6.*",
@ -115,26 +91,6 @@
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/673bdb4200c092692f83b5f7ba3df57021d52d29"
},
{
"url": "https://git.kernel.org/stable/c/7ccd781794d247589104a791caab491e21218fba",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/7ccd781794d247589104a791caab491e21218fba"
},
{
"url": "https://git.kernel.org/stable/c/17f5f18085acb5e9d8d13d84a4e12bb3aff2bd64",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/17f5f18085acb5e9d8d13d84a4e12bb3aff2bd64"
},
{
"url": "https://git.kernel.org/stable/c/aaf6160a4b7f9ee3cd91aa5b3251f5dbe2170f42",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/aaf6160a4b7f9ee3cd91aa5b3251f5dbe2170f42"
},
{
"url": "https://git.kernel.org/stable/c/25d7e84343e1235b667cf5226c3934fdf36f0df6",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/25d7e84343e1235b667cf5226c3934fdf36f0df6"
},
{
"url": "https://git.kernel.org/stable/c/8906728f2fbd6504cb488f4afdd66af28f330a7a",
"refsource": "MISC",
@ -153,6 +109,6 @@
]
},
"generator": {
"engine": "bippy-8e903de6a542"
"engine": "bippy-5f407fcff5a0"
}
}

24
2025/21xxx/CVE-2025-21654.json
View File

@ -41,7 +41,7 @@
{
"version_affected": "<",
"version_name": "16aac5ad1fa94894b798dd522c5c3a6a0628d7f0",
"version_value": "a1a541fbfa7e97c1100144db34b57553d7164ce5"
"version_value": "f0c0ac84de17c37e6e84da65fb920f91dada55ad"
},
{
"version_value": "not down converted",
@ -57,18 +57,6 @@
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.72",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.73",
"lessThanOrEqual": "6.6.*",
"status": "unaffected",
"versionType": "semver"
},
{
"version": "6.6.74",
"lessThanOrEqual": "6.6.*",
@ -102,16 +90,6 @@
},
"references": {
"reference_data": [
{
"url": "https://git.kernel.org/stable/c/a1a541fbfa7e97c1100144db34b57553d7164ce5",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/a1a541fbfa7e97c1100144db34b57553d7164ce5"
},
{
"url": "https://git.kernel.org/stable/c/950b604384fd75d62e860bec7135b2b62eb4d508",
"refsource": "MISC",
"name": "https://git.kernel.org/stable/c/950b604384fd75d62e860bec7135b2b62eb4d508"
},
{
"url": "https://git.kernel.org/stable/c/f0c0ac84de17c37e6e84da65fb920f91dada55ad",
"refsource": "MISC",

85
2025/22xxx/CVE-2025-22608.json
View File

@ -1,17 +1,94 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22608",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to revoke any team invitations on a Coolify instance by only providing a predictable and incrementing ID, resulting in a Denial-of-Service attack (DOS). Version 4.0.0-beta.361 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-639: Authorization Bypass Through User-Controlled Key",
"cweId": "CWE-639"
}
]
},
{
"description": [
{
"lang": "eng",
"value": "CWE-862: Missing Authorization",
"cweId": "CWE-862"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.361"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-qmxm-wvm9-wvxx",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-qmxm-wvm9-wvxx"
}
]
},
"source": {
"advisory": "GHSA-qmxm-wvm9-wvxx",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
}
]
}

76
2025/22xxx/CVE-2025-22609.json
View File

@ -1,17 +1,85 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22609",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to attach any existing private key on a coolify instance to his own server. If the server configuration of IP / domain, port (most likely 22) and user (root) matches with the victim's server configuration, then the attacker can use the `Terminal` feature and execute arbitrary commands on the victim's server. Version 4.0.0-beta.361 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-862: Missing Authorization",
"cweId": "CWE-862"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.361"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-3w2c-jfr2-9pg9",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-3w2c-jfr2-9pg9"
}
]
},
"source": {
"advisory": "GHSA-3w2c-jfr2-9pg9",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
]
}

58
2025/22xxx/CVE-2025-22610.json
View File

@ -1,18 +1,68 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22610",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to fetch the global coolify instance OAuth configuration. This exposes the \"client id\" and \"client secret\" for every custom OAuth provider. The attacker can also modify the global OAuth configuration. Version 4.0.0-beta.361 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-862: Missing Authorization",
"cweId": "CWE-862"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.361"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-496v-9q38-2x6c",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-496v-9q38-2x6c"
}
]
},
"source": {
"advisory": "GHSA-496v-9q38-2x6c",
"discovery": "UNKNOWN"
}
}

76
2025/22xxx/CVE-2025-22611.json
View File

@ -1,17 +1,85 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22611",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.361, the missing authorization allows any authenticated user to escalate his or any other team members privileges to any role, including the owner role. He's also able to kick every other member out of the team, including admins and owners. This allows the attacker to access the `Terminal` feature and execute remote commands. Version 4.0.0-beta.361 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-862: Missing Authorization",
"cweId": "CWE-862"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.361"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-9w72-9qww-qj6g",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-9w72-9qww-qj6g"
}
]
},
"source": {
"advisory": "GHSA-9w72-9qww-qj6g",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
]
}

85
2025/22xxx/CVE-2025-22612.json
View File

@ -1,17 +1,94 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22612",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.374, the missing authorization allows an authenticated user to retrieve any existing private keys on a coolify instance in plain text. If the server configuration of IP / domain, port (most likely 22) and user (root) matches with the victim's server configuration, then the attacker can execute arbitrary commands on the remote server. Version 4.0.0-beta.374 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
"cweId": "CWE-200"
}
]
},
{
"description": [
{
"lang": "eng",
"value": "CWE-862: Missing Authorization",
"cweId": "CWE-862"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.374"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-wg8x-cgq4-vjxj",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-wg8x-cgq4-vjxj"
}
]
},
"source": {
"advisory": "GHSA-wg8x-cgq4-vjxj",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
]
}

66
2025/23xxx/CVE-2025-23222.json
View File

@ -1,17 +1,71 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-23222",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2025-23222",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in Deepin dde-api-proxy through 1.0.19 in which unprivileged users can access D-Bus services as root. Specifically, dde-api-proxy runs as root and forwards messages from arbitrary local users to legacy D-Bus methods in the actual D-Bus services, and the actual D-Bus services don't know about the proxy situation (they believe that root is asking them to do things). Consequently several proxied methods, that shouldn't be accessible to non-root users, are accessible to non-root users. In situations where Polkit is involved, the caller would be treated as admin, resulting in a similar escalation of privileges."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1229918",
"refsource": "MISC",
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1229918"
},
{
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2025/01/24/3",
"url": "https://www.openwall.com/lists/oss-security/2025/01/24/3"
},
{
"refsource": "MISC",
"name": "https://security.opensuse.org/2025/01/24/dde-api-proxy-privilege-escalation.html",
"url": "https://security.opensuse.org/2025/01/24/dde-api-proxy-privilege-escalation.html"
}
]
}

58
2025/24xxx/CVE-2025-24025.json
View File

@ -1,18 +1,68 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-24025",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to version 4.0.0-beta.380, the tags page allows users to search for tags. If the search does not return any results, the query gets reflected on the error modal, which leads to cross-site scripting. Version 4.0.0-beta.380 fixes the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-116: Improper Encoding or Escaping of Output",
"cweId": "CWE-116"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "coollabsio",
"product": {
"product_data": [
{
"product_name": "coolify",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 4.0.0-beta.361"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/coollabsio/coolify/security/advisories/GHSA-f2gf-jvmh-vq73",
"refsource": "MISC",
"name": "https://github.com/coollabsio/coolify/security/advisories/GHSA-f2gf-jvmh-vq73"
}
]
},
"source": {
"advisory": "GHSA-f2gf-jvmh-vq73",
"discovery": "UNKNOWN"
}
}

81
2025/24xxx/CVE-2025-24355.json
View File

@ -1,17 +1,90 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-24355",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Updatecli is a tool used to apply file update strategies. Prior to version 0.93.0, private maven repository credentials may be leaked in application logs in case of unsuccessful retrieval operation. During the execution of an updatecli pipeline which contains a `maven` source configured with basic auth credentials, the credentials are being leaked in the application execution logs in case of failure. Credentials are properly sanitized when the operation is successful but not when for whatever reason there is a failure in the maven repository, e.g. wrong coordinates provided, not existing artifact or version. Version 0.93.0 contains a patch for the issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-359: Exposure of Private Personal Information to an Unauthorized Actor",
"cweId": "CWE-359"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "updatecli",
"product": {
"product_data": [
{
"product_name": "updatecli",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 0.93.0"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/updatecli/updatecli/security/advisories/GHSA-v34r-vj4r-38j6",
"refsource": "MISC",
"name": "https://github.com/updatecli/updatecli/security/advisories/GHSA-v34r-vj4r-38j6"
},
{
"url": "https://github.com/updatecli/updatecli/commit/344b28091ffeca5ed32e8d0f9eda542842fcd3fa",
"refsource": "MISC",
"name": "https://github.com/updatecli/updatecli/commit/344b28091ffeca5ed32e8d0f9eda542842fcd3fa"
}
]
},
"source": {
"advisory": "GHSA-v34r-vj4r-38j6",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.0"
}
]
}

95
2025/24xxx/CVE-2025-24359.json
View File

@ -1,17 +1,104 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-24359",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security-advisories@github.com",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "ASTEVAL is an evaluator of Python expressions and statements. Prior to version 1.0.6, if an attacker can control the input to the `asteval` library, they can bypass asteval's restrictions and execute arbitrary Python code in the context of the application using the library. The vulnerability is rooted in how `asteval` performs handling of `FormattedValue` AST nodes. In particular, the `on_formattedvalue` value uses the dangerous format method of the str class. The code allows an attacker to manipulate the value of the string used in the dangerous call `fmt.format(__fstring__=val)`. This vulnerability can be exploited to access protected attributes by intentionally triggering an `AttributeError` exception. The attacker can then catch the exception and use its `obj` attribute to gain arbitrary access to sensitive or protected object properties. Version 1.0.6 fixes this issue."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-134: Use of Externally-Controlled Format String",
"cweId": "CWE-134"
}
]
},
{
"description": [
{
"lang": "eng",
"value": "CWE-749: Exposed Dangerous Method or Function",
"cweId": "CWE-749"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "lmfit",
"product": {
"product_data": [
{
"product_name": "asteval",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "< 1.0.6"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://github.com/lmfit/asteval/security/advisories/GHSA-3wwr-3g9f-9gc7",
"refsource": "MISC",
"name": "https://github.com/lmfit/asteval/security/advisories/GHSA-3wwr-3g9f-9gc7"
},
{
"url": "https://github.com/lmfit/asteval/blob/cfb57f0beebe0dc0520a1fbabc35e66060c7ea71/asteval/asteval.py#L507",
"refsource": "MISC",
"name": "https://github.com/lmfit/asteval/blob/cfb57f0beebe0dc0520a1fbabc35e66060c7ea71/asteval/asteval.py#L507"
},
{
"url": "https://lucumr.pocoo.org/2016/12/29/careful-with-str-format",
"refsource": "MISC",
"name": "https://lucumr.pocoo.org/2016/12/29/careful-with-str-format"
}
]
},
"source": {
"advisory": "GHSA-3wwr-3g9f-9gc7",
"discovery": "UNKNOWN"
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
}
]
}