diff --git a/2024/13xxx/CVE-2024-13041.json b/2024/13xxx/CVE-2024-13041.json
index 639cc355298..5c90b60a45f 100644
--- a/2024/13xxx/CVE-2024-13041.json
+++ b/2024/13xxx/CVE-2024-13041.json
@@ -1,17 +1,109 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-13041",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "cve@gitlab.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "An issue was discovered in GitLab CE/EE affecting all versions starting from 16.4 prior to 17.5.5, starting from 17.6 prior to 17.6.3, and starting from 17.7 prior to 17.7.1. When a user is created via the SAML provider, the external groups setting overrides the external provider configuration. As a result, the user may not be marked as external thereby giving those users access to internal projects or groups."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-286: Incorrect User Management",
+ "cweId": "CWE-286"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "GitLab",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "GitLab",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "<",
+ "version_name": "16.4",
+ "version_value": "17.5.5"
+ },
+ {
+ "version_affected": "<",
+ "version_name": "17.6",
+ "version_value": "17.6.3"
+ },
+ {
+ "version_affected": "<",
+ "version_name": "17.7",
+ "version_value": "17.7.1"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/479165",
+ "refsource": "MISC",
+ "name": "https://gitlab.com/gitlab-org/gitlab/-/issues/479165"
+ },
+ {
+ "url": "https://about.gitlab.com/releases/2025/01/08/patch-release-gitlab-17-7-1-released/#instance-saml-does-not-respect-external_provider-configuration",
+ "refsource": "MISC",
+ "name": "https://about.gitlab.com/releases/2025/01/08/patch-release-gitlab-17-7-1-released/#instance-saml-does-not-respect-external_provider-configuration"
+ }
+ ]
+ },
+ "solution": [
+ {
+ "lang": "en",
+ "value": "Upgrade to version 17.5.5, 17.6.3 or 17.7.1 or above"
+ }
+ ],
+ "credits": [
+ {
+ "lang": "en",
+ "value": "This vulnerability has been discovered internally by GitLab team member [Drew Blessing](https://gitlab.com/dblessing)."
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "version": "3.1",
+ "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N",
+ "attackVector": "NETWORK",
+ "attackComplexity": "HIGH",
+ "privilegesRequired": "LOW",
+ "userInteraction": "NONE",
+ "scope": "UNCHANGED",
+ "confidentialityImpact": "LOW",
+ "integrityImpact": "LOW",
+ "availabilityImpact": "NONE",
+ "baseScore": 4.2,
+ "baseSeverity": "MEDIUM"
}
]
}
diff --git a/2024/40xxx/CVE-2024-40762.json b/2024/40xxx/CVE-2024-40762.json
index dc91b29a44f..a740edb05a0 100644
--- a/2024/40xxx/CVE-2024-40762.json
+++ b/2024/40xxx/CVE-2024-40762.json
@@ -1,18 +1,85 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-40762",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "PSIRT@sonicwall.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting in authentication bypass."
}
]
- }
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)",
+ "cweId": "CWE-338"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "SonicWall",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "SonicOS",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "=",
+ "version_value": "7.1.1-7058 and older versions"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "7.1.2-7019"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "8.0.0-8035"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003",
+ "refsource": "MISC",
+ "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "SNWLID-2025-0003",
+ "discovery": "EXTERNAL"
+ },
+ "credits": [
+ {
+ "lang": "en",
+ "value": "Daan Keuper, Thijs Alkemade and Khaled Nassar of Computest Security through Trend Micro (Zero Day Initiative)"
+ }
+ ]
}
\ No newline at end of file
diff --git a/2024/53xxx/CVE-2024-53704.json b/2024/53xxx/CVE-2024-53704.json
index f3a18f7749b..42c7cb08982 100644
--- a/2024/53xxx/CVE-2024-53704.json
+++ b/2024/53xxx/CVE-2024-53704.json
@@ -1,18 +1,85 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-53704",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "PSIRT@sonicwall.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication."
}
]
- }
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-287 Improper Authentication",
+ "cweId": "CWE-287"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "SonicWall",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "SonicOS",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "=",
+ "version_value": "7.1.1-7058 and older versions"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "7.1.2-7019"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "8.0.0-8035"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003",
+ "refsource": "MISC",
+ "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "SNWLID-2025-0003",
+ "discovery": "EXTERNAL"
+ },
+ "credits": [
+ {
+ "lang": "en",
+ "value": "Daan Keuper, Thijs Alkemade and Khaled Nassar of Computest Security through Trend Micro (Zero Day Initiative)"
+ }
+ ]
}
\ No newline at end of file
diff --git a/2024/53xxx/CVE-2024-53705.json b/2024/53xxx/CVE-2024-53705.json
index 10b8802ea58..ccec800a156 100644
--- a/2024/53xxx/CVE-2024-53705.json
+++ b/2024/53xxx/CVE-2024-53705.json
@@ -1,18 +1,93 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-53705",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "PSIRT@sonicwall.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "A Server-Side Request Forgery vulnerability in the SonicOS SSH management interface allows a remote attacker to establish a TCP connection to an IP address on any port when the user is logged in to the firewall."
}
]
- }
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-918 Server-Side Request Forgery (SSRF)",
+ "cweId": "CWE-918"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "SonicWall",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "SonicOS",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "=",
+ "version_value": "6.5.4.15-117n and older versions"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "7.0.1-5161 and older versions"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "7.1.1-7058 and older versions"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "7.1.2-7019"
+ },
+ {
+ "version_affected": "=",
+ "version_value": "8.0.0-8035"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003",
+ "refsource": "MISC",
+ "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "SNWLID-2025-0003",
+ "discovery": "EXTERNAL"
+ },
+ "credits": [
+ {
+ "lang": "en",
+ "value": "Daan Keuper, Thijs Alkemade and Khaled Nassar of Computest Security through Trend Micro (Zero Day Initiative)"
+ }
+ ]
}
\ No newline at end of file
diff --git a/2024/6xxx/CVE-2024-6324.json b/2024/6xxx/CVE-2024-6324.json
index 759f239678b..a6a68d97a48 100644
--- a/2024/6xxx/CVE-2024-6324.json
+++ b/2024/6xxx/CVE-2024-6324.json
@@ -1,17 +1,114 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-6324",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "cve@gitlab.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "An issue was discovered in GitLab CE/EE affecting all versions starting from 15.7 prior to 17.5.5, starting from 17.6 prior to 17.6.3, and starting from 17.7 prior to 17.7.1. It was possible to trigger a DoS by creating cyclic references between epics."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-407: Inefficient Algorithmic Complexity",
+ "cweId": "CWE-407"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "GitLab",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "GitLab",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "<",
+ "version_name": "17.7",
+ "version_value": "17.7.1"
+ },
+ {
+ "version_affected": "<",
+ "version_name": "17.6",
+ "version_value": "17.6.3"
+ },
+ {
+ "version_affected": "<",
+ "version_name": "15.7",
+ "version_value": "17.5.5"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/468914",
+ "refsource": "MISC",
+ "name": "https://gitlab.com/gitlab-org/gitlab/-/issues/468914"
+ },
+ {
+ "url": "https://about.gitlab.com/releases/2025/01/08/patch-release-gitlab-17-7-1-released/#cyclic-reference-of-epics-leads-resource-exhaustion",
+ "refsource": "MISC",
+ "name": "https://about.gitlab.com/releases/2025/01/08/patch-release-gitlab-17-7-1-released/#cyclic-reference-of-epics-leads-resource-exhaustion"
+ },
+ {
+ "url": "https://hackerone.com/reports/2553716",
+ "refsource": "MISC",
+ "name": "https://hackerone.com/reports/2553716"
+ }
+ ]
+ },
+ "solution": [
+ {
+ "lang": "en",
+ "value": "Upgrade to versions 17.7.1, 17.6.3, 17.5.5 or above."
+ }
+ ],
+ "credits": [
+ {
+ "lang": "en",
+ "value": "Thanks [xorz](https://hackerone.com/xorz) for reporting this vulnerability through our HackerOne bug bounty program"
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "version": "3.1",
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
+ "attackVector": "NETWORK",
+ "attackComplexity": "LOW",
+ "privilegesRequired": "LOW",
+ "userInteraction": "NONE",
+ "scope": "UNCHANGED",
+ "confidentialityImpact": "NONE",
+ "integrityImpact": "NONE",
+ "availabilityImpact": "LOW",
+ "baseScore": 4.3,
+ "baseSeverity": "MEDIUM"
}
]
}
diff --git a/2025/0xxx/CVE-2025-0194.json b/2025/0xxx/CVE-2025-0194.json
index 0dbcf95edba..c739f1c04f4 100644
--- a/2025/0xxx/CVE-2025-0194.json
+++ b/2025/0xxx/CVE-2025-0194.json
@@ -11,7 +11,7 @@
"description_data": [
{
"lang": "eng",
- "value": "An issue was discovered in GitLab CE/EE affecting all versions starting from 17.4 prior to 17.5.1, starting from 17.6 prior to 17.6.1, and starting from 17.7 prior to 17.7.1. Under certain conditions, access tokens may have been logged when API requests were made in a specific manner."
+ "value": "An issue was discovered in GitLab CE/EE affecting all versions starting from 17.4 prior to 17.5.5, starting from 17.6 prior to 17.6.3, and starting from 17.7 prior to 17.7.1. Under certain conditions, access tokens may have been logged when API requests were made in a specific manner."
}
]
},
@@ -42,12 +42,12 @@
{
"version_affected": "<",
"version_name": "17.4",
- "version_value": "17.5.1"
+ "version_value": "17.5.5"
},
{
"version_affected": "<",
"version_name": "17.6",
- "version_value": "17.6.1"
+ "version_value": "17.6.3"
},
{
"version_affected": "<",
@@ -80,7 +80,7 @@
"solution": [
{
"lang": "en",
- "value": "Upgrade to version 17.5.1, 17.6.1 or 17.7.1 or above"
+ "value": "Upgrade to version 17.5.5, 17.6.3 or 17.7.1 or above"
}
],
"credits": [
@@ -92,18 +92,18 @@
"impact": {
"cvss": [
{
- "version": "3.1",
- "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
- "attackVector": "NETWORK",
"attackComplexity": "LOW",
- "privilegesRequired": "HIGH",
- "userInteraction": "NONE",
- "scope": "UNCHANGED",
- "confidentialityImpact": "HIGH",
- "integrityImpact": "HIGH",
+ "attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
- "baseSeverity": "MEDIUM"
+ "baseSeverity": "MEDIUM",
+ "confidentialityImpact": "HIGH",
+ "integrityImpact": "HIGH",
+ "privilegesRequired": "HIGH",
+ "scope": "UNCHANGED",
+ "userInteraction": "NONE",
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N",
+ "version": "3.1"
}
]
}
diff --git a/2025/0xxx/CVE-2025-0336.json b/2025/0xxx/CVE-2025-0336.json
index e5625c694de..4d309313a4a 100644
--- a/2025/0xxx/CVE-2025-0336.json
+++ b/2025/0xxx/CVE-2025-0336.json
@@ -1,17 +1,118 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-0336",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "cna@vuldb.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "A vulnerability was found in Codezips Project Management System 1.0. It has been classified as critical. This affects an unknown part of the file /pages/forms/teacher.php. The manipulation of the argument name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used."
+ },
+ {
+ "lang": "deu",
+ "value": "Es wurde eine Schwachstelle in Codezips Project Management System 1.0 ausgemacht. Sie wurde als kritisch eingestuft. Dabei betrifft es einen unbekannter Codeteil der Datei /pages/forms/teacher.php. Mittels dem Manipulieren des Arguments name mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs kann dabei \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "SQL Injection",
+ "cweId": "CWE-89"
+ }
+ ]
+ },
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "Injection",
+ "cweId": "CWE-74"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "Codezips",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "Project Management System",
+ "version": {
+ "version_data": [
+ {
+ "version_affected": "=",
+ "version_value": "1.0"
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://vuldb.com/?id.290823",
+ "refsource": "MISC",
+ "name": "https://vuldb.com/?id.290823"
+ },
+ {
+ "url": "https://vuldb.com/?ctiid.290823",
+ "refsource": "MISC",
+ "name": "https://vuldb.com/?ctiid.290823"
+ },
+ {
+ "url": "https://vuldb.com/?submit.475493",
+ "refsource": "MISC",
+ "name": "https://vuldb.com/?submit.475493"
+ },
+ {
+ "url": "https://github.com/fuulof/CVE/issues/1",
+ "refsource": "MISC",
+ "name": "https://github.com/fuulof/CVE/issues/1"
+ }
+ ]
+ },
+ "credits": [
+ {
+ "lang": "en",
+ "value": "thankkks (VulDB User)"
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "version": "3.1",
+ "baseScore": 6.3,
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
+ "baseSeverity": "MEDIUM"
+ },
+ {
+ "version": "3.0",
+ "baseScore": 6.3,
+ "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
+ "baseSeverity": "MEDIUM"
+ },
+ {
+ "version": "2.0",
+ "baseScore": 6.5,
+ "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P"
}
]
}
diff --git a/2025/0xxx/CVE-2025-0354.json b/2025/0xxx/CVE-2025-0354.json
new file mode 100644
index 00000000000..07873126f9c
--- /dev/null
+++ b/2025/0xxx/CVE-2025-0354.json
@@ -0,0 +1,18 @@
+{
+ "data_type": "CVE",
+ "data_format": "MITRE",
+ "data_version": "4.0",
+ "CVE_data_meta": {
+ "ID": "CVE-2025-0354",
+ "ASSIGNER": "cve@mitre.org",
+ "STATE": "RESERVED"
+ },
+ "description": {
+ "description_data": [
+ {
+ "lang": "eng",
+ "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ }
+ ]
+ }
+}
\ No newline at end of file
diff --git a/2025/0xxx/CVE-2025-0355.json b/2025/0xxx/CVE-2025-0355.json
new file mode 100644
index 00000000000..8a464871869
--- /dev/null
+++ b/2025/0xxx/CVE-2025-0355.json
@@ -0,0 +1,18 @@
+{
+ "data_type": "CVE",
+ "data_format": "MITRE",
+ "data_version": "4.0",
+ "CVE_data_meta": {
+ "ID": "CVE-2025-0355",
+ "ASSIGNER": "cve@mitre.org",
+ "STATE": "RESERVED"
+ },
+ "description": {
+ "description_data": [
+ {
+ "lang": "eng",
+ "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ }
+ ]
+ }
+}
\ No newline at end of file
diff --git a/2025/0xxx/CVE-2025-0356.json b/2025/0xxx/CVE-2025-0356.json
new file mode 100644
index 00000000000..2fff3e9f11a
--- /dev/null
+++ b/2025/0xxx/CVE-2025-0356.json
@@ -0,0 +1,18 @@
+{
+ "data_type": "CVE",
+ "data_format": "MITRE",
+ "data_version": "4.0",
+ "CVE_data_meta": {
+ "ID": "CVE-2025-0356",
+ "ASSIGNER": "cve@mitre.org",
+ "STATE": "RESERVED"
+ },
+ "description": {
+ "description_data": [
+ {
+ "lang": "eng",
+ "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ }
+ ]
+ }
+}
\ No newline at end of file
diff --git a/2025/20xxx/CVE-2025-20033.json b/2025/20xxx/CVE-2025-20033.json
index 78288ff6b5f..d7e806bbfbf 100644
--- a/2025/20xxx/CVE-2025-20033.json
+++ b/2025/20xxx/CVE-2025-20033.json
@@ -1,17 +1,156 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-20033",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "responsibledisclosure@mattermost.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "Mattermost versions 10.2.0, 9.11.x <= 9.11.5, 10.0.x <= 10.0.3, 10.1.x <= 10.1.3 fail to properly validate post types, which allows attackers to deny service to users with the sysconsole_read_plugins permission via creating a post with the custom_pl_notification type and specific props."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-1287: Improper Validation of Specified Type of Input",
+ "cweId": "CWE-1287"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "Mattermost",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "Mattermost",
+ "version": {
+ "version_data": [
+ {
+ "version_value": "not down converted",
+ "x_cve_json_5_version_data": {
+ "versions": [
+ {
+ "status": "affected",
+ "version": "10.2.0"
+ },
+ {
+ "lessThanOrEqual": "9.11.5",
+ "status": "affected",
+ "version": "9.11.0",
+ "versionType": "semver"
+ },
+ {
+ "lessThanOrEqual": "10.0.3",
+ "status": "affected",
+ "version": "10.0.0",
+ "versionType": "semver"
+ },
+ {
+ "lessThanOrEqual": "10.1.3",
+ "status": "affected",
+ "version": "10.1.0",
+ "versionType": "semver"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.3.0"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.2.1"
+ },
+ {
+ "status": "unaffected",
+ "version": "9.11.6"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.0.4"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.1.4"
+ }
+ ],
+ "defaultStatus": "unaffected"
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://mattermost.com/security-updates",
+ "refsource": "MISC",
+ "name": "https://mattermost.com/security-updates"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "MMSA-2024-00396",
+ "defect": [
+ "https://mattermost.atlassian.net/browse/MM-61296"
+ ],
+ "discovery": "EXTERNAL"
+ },
+ "solution": [
+ {
+ "lang": "en",
+ "supportingMedia": [
+ {
+ "base64": false,
+ "type": "text/html",
+ "value": "Update Mattermost to versions 10.3.0, 10.2.1, 9.11.6, 10.0.4, 10.1.4 or higher.
"
+ }
+ ],
+ "value": "Update Mattermost to versions 10.3.0, 10.2.1, 9.11.6, 10.0.4, 10.1.4 or higher."
+ }
+ ],
+ "credits": [
+ {
+ "lang": "en",
+ "value": "c0rydoras (c0rydoras)"
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "attackComplexity": "LOW",
+ "attackVector": "NETWORK",
+ "availabilityImpact": "LOW",
+ "baseScore": 4.3,
+ "baseSeverity": "MEDIUM",
+ "confidentialityImpact": "NONE",
+ "integrityImpact": "NONE",
+ "privilegesRequired": "LOW",
+ "scope": "UNCHANGED",
+ "userInteraction": "NONE",
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
+ "version": "3.1"
}
]
}
diff --git a/2025/22xxx/CVE-2025-22445.json b/2025/22xxx/CVE-2025-22445.json
index 1a72da6d3a6..7771427cfe7 100644
--- a/2025/22xxx/CVE-2025-22445.json
+++ b/2025/22xxx/CVE-2025-22445.json
@@ -1,17 +1,124 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22445",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "responsibledisclosure@mattermost.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-754: Improper Check for Unusual or Exceptional Conditions",
+ "cweId": "CWE-754"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "Mattermost",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "Mattermost",
+ "version": {
+ "version_data": [
+ {
+ "version_value": "not down converted",
+ "x_cve_json_5_version_data": {
+ "versions": [
+ {
+ "lessThanOrEqual": "10.2.*",
+ "status": "affected",
+ "version": "10.0.*",
+ "versionType": "semver"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.3.0"
+ }
+ ],
+ "defaultStatus": "unaffected"
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://mattermost.com/security-updates",
+ "refsource": "MISC",
+ "name": "https://mattermost.com/security-updates"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "MMSA-2024-00400",
+ "defect": [
+ "https://mattermost.atlassian.net/browse/MM-61469"
+ ],
+ "discovery": "EXTERNAL"
+ },
+ "solution": [
+ {
+ "lang": "en",
+ "supportingMedia": [
+ {
+ "base64": false,
+ "type": "text/html",
+ "value": "Update Mattermost to versions 10.3.0 or higher.
"
+ }
+ ],
+ "value": "Update Mattermost to versions 10.3.0 or higher."
+ }
+ ],
+ "credits": [
+ {
+ "lang": "en",
+ "value": "Leandro Chaves (brdoors3)"
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "attackComplexity": "LOW",
+ "attackVector": "NETWORK",
+ "availabilityImpact": "NONE",
+ "baseScore": 3.5,
+ "baseSeverity": "LOW",
+ "confidentialityImpact": "LOW",
+ "integrityImpact": "NONE",
+ "privilegesRequired": "LOW",
+ "scope": "UNCHANGED",
+ "userInteraction": "REQUIRED",
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",
+ "version": "3.1"
}
]
}
diff --git a/2025/22xxx/CVE-2025-22449.json b/2025/22xxx/CVE-2025-22449.json
index adafa47cbce..fe8271105f5 100644
--- a/2025/22xxx/CVE-2025-22449.json
+++ b/2025/22xxx/CVE-2025-22449.json
@@ -1,17 +1,128 @@
{
+ "data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
- "data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2025-22449",
- "ASSIGNER": "cve@mitre.org",
- "STATE": "RESERVED"
+ "ASSIGNER": "responsibledisclosure@mattermost.com",
+ "STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
- "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+ "value": "Mattermost versions 9.11.x <= 9.11.5 fail to enforce invite permissions, which allows team admins, with no permission to invite users to their team, to invite users by updating the \"allow_open_invite\" field via making their team public."
+ }
+ ]
+ },
+ "problemtype": {
+ "problemtype_data": [
+ {
+ "description": [
+ {
+ "lang": "eng",
+ "value": "CWE-863: Incorrect Authorization",
+ "cweId": "CWE-863"
+ }
+ ]
+ }
+ ]
+ },
+ "affects": {
+ "vendor": {
+ "vendor_data": [
+ {
+ "vendor_name": "Mattermost",
+ "product": {
+ "product_data": [
+ {
+ "product_name": "Mattermost",
+ "version": {
+ "version_data": [
+ {
+ "version_value": "not down converted",
+ "x_cve_json_5_version_data": {
+ "versions": [
+ {
+ "lessThanOrEqual": "9.11.5",
+ "status": "affected",
+ "version": "9.11.0",
+ "versionType": "semver"
+ },
+ {
+ "status": "unaffected",
+ "version": "10.3.0"
+ },
+ {
+ "status": "unaffected",
+ "version": "9.11.6"
+ }
+ ],
+ "defaultStatus": "unaffected"
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ }
+ ]
+ }
+ },
+ "references": {
+ "reference_data": [
+ {
+ "url": "https://mattermost.com/security-updates",
+ "refsource": "MISC",
+ "name": "https://mattermost.com/security-updates"
+ }
+ ]
+ },
+ "generator": {
+ "engine": "Vulnogram 0.2.0"
+ },
+ "source": {
+ "advisory": "MMSA-2024-00378",
+ "defect": [
+ "https://mattermost.atlassian.net/browse/MM-59539"
+ ],
+ "discovery": "EXTERNAL"
+ },
+ "solution": [
+ {
+ "lang": "en",
+ "supportingMedia": [
+ {
+ "base64": false,
+ "type": "text/html",
+ "value": "Update Mattermost to versions 10.3.0, 9.11.6 or higher.
"
+ }
+ ],
+ "value": "Update Mattermost to versions 10.3.0, 9.11.6 or higher."
+ }
+ ],
+ "credits": [
+ {
+ "lang": "en",
+ "value": "omar ahmed (omar-ahmed)"
+ }
+ ],
+ "impact": {
+ "cvss": [
+ {
+ "attackComplexity": "LOW",
+ "attackVector": "NETWORK",
+ "availabilityImpact": "NONE",
+ "baseScore": 3.8,
+ "baseSeverity": "LOW",
+ "confidentialityImpact": "LOW",
+ "integrityImpact": "LOW",
+ "privilegesRequired": "HIGH",
+ "scope": "UNCHANGED",
+ "userInteraction": "NONE",
+ "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
+ "version": "3.1"
}
]
}