From ba310e726b3af6cbf7b7c89d31620d615ad47e7e Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 3 Jun 2025 10:00:38 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2024/36xxx/CVE-2024-36486.json | 78 ++++++++++++++++++++++++++++-- 2024/52xxx/CVE-2024-52561.json | 78 ++++++++++++++++++++++++++++-- 2024/54xxx/CVE-2024-54189.json | 78 ++++++++++++++++++++++++++++-- 2025/31xxx/CVE-2025-31359.json | 78 ++++++++++++++++++++++++++++-- 2025/4xxx/CVE-2025-4392.json | 86 ++++++++++++++++++++++++++++++++-- 2025/5xxx/CVE-2025-5137.json | 5 ++ 2025/5xxx/CVE-2025-5520.json | 18 +++++++ 2025/5xxx/CVE-2025-5521.json | 18 +++++++ 2025/5xxx/CVE-2025-5522.json | 18 +++++++ 2025/5xxx/CVE-2025-5523.json | 18 +++++++ 10 files changed, 455 insertions(+), 20 deletions(-) create mode 100644 2025/5xxx/CVE-2025-5520.json create mode 100644 2025/5xxx/CVE-2025-5521.json create mode 100644 2025/5xxx/CVE-2025-5522.json create mode 100644 2025/5xxx/CVE-2025-5523.json diff --git a/2024/36xxx/CVE-2024-36486.json b/2024/36xxx/CVE-2024-36486.json index c0908149013..014121264d0 100644 --- a/2024/36xxx/CVE-2024-36486.json +++ b/2024/36xxx/CVE-2024-36486.json @@ -1,17 +1,87 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-36486", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "talos-cna@cisco.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A privilege escalation vulnerability exists in the virtual machine archive restoration functionality of Parallels Desktop for Mac version 20.1.1 (55740). When an archived virtual machine is restored, the prl_vmarchiver tool decompresses the file and writes the content back to its original location using root privileges. An attacker can exploit this process by using a hard link to write to an arbitrary file, potentially resulting in privilege escalation." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-62: UNIX Hard Link", + "cweId": "CWE-62" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Parallels", + "product": { + "product_data": [ + { + "product_name": "Parallels Desktop for Mac", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "version 20.1.1 (55740)" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2126", + "refsource": "MISC", + "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2126" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Discovered by KPC of Cisco Talos." + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH", + "baseScore": 7.8, + "baseSeverity": "HIGH" } ] } diff --git a/2024/52xxx/CVE-2024-52561.json b/2024/52xxx/CVE-2024-52561.json index 32bc475ef44..de5f08d3a9f 100644 --- a/2024/52xxx/CVE-2024-52561.json +++ b/2024/52xxx/CVE-2024-52561.json @@ -1,17 +1,87 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-52561", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "talos-cna@cisco.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is deleted, a root service verifies and modifies the ownership of the snapshot files. By using a symlink, an attacker can change the ownership of files owned by root to a lower-privilege user, potentially leading to privilege escalation." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-708: Incorrect Ownership Assignment", + "cweId": "CWE-708" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Parallels", + "product": { + "product_data": [ + { + "product_name": "Parallels Desktop for Mac", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "version 20.1.1 (55740)" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123", + "refsource": "MISC", + "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2123" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Discovered by KPC of Cisco Talos." + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH", + "baseScore": 7.8, + "baseSeverity": "HIGH" } ] } diff --git a/2024/54xxx/CVE-2024-54189.json b/2024/54xxx/CVE-2024-54189.json index 280484d9bd7..397a997932d 100644 --- a/2024/54xxx/CVE-2024-54189.json +++ b/2024/54xxx/CVE-2024-54189.json @@ -1,17 +1,87 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-54189", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "talos-cna@cisco.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A privilege escalation vulnerability exists in the Snapshot functionality of Parallels Desktop for Mac version 20.1.1 (build 55740). When a snapshot of a virtual machine is taken, a root service writes to a file owned by a normal user. By using a hard link, an attacker can write to an arbitrary file, potentially leading to privilege escalation." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-62: UNIX Hard Link", + "cweId": "CWE-62" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Parallels", + "product": { + "product_data": [ + { + "product_name": "Parallels Desktop for Mac", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "version 20.1.1 (55740)" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2124", + "refsource": "MISC", + "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-2124" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Discovered by KPC of Cisco Talos." + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH", + "baseScore": 7.8, + "baseSeverity": "HIGH" } ] } diff --git a/2025/31xxx/CVE-2025-31359.json b/2025/31xxx/CVE-2025-31359.json index 06053f29b41..36a560b7c28 100644 --- a/2025/31xxx/CVE-2025-31359.json +++ b/2025/31xxx/CVE-2025-31359.json @@ -1,17 +1,87 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2025-31359", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "talos-cna@cisco.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A directory traversal vulnerability exists in the PVMP package unpacking functionality of Parallels Desktop for Mac version 20.2.2 (55879). This vulnerability can be exploited by an attacker to write to arbitrary files, potentially leading to privilege escalation." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", + "cweId": "CWE-22" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Parallels", + "product": { + "product_data": [ + { + "product_name": "Parallels Desktop for Mac", + "version": { + "version_data": [ + { + "version_affected": "=", + "version_value": "20.2.2 (55879)" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2160", + "refsource": "MISC", + "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2025-2160" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Discovered by KPC of Cisco Talos." + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH", + "baseScore": 8.8, + "baseSeverity": "HIGH" } ] } diff --git a/2025/4xxx/CVE-2025-4392.json b/2025/4xxx/CVE-2025-4392.json index 8696ab966cb..f7fcc2cde93 100644 --- a/2025/4xxx/CVE-2025-4392.json +++ b/2025/4xxx/CVE-2025-4392.json @@ -1,17 +1,95 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2025-4392", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@wordfence.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The Shared Files \u2013 Frontend File Upload Form & Secure File Sharing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via html File uploads in all versions up to, and including, 1.7.48 due to insufficient input sanitization and output escaping within the sanitize_file() function. This makes it possible for unauthenticated attackers to bypass the plugin\u2019s MIME-only checks and inject arbitrary web scripts in pages that will execute whenever a user accesses the html file." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", + "cweId": "CWE-79" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "anssilaitila", + "product": { + "product_data": [ + { + "product_name": "Shared Files \u2013 Frontend File Upload Form & Secure File Sharing", + "version": { + "version_data": [ + { + "version_affected": "<=", + "version_name": "*", + "version_value": "1.7.48" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/469a9c8a-0708-4c93-99d8-e9157a1f91f5?source=cve", + "refsource": "MISC", + "name": "https://www.wordfence.com/threat-intel/vulnerabilities/id/469a9c8a-0708-4c93-99d8-e9157a1f91f5?source=cve" + }, + { + "url": "https://github.com/anssilaitila/shared-files/blob/master/admin/class-sf-admin-allow-more-file-types.php", + "refsource": "MISC", + "name": "https://github.com/anssilaitila/shared-files/blob/master/admin/class-sf-admin-allow-more-file-types.php" + }, + { + "url": "https://wordpress.org/plugins/shared-files/#developers", + "refsource": "MISC", + "name": "https://wordpress.org/plugins/shared-files/#developers" + }, + { + "url": "https://plugins.trac.wordpress.org/changeset/3304053/", + "refsource": "MISC", + "name": "https://plugins.trac.wordpress.org/changeset/3304053/" + } + ] + }, + "credits": [ + { + "lang": "en", + "value": "Martin Martin" + } + ], + "impact": { + "cvss": [ + { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "baseScore": 7.2, + "baseSeverity": "HIGH" } ] } diff --git a/2025/5xxx/CVE-2025-5137.json b/2025/5xxx/CVE-2025-5137.json index 8619ca627ff..7c62eeeaf9a 100644 --- a/2025/5xxx/CVE-2025-5137.json +++ b/2025/5xxx/CVE-2025-5137.json @@ -82,6 +82,11 @@ "refsource": "MISC", "name": "https://vuldb.com/?submit.571933" }, + { + "url": "https://vuldb.com/?submit.585711", + "refsource": "MISC", + "name": "https://vuldb.com/?submit.585711" + }, { "url": "https://github.com/CyberPunk-Infernity/Advisory/issues/2", "refsource": "MISC", diff --git a/2025/5xxx/CVE-2025-5520.json b/2025/5xxx/CVE-2025-5520.json new file mode 100644 index 00000000000..ada91560508 --- /dev/null +++ b/2025/5xxx/CVE-2025-5520.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2025-5520", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2025/5xxx/CVE-2025-5521.json b/2025/5xxx/CVE-2025-5521.json new file mode 100644 index 00000000000..ea597cf0ec0 --- /dev/null +++ b/2025/5xxx/CVE-2025-5521.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2025-5521", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2025/5xxx/CVE-2025-5522.json b/2025/5xxx/CVE-2025-5522.json new file mode 100644 index 00000000000..a9c1c9eedf0 --- /dev/null +++ b/2025/5xxx/CVE-2025-5522.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2025-5522", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2025/5xxx/CVE-2025-5523.json b/2025/5xxx/CVE-2025-5523.json new file mode 100644 index 00000000000..9a9529b61e7 --- /dev/null +++ b/2025/5xxx/CVE-2025-5523.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2025-5523", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file