diff --git a/CVE-2024/CVE-2024-237xx/CVE-2024-23755.json b/CVE-2024/CVE-2024-237xx/CVE-2024-23755.json new file mode 100644 index 00000000000..c28b752c7d8 --- /dev/null +++ b/CVE-2024/CVE-2024-237xx/CVE-2024-23755.json @@ -0,0 +1,32 @@ +{ + "id": "CVE-2024-23755", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-03-23T22:15:07.827", + "lastModified": "2024-03-23T22:15:07.827", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "ClickUp Desktop before 3.3.77 on macOS and Windows allows code injection because of specific Electron Fuses. There is inadequate protection against code injection through settings such as RunAsNode." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://clickup.com/security/disclosures", + "source": "cve@mitre.org" + }, + { + "url": "https://clickup.com/terms/security-policy", + "source": "cve@mitre.org" + }, + { + "url": "https://www.electronjs.org/blog/statement-run-as-node-cves", + "source": "cve@mitre.org" + }, + { + "url": "https://www.electronjs.org/docs/latest/tutorial/fuses", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index 42c61ae313f..059e93f8ada 100644 --- a/README.md +++ b/README.md @@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-03-23T21:00:38.616741+00:00 +2024-03-23T23:00:38.361033+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-03-23T19:15:07.283000+00:00 +2024-03-23T22:15:07.827000+00:00 ``` ### Last Data Feed Release @@ -29,14 +29,14 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -242492 +242493 ``` ### CVEs added in the last Commit Recently added CVEs: `1` -* [CVE-2024-1603](CVE-2024/CVE-2024-16xx/CVE-2024-1603.json) (`2024-03-23T19:15:07.283`) +* [CVE-2024-23755](CVE-2024/CVE-2024-237xx/CVE-2024-23755.json) (`2024-03-23T22:15:07.827`) ### CVEs modified in the last Commit diff --git a/_state.csv b/_state.csv index 7ad1576d5dc..91a82c7998d 100644 --- a/_state.csv +++ b/_state.csv @@ -238911,7 +238911,7 @@ CVE-2024-1591,0,0,813b185516fa7310825023c3e019d8a3dad8db3ac6e030a92367a91ad355f3 CVE-2024-1592,0,0,4582ff945ad5ca026cbf9802fe1ff930654543e6af8959ddb0064a96f357fa86,2024-03-04T13:58:23.447000 CVE-2024-1595,0,0,0ac9aed2c4ed6b9e7bc181d6ab55412b8033a5bfcbc541a4a4b602392614e428,2024-03-01T14:04:26.010000 CVE-2024-1597,0,0,dad3e119f3d700a1c715023d3b907f7acb417c1af7c66fb952db74c56577622b,2024-03-23T03:15:10.860000 -CVE-2024-1603,1,1,952f483fd5045cc6ef3b431b5e49fa28e7bc03b6b8a8a49239c826763e3d1862,2024-03-23T19:15:07.283000 +CVE-2024-1603,0,0,952f483fd5045cc6ef3b431b5e49fa28e7bc03b6b8a8a49239c826763e3d1862,2024-03-23T19:15:07.283000 CVE-2024-1604,0,0,5eb6bfa2b690cdc5042b3cd6683eec4697c9011ce1615c69d454ffb962b9e2b0,2024-03-18T12:38:25.490000 CVE-2024-1605,0,0,7074df8750d7a162d5543d10d5434be9d2e408e307c5952acb4cd8e797b0b6be,2024-03-18T12:38:25.490000 CVE-2024-1606,0,0,c36cce5ef22cd77fc10abd764d2af4d1af3e80b0452c270d3845af04c4c46ba6,2024-03-18T12:38:25.490000 @@ -240566,6 +240566,7 @@ CVE-2024-23749,0,0,e489f7636c813784a61d3812299289346709b8bf63acb59822c186709b469 CVE-2024-23750,0,0,8e012c8bf46e4d6b122cd9676a67ed8063eceaae10c8b41283586e2acd25aff1,2024-01-29T16:51:14.573000 CVE-2024-23751,0,0,f4277632a799f5e0167c42d856d852fb64898f90e4d81aec065a43806c32cb6a,2024-01-29T15:06:44.003000 CVE-2024-23752,0,0,18d704b9462928669577bd2ecf8e771bfdc29bdedea9912638fd3f521668a073,2024-01-29T19:27:17.040000 +CVE-2024-23755,1,1,6e502978620153ab3d7cca2efc515241b8c0c6fd3bf1d5d59ca48e0026427b8c,2024-03-23T22:15:07.827000 CVE-2024-23756,0,0,ad98c26cac3e251d6e147a06061ab8f37933ff482c3e1fc10e9847ddd0a56975,2024-02-15T16:01:08.870000 CVE-2024-23758,0,0,0b90af0eb87a8b48149c5b2c24a267ebd8f5a25fb833966d160033fff9e77828,2024-02-22T19:07:37.840000 CVE-2024-23759,0,0,73fe4ef6829a19943e815065d62e01eb8bcfa2b42e847a75f95d5c33c8cd1503,2024-02-15T04:49:02.133000