From 48dc8fd5cb62df29d9bc9b4806c1b3ee7d3d7312 Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Thu, 18 Apr 2024 08:03:28 +0000 Subject: [PATCH] Auto-Update: 2024-04-18T08:00:38.003129+00:00 --- CVE-2021/CVE-2021-205xx/CVE-2021-20599.json | 36 +++++++++++++++++++-- README.md | 22 +++---------- _state.csv | 28 ++++++++-------- 3 files changed, 52 insertions(+), 34 deletions(-) diff --git a/CVE-2021/CVE-2021-205xx/CVE-2021-20599.json b/CVE-2021/CVE-2021-205xx/CVE-2021-20599.json index daae8b4f83d..004db1d3c69 100644 --- a/CVE-2021/CVE-2021-205xx/CVE-2021-20599.json +++ b/CVE-2021/CVE-2021-205xx/CVE-2021-20599.json @@ -2,12 +2,12 @@ "id": "CVE-2021-20599", "sourceIdentifier": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", "published": "2021-10-14T15:15:08.827", - "lastModified": "2022-10-14T17:15:10.033", + "lastModified": "2024-04-18T06:15:06.627", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", - "value": "Cleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions \"26\" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU all versions allows a remote unauthenticated attacker to login to a target CPU module by obtaining credentials other than password." + "value": "Cleartext Transmission of Sensitive InformationCleartext transmission of sensitive information vulnerability in MELSEC iQ-R series Safety CPU R08/16/32/120SFCPU firmware versions \"26\" and prior and MELSEC iQ-R series SIL2 Process CPU R08/16/32/120PSFCPU firmware versions \"11\" and prior allows a remote unauthenticated attacker to login to a target CPU module by obtaining credentials other than password." }, { "lang": "es", @@ -35,6 +35,26 @@ }, "exploitabilityScore": 3.9, "impactScore": 3.6 + }, + { + "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE", + "baseScore": 9.1, + "baseSeverity": "CRITICAL" + }, + "exploitabilityScore": 3.9, + "impactScore": 5.2 } ], "cvssMetricV2": [ @@ -65,8 +85,18 @@ }, "weaknesses": [ { - "source": "nvd@nist.gov", + "source": "Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp", "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-319" + } + ] + }, + { + "source": "nvd@nist.gov", + "type": "Secondary", "description": [ { "lang": "en", diff --git a/README.md b/README.md index 428889c2fed..16a4faae47a 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-04-18T06:00:30.437111+00:00 +2024-04-18T08:00:38.003129+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-04-18T05:15:48.343000+00:00 +2024-04-18T06:15:06.627000+00:00 ``` ### Last Data Feed Release @@ -38,27 +38,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `3` +Recently added CVEs: `0` -- [CVE-2024-1426](CVE-2024/CVE-2024-14xx/CVE-2024-1426.json) (`2024-04-18T05:15:47.787`) -- [CVE-2024-1429](CVE-2024/CVE-2024-14xx/CVE-2024-1429.json) (`2024-04-18T05:15:48.010`) -- [CVE-2024-2729](CVE-2024/CVE-2024-27xx/CVE-2024-2729.json) (`2024-04-18T05:15:48.343`) ### CVEs modified in the last Commit -Recently modified CVEs: `10` +Recently modified CVEs: `1` -- [CVE-2022-38710](CVE-2022/CVE-2022-387xx/CVE-2022-38710.json) (`2024-04-18T04:15:08.367`) -- [CVE-2023-40546](CVE-2023/CVE-2023-405xx/CVE-2023-40546.json) (`2024-04-18T04:15:09.200`) -- [CVE-2023-40547](CVE-2023/CVE-2023-405xx/CVE-2023-40547.json) (`2024-04-18T04:15:09.433`) -- [CVE-2023-40548](CVE-2023/CVE-2023-405xx/CVE-2023-40548.json) (`2024-04-18T04:15:09.613`) -- [CVE-2023-40549](CVE-2023/CVE-2023-405xx/CVE-2023-40549.json) (`2024-04-18T04:15:09.767`) -- [CVE-2023-40550](CVE-2023/CVE-2023-405xx/CVE-2023-40550.json) (`2024-04-18T05:15:47.457`) -- [CVE-2023-40551](CVE-2023/CVE-2023-405xx/CVE-2023-40551.json) (`2024-04-18T05:15:47.683`) -- [CVE-2023-6240](CVE-2023/CVE-2023-62xx/CVE-2023-6240.json) (`2024-04-18T04:15:09.903`) -- [CVE-2024-28834](CVE-2024/CVE-2024-288xx/CVE-2024-28834.json) (`2024-04-18T05:15:48.167`) -- [CVE-2024-28835](CVE-2024/CVE-2024-288xx/CVE-2024-28835.json) (`2024-04-18T05:15:48.263`) +- [CVE-2021-20599](CVE-2021/CVE-2021-205xx/CVE-2021-20599.json) (`2024-04-18T06:15:06.627`) ## Download and Usage diff --git a/_state.csv b/_state.csv index 7ef0f929c29..9188275c8f0 100644 --- a/_state.csv +++ b/_state.csv @@ -166832,7 +166832,7 @@ CVE-2021-20595,0,0,54091619e9a973b57aaa95e99df009c2c6c78df845b1f1f4269becb97f96e CVE-2021-20596,0,0,a0ff9fa4a237f9a78322aa815369f8873c6b92bf575b4824cca00d26de4f2d97,2021-08-02T14:25:16.287000 CVE-2021-20597,0,0,47bb071e2ba107e2cdb7a8730ebd52a20ab8b00118532bb2721e3af8e4e3e92b,2022-10-14T18:15:14.477000 CVE-2021-20598,0,0,8906f45643b6277fa9f592c088e169b719c9855f3a65a41e28e980eeda63213f,2021-08-27T13:10:04.973000 -CVE-2021-20599,0,0,410f2228cd1da4b2801168f58ea92fafcd99aa46484ad826edccebdefabc7bc3,2022-10-14T17:15:10.033000 +CVE-2021-20599,0,1,e5627ca58794178fcd969f7ef02a30018dc48154c890a9b15e17156856bb881c,2024-04-18T06:15:06.627000 CVE-2021-2060,0,0,61606dcd34403072c3a5917747b918eb39dbd0b36f6f004b94aa44c2f142691f,2022-01-04T17:08:34.690000 CVE-2021-20600,0,0,3cb79a977d387d68bab143a33be703b13655f1423d037cb679749908257af30e,2023-05-16T22:50:39.020000 CVE-2021-20601,0,0,495b71279c777c98b13a1141b468cb5a33e8e53888a2515f4d6e890bcce5e8c8,2021-11-29T16:20:24.440000 @@ -204414,7 +204414,7 @@ CVE-2022-38705,0,0,58464e4464999c640433dc31f1c8330cb2c23deda3c39c084ec5a974591fb CVE-2022-38707,0,0,fb094ae991a56c0c795b92715485f656ef83ff68d78429d79cc4722b4bfcb2f3,2023-05-11T14:17:11.117000 CVE-2022-38708,0,0,aecadae88af05d1c96a0043887df11993569751eabbe6505af244121f12692eb,2023-11-07T03:50:11.823000 CVE-2022-38709,0,0,616ef4c5116d0ca02f859e8998eb5d388f8e5de2ab264c5d1d07d5ffb383d42a,2022-10-14T20:30:32.833000 -CVE-2022-38710,0,1,8fd865249cbe0f3db6985db431e4a66fbd1ea9cab902273079fe24875b479ec3,2024-04-18T04:15:08.367000 +CVE-2022-38710,0,0,8fd865249cbe0f3db6985db431e4a66fbd1ea9cab902273079fe24875b479ec3,2024-04-18T04:15:08.367000 CVE-2022-38712,0,0,2968f98ec20660f8d607a95022bd2b0304487011cc0b65d14409d212b1bc1a61,2022-11-04T15:16:45.807000 CVE-2022-38714,0,0,b47899d93b52f94a55f4a4d167a2f32243af9e6db459e546eaafc429ba85cd53,2024-02-12T20:39:15.693000 CVE-2022-38715,0,0,5de8a4f252f0910b5c5dc10fb8e791c9e463be29e0b0fe4e355679f8f6a84023,2023-02-02T17:22:07.650000 @@ -228933,13 +228933,13 @@ CVE-2023-40541,0,0,22a9285aa1b8eaf9b78df89c2cbb56f1e6618929d807faee9dc240a09c8ba CVE-2023-40542,0,0,11b6cee368035492cc0902cbd689ed768c381493a72ea99cc6412d219fc6a963,2023-10-17T19:43:55.697000 CVE-2023-40544,0,0,8edafee03220c010d1be42f0f88433974482550243d48b064788fcb74f868b01,2024-02-12T16:43:42.320000 CVE-2023-40545,0,0,9bca2c73be74af7f189b3862ba8d7799cfe8ca7403c861883fba27fbc72753b2,2024-02-13T21:08:23.400000 -CVE-2023-40546,0,1,4866c43ea4898f06f52ef524a0a3fb5c0213f148442d17ded71ddc4911bf8749,2024-04-18T04:15:09.200000 -CVE-2023-40547,0,1,8aab6f84edc9f9dc32f6532ebc70e27ea3cb07f9d21c1fe7e924373b55fe863c,2024-04-18T04:15:09.433000 -CVE-2023-40548,0,1,2b9e5a78959e1ed315d750563c8c1ee0baeaafb403ab45a8bd52b073c6d6a9de,2024-04-18T04:15:09.613000 -CVE-2023-40549,0,1,03e9c13b7bbb6fc70370a0d177087a7a8d3fe07aa37b39fbddaee909bf94d8ad,2024-04-18T04:15:09.767000 +CVE-2023-40546,0,0,4866c43ea4898f06f52ef524a0a3fb5c0213f148442d17ded71ddc4911bf8749,2024-04-18T04:15:09.200000 +CVE-2023-40547,0,0,8aab6f84edc9f9dc32f6532ebc70e27ea3cb07f9d21c1fe7e924373b55fe863c,2024-04-18T04:15:09.433000 +CVE-2023-40548,0,0,2b9e5a78959e1ed315d750563c8c1ee0baeaafb403ab45a8bd52b073c6d6a9de,2024-04-18T04:15:09.613000 +CVE-2023-40549,0,0,03e9c13b7bbb6fc70370a0d177087a7a8d3fe07aa37b39fbddaee909bf94d8ad,2024-04-18T04:15:09.767000 CVE-2023-4055,0,0,a76fc1fa0e45973f400a49513a2db89a2627bd4fbf5c01947ac1c4f676cd8aeb,2023-08-09T21:15:11.820000 -CVE-2023-40550,0,1,bfeb5df69784ba87bb6fda2a8cc7a899f76fcea771daae51bb880e31a4aaa506,2024-04-18T05:15:47.457000 -CVE-2023-40551,0,1,e7efd23f8be04e5539e312ca5ca54178e058d43d16feaf259fcbf0cc58ea27ec,2024-04-18T05:15:47.683000 +CVE-2023-40550,0,0,bfeb5df69784ba87bb6fda2a8cc7a899f76fcea771daae51bb880e31a4aaa506,2024-04-18T05:15:47.457000 +CVE-2023-40551,0,0,e7efd23f8be04e5539e312ca5ca54178e058d43d16feaf259fcbf0cc58ea27ec,2024-04-18T05:15:47.683000 CVE-2023-40552,0,0,c2622408aa36bd78f5e5430d30ee7193e6af4e034508bc1f26ac2385010c374f,2023-09-08T21:27:56.877000 CVE-2023-40553,0,0,f75c02cf1e791ac55e3a969e16572991fc3e66a0701028da1fb8fc02a85ffa08,2023-09-08T21:22:31.697000 CVE-2023-40554,0,0,a92d3a47fe3c14157d269f90a7243f921fd8d94afe574f04f0e5826a46692480,2023-09-08T21:22:23.213000 @@ -237451,7 +237451,7 @@ CVE-2023-6235,0,0,a6ac280c87945b3531740d074fb7f02bafe0fd764523c0dc65a87b2c28ffc2 CVE-2023-6236,0,0,c746200290431ebe52c336c97f229880dd537f5eeffbab0aaed59ac6b0e48cbf,2024-04-10T13:23:38.787000 CVE-2023-6238,0,0,7332193d1454e7405dd3270d745aa7f762b874d0f84c51906784a637ceb0212d,2024-02-07T00:15:55.240000 CVE-2023-6239,0,0,6ce1b576ddd7c9169d0997e75fde3efd606153edbf61fba1116d733c98bbf90d,2023-12-04T19:06:20.213000 -CVE-2023-6240,0,1,9f82f7462b3110d2d963e8af8e7c4ae7d74cf243233e0832a0fe614b539f6ea4,2024-04-18T04:15:09.903000 +CVE-2023-6240,0,0,9f82f7462b3110d2d963e8af8e7c4ae7d74cf243233e0832a0fe614b539f6ea4,2024-04-18T04:15:09.903000 CVE-2023-6241,0,0,0b049661e1c37f8f2850456643594af3b5520aab1f0e1861b7e81cf1492260e4,2024-03-04T13:58:23.447000 CVE-2023-6242,0,0,6d69e67cbd815bd255adaa5950d4591e05a6bb1ed9a7b28e0dca7e7af1589ec7,2024-01-18T18:13:53.840000 CVE-2023-6244,0,0,738eadbc72f60cd69becd30725fdeeb14cb3b5c05736eda414dcb1a46832ac22,2024-01-18T16:13:00.490000 @@ -239408,9 +239408,9 @@ CVE-2024-1422,0,0,2267ebdeae44f32d1c6ec66b03449193e62b83e6330bcf0a397e6b29ad3e9c CVE-2024-1423,0,0,6e27005a2bc9cac940b744a08e145c97df4169105a5c6ac980f63cd4cfdbe785,2024-02-27T15:15:07.460000 CVE-2024-1424,0,0,e4ad8b68f1fbe246b31a884aab471f453604ee73fa66399cab9d94287d5c1f39,2024-04-10T13:24:00.070000 CVE-2024-1425,0,0,02a330ca28e70c5f4fd75a53f6a884cfaa02f29dea0e5d02e5dff002ed045e32,2024-02-29T13:49:29.390000 -CVE-2024-1426,1,1,8d0eb0d39adb457b309be1b4505b83c0547edf1882f39402e4f06c0b0c576258,2024-04-18T05:15:47.787000 +CVE-2024-1426,0,0,8d0eb0d39adb457b309be1b4505b83c0547edf1882f39402e4f06c0b0c576258,2024-04-18T05:15:47.787000 CVE-2024-1428,0,0,4c77834f86d069dd8ac6582c1158d4ce9778d9d2d0db6d53457b9fcb3238fd50,2024-04-08T18:48:40.217000 -CVE-2024-1429,1,1,0a0d09b81fe628d5c4db325cd537c3141787850ea1d61d9e4fc22320df56454a,2024-04-18T05:15:48.010000 +CVE-2024-1429,0,0,0a0d09b81fe628d5c4db325cd537c3141787850ea1d61d9e4fc22320df56454a,2024-04-18T05:15:48.010000 CVE-2024-1430,0,0,f6cfc2470f7007eaad290d0fa038b4243c074335d7e370b06a50f17dadfffcc6,2024-04-11T01:24:26.960000 CVE-2024-1431,0,0,7cf67afd605d8fe1fcf749b94ce48c33a9e9b76bcd3027b265851d376fc6d591,2024-04-11T01:24:27.063000 CVE-2024-1432,0,0,7c06857936221703d8d84cc04125a77b4c7320dc74aa58b2af3d56b76aee00be,2024-04-11T01:24:27.153000 @@ -243682,7 +243682,7 @@ CVE-2024-27286,0,0,dc5e3eb074fb45a698b8815c2cfdfbf8ad2c6a1a603a9be18fc4332e22258 CVE-2024-27287,0,0,d39a5a81bba12832000063f3b9581e0b7d6775f42d5ae8b4ab36f6d9201b4612,2024-03-06T21:42:48.053000 CVE-2024-27288,0,0,972b8881fdda4caea1ce2e8251f4902d5d9c956c56f59d23bb4c51d8ee2f2790,2024-03-06T21:42:48.053000 CVE-2024-27289,0,0,94a320fc3e3b519521594a16d2cd589eda8024b7301f94db72ff8831b436ae41,2024-03-06T21:42:48.053000 -CVE-2024-2729,1,1,8fc7b902c1156a09f70d6d03a2571406e46b870a4660ff4d9e490cb8766273c9,2024-04-18T05:15:48.343000 +CVE-2024-2729,0,0,8fc7b902c1156a09f70d6d03a2571406e46b870a4660ff4d9e490cb8766273c9,2024-04-18T05:15:48.343000 CVE-2024-27290,0,0,46afcd058e69ddd463d55bd6114c2bf186c2c4e4a355006dc3d58bec7a9da571,2024-03-21T12:58:51.093000 CVE-2024-27291,0,0,c4d0ad0c0399c8997dec37bc4474b8774cfe2b824eca646ed305114cc011e11b,2024-03-21T12:58:51.093000 CVE-2024-27292,0,0,d01fe4db95f9c2e2ecef918b2a428f31ae89268ce31a396edf76121b103b1264,2024-03-21T12:58:51.093000 @@ -244305,8 +244305,8 @@ CVE-2024-28816,0,0,4b9f923b99f4095b32672af0003c81bae1f3b3136774827600fae7accfedc CVE-2024-28823,0,0,d5aa89b5cdac6c3847ac374cba2a65b191e57c43dc618aabb1da571ab5b5e9dc,2024-03-11T12:47:42.653000 CVE-2024-28824,0,0,5a9476ae0fdb0520e3a986c832f5f9e27a50da5cb3aa11e06910544296f0e530,2024-03-22T12:45:36.130000 CVE-2024-2883,0,0,e66be81816608580e2e81ffcb02cca4ae9a2aa5cbea60907cc2e1d80cffbaf4a,2024-03-29T04:15:08.743000 -CVE-2024-28834,0,1,91386e6fe68de98132419bae7f584fb89f08a35334fda5f1baf244927114cd0b,2024-04-18T05:15:48.167000 -CVE-2024-28835,0,1,ed179ff9c8ac6c0a49a4fa6aca5aabe007945dc4c4ad20ab7dd2491ca4f02b05,2024-04-18T05:15:48.263000 +CVE-2024-28834,0,0,91386e6fe68de98132419bae7f584fb89f08a35334fda5f1baf244927114cd0b,2024-04-18T05:15:48.167000 +CVE-2024-28835,0,0,ed179ff9c8ac6c0a49a4fa6aca5aabe007945dc4c4ad20ab7dd2491ca4f02b05,2024-04-18T05:15:48.263000 CVE-2024-28836,0,0,ef9665bb9a0895616f82c07b3b8f93ecbb9dcd318a88906096e3fd29af01d6df,2024-04-03T12:38:04.840000 CVE-2024-28847,0,0,91e84a48bf06058e30212c2ac01ab493cb3959d3b6bfc21c8760687b856baf08,2024-03-17T22:38:29.433000 CVE-2024-28848,0,0,34495c9c0f308730fc81e42605f83951bd37f923638227e6b1f0c5438e0285ef,2024-03-21T02:52:25.197000