diff --git a/CVE-2023/CVE-2023-444xx/CVE-2023-44487.json b/CVE-2023/CVE-2023-444xx/CVE-2023-44487.json index 21b0d4cf751..53e840c04e0 100644 --- a/CVE-2023/CVE-2023-444xx/CVE-2023-44487.json +++ b/CVE-2023/CVE-2023-444xx/CVE-2023-44487.json @@ -2,8 +2,8 @@ "id": "CVE-2023-44487", "sourceIdentifier": "cve@mitre.org", "published": "2023-10-10T14:15:10.883", - "lastModified": "2025-04-12T01:00:01.957", - "vulnStatus": "Analyzed", + "lastModified": "2025-06-07T20:15:21.920", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -3882,6 +3882,10 @@ "Third Party Advisory" ] }, + { + "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ", + "source": "cve@mitre.org" + }, { "url": "https://security.gentoo.org/glsa/202311-09", "source": "cve@mitre.org", diff --git a/CVE-2024/CVE-2024-07xx/CVE-2024-0753.json b/CVE-2024/CVE-2024-07xx/CVE-2024-0753.json index be02b91d698..4c13b862d5a 100644 --- a/CVE-2024/CVE-2024-07xx/CVE-2024-0753.json +++ b/CVE-2024/CVE-2024-07xx/CVE-2024-0753.json @@ -2,7 +2,7 @@ "id": "CVE-2024-0753", "sourceIdentifier": "security@mozilla.org", "published": "2024-01-23T14:15:38.730", - "lastModified": "2025-05-30T15:15:30.190", + "lastModified": "2025-06-07T21:15:21.370", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ @@ -212,6 +212,10 @@ "Release Notes", "Vendor Advisory" ] + }, + { + "url": "https://www.youtube.com/watch?v=JjMb7Z8ak2k", + "source": "af854a3a-2127-422b-91ae-364da2661108" } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-229xx/CVE-2024-22988.json b/CVE-2024/CVE-2024-229xx/CVE-2024-22988.json index 7b81da8b0d7..50fce3679af 100644 --- a/CVE-2024/CVE-2024-229xx/CVE-2024-22988.json +++ b/CVE-2024/CVE-2024-229xx/CVE-2024-22988.json @@ -2,13 +2,13 @@ "id": "CVE-2024-22988", "sourceIdentifier": "cve@mitre.org", "published": "2024-02-23T23:15:09.623", - "lastModified": "2025-06-06T13:15:24.743", + "lastModified": "2025-06-07T21:15:21.620", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "zkteco zkbio WDMS v.8.0.5 allows an attacker to download a database backup via the /files/backup/ component because the filename is based on a predictable timestamp." + "value": "ZKteco ZKBio WDMS before 9.0.2 Build 20250526 allows an attacker to download a database backup via the /files/backup/ component because the filename is based on a predictable timestamp." }, { "lang": "es", @@ -83,6 +83,10 @@ "Third Party Advisory" ] }, + { + "url": "https://www.zkteco.com/en/Security_Bulletinsibs/12", + "source": "cve@mitre.org" + }, { "url": "https://zkteco.com", "source": "cve@mitre.org", @@ -125,6 +129,34 @@ "Third Party Advisory" ] }, + { + "url": "https://www.vicarius.io/vsociety/posts/revealing-cve-2024-22988-a-unique-dive-into-exploiting-access-control-gaps-in-zkbio-wdms-uncover-the-untold-crafted-for-beginners-with-a-rare-glimpse-into-pentesting-strategies", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] + }, + { + "url": "https://www.vicarius.io/vsociety/posts/revealing-cve-2024-22988-a-unique-dive-into-exploiting-access-control-gaps-in-zkbio-wdms-uncover-the-untold-crafted-for-beginners-with-a-rare-glimpse-into-pentesting-strategies", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] + }, + { + "url": "https://www.vicarius.io/vsociety/posts/revealing-cve-2024-22988-a-unique-dive-into-exploiting-access-control-gaps-in-zkbio-wdms-uncover-the-untold-crafted-for-beginners-with-a-rare-glimpse-into-pentesting-strategies", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] + }, + { + "url": "https://www.vicarius.io/vsociety/posts/revealing-cve-2024-22988-a-unique-dive-into-exploiting-access-control-gaps-in-zkbio-wdms-uncover-the-untold-crafted-for-beginners-with-a-rare-glimpse-into-pentesting-strategies", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] + }, { "url": "https://zkteco.com", "source": "af854a3a-2127-422b-91ae-364da2661108", diff --git a/CVE-2024/CVE-2024-555xx/CVE-2024-55585.json b/CVE-2024/CVE-2024-555xx/CVE-2024-55585.json index ba99159cb53..6ee57859851 100644 --- a/CVE-2024/CVE-2024-555xx/CVE-2024-55585.json +++ b/CVE-2024/CVE-2024-555xx/CVE-2024-55585.json @@ -2,13 +2,13 @@ "id": "CVE-2024-55585", "sourceIdentifier": "cve@mitre.org", "published": "2025-06-07T19:15:22.333", - "lastModified": "2025-06-07T19:15:22.333", + "lastModified": "2025-06-07T20:15:23.417", "vulnStatus": "Received", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access." + "value": "In the moPS App through 1.8.618, all users can access administrative API endpoints without additional authentication, resulting in unrestricted read and write access, as demonstrated by /api/v1/users/resetpassword." } ], "metrics": { @@ -60,7 +60,7 @@ "weaknesses": [ { "source": "cve@mitre.org", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", diff --git a/CVE-2025/CVE-2025-496xx/CVE-2025-49619.json b/CVE-2025/CVE-2025-496xx/CVE-2025-49619.json index c484015ed7c..7bb647f1ae1 100644 --- a/CVE-2025/CVE-2025-496xx/CVE-2025-49619.json +++ b/CVE-2025/CVE-2025-496xx/CVE-2025-49619.json @@ -2,7 +2,7 @@ "id": "CVE-2025-49619", "sourceIdentifier": "cve@mitre.org", "published": "2025-06-07T14:15:21.573", - "lastModified": "2025-06-07T14:15:21.573", + "lastModified": "2025-06-07T21:15:21.887", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -38,7 +38,7 @@ "weaknesses": [ { "source": "cve@mitre.org", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -48,6 +48,10 @@ } ], "references": [ + { + "url": "https://cristibtz.github.io/posts/CVE-2025-49619/", + "source": "cve@mitre.org" + }, { "url": "https://github.com/Skyvern-AI/skyvern/commit/db856cd8433a204c8b45979c70a4da1e119d949d", "source": "cve@mitre.org" diff --git a/README.md b/README.md index 247388aeaee..d655337b30f 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2025-06-07T20:00:18.984374+00:00 +2025-06-07T22:00:19.090594+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2025-06-07T19:15:23.200000+00:00 +2025-06-07T21:15:21.887000+00:00 ``` ### Last Data Feed Release @@ -38,18 +38,19 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `3` +Recently added CVEs: `0` -- [CVE-2024-55585](CVE-2024/CVE-2024-555xx/CVE-2024-55585.json) (`2025-06-07T19:15:22.333`) -- [CVE-2025-5839](CVE-2025/CVE-2025-58xx/CVE-2025-5839.json) (`2025-06-07T18:15:25.080`) -- [CVE-2025-5840](CVE-2025/CVE-2025-58xx/CVE-2025-5840.json) (`2025-06-07T18:15:25.320`) ### CVEs modified in the last Commit -Recently modified CVEs: `1` +Recently modified CVEs: `5` -- [CVE-2025-28073](CVE-2025/CVE-2025-280xx/CVE-2025-28073.json) (`2025-06-07T19:15:23.200`) +- [CVE-2023-44487](CVE-2023/CVE-2023-444xx/CVE-2023-44487.json) (`2025-06-07T20:15:21.920`) +- [CVE-2024-0753](CVE-2024/CVE-2024-07xx/CVE-2024-0753.json) (`2025-06-07T21:15:21.370`) +- [CVE-2024-22988](CVE-2024/CVE-2024-229xx/CVE-2024-22988.json) (`2025-06-07T21:15:21.620`) +- [CVE-2024-55585](CVE-2024/CVE-2024-555xx/CVE-2024-55585.json) (`2025-06-07T20:15:23.417`) +- [CVE-2025-49619](CVE-2025/CVE-2025-496xx/CVE-2025-49619.json) (`2025-06-07T21:15:21.887`) ## Download and Usage diff --git a/_state.csv b/_state.csv index d276246aa8a..dfaaaee1436 100644 --- a/_state.csv +++ b/_state.csv @@ -235896,7 +235896,7 @@ CVE-2023-44483,0,0,b971499cbeb4c99d461f2cc01425705ad081d48d5faaa0e5cfa491c533996 CVE-2023-44484,0,0,958fe48df29f816ed7bd34de4dd7057161c9bf53e67f5f88c174e360d7feb40e,2024-11-21T08:25:58.463000 CVE-2023-44485,0,0,1fded516443ed9d4a6dc21d78fcaff9fa6c633a261c62418d91bd847201a9be3,2024-01-02T16:15:11.810000 CVE-2023-44486,0,0,2b43d0a14e9cca4a775d6d63ef007efbe7181ff5204ebf454cdf39ffb38da42b,2024-01-02T16:15:11.897000 -CVE-2023-44487,0,0,8041fe8d8b263cd242773e3ac7d5aee71974c1098e1e179e4da0497c459869ff,2025-04-12T01:00:01.957000 +CVE-2023-44487,0,1,a72b533a6f35d5728595ff4c23170f6354e22c0bcb57d66799240512259464c3,2025-06-07T20:15:21.920000 CVE-2023-44488,0,0,6d016cc36e101208382fa39cc61bf9a8f9d2e9bfb34d377a1cb64850fe49c283,2024-11-21T08:25:59.403000 CVE-2023-4449,0,0,e25bc1172bad64592332d0ff2b60d985ca8bf0443f05933c4051807b205fefa8,2024-11-21T08:35:10.950000 CVE-2023-4450,0,0,27f28416722497acefc6891c18ba2d3c7e85c5ed65b35fd7cdcbec298d72b3e3,2024-11-21T08:35:11.120000 @@ -244834,7 +244834,7 @@ CVE-2024-0749,0,0,98db4d7383b22912c72d25e9a11cca89e626567371085ec1c858340aa042ca CVE-2024-0750,0,0,e4e4c2d0df873361e34fda7b3acf48b7fb8cc36a0f31beb030c0225132e05945,2024-11-21T08:47:17.590000 CVE-2024-0751,0,0,5001cfda4db50ad859224ea55f1a2d08da03f4a19e60f6a65009cc7c2ecde48c,2024-11-21T08:47:17.717000 CVE-2024-0752,0,0,49398ef890b0bc71a3fc55b8a5a1158c28a33768578aec3ed1ebb81a2cd54a23,2024-11-21T08:47:17.857000 -CVE-2024-0753,0,0,9448f219ab7b7914fb0ee02298705b5781bac285b4eca93575ef78792ffe7a2c,2025-05-30T15:15:30.190000 +CVE-2024-0753,0,1,1a58b87162cd73273d02bc8d819cea080f472a736a29cfd62d62be262c40e613,2025-06-07T21:15:21.370000 CVE-2024-0754,0,0,1204345e520ea51dd745fefc9d846e60884be30e12bf331db136dbba9229e3bf,2025-05-22T18:15:35.657000 CVE-2024-0755,0,0,f3c5dd8302300ce14ba82ab514c13614f3ae777207da9c5ac410ba617f24df28,2025-05-22T18:15:37.667000 CVE-2024-0756,0,0,993cb8b8fe6b06b2e129344b5fa8b12cf5cfac31df95f7db26c17acfe05fdbb7,2025-03-13T18:15:36.437000 @@ -252174,7 +252174,7 @@ CVE-2024-2297,0,0,3a62bf9d33e04a2b2a4ead4d48354328d27d50a4ecda4746840937c137d18f CVE-2024-2298,0,0,a85fa7730d2df572068f0e46cf7b1543a1326e3663c97e6671307d8012f9d6f8,2025-01-15T17:47:00.477000 CVE-2024-22983,0,0,67421dae6881b52b66d1e595c4115b2166c7d5663fda6009d63d8fcdb069daa8,2025-05-02T19:49:55.307000 CVE-2024-22984,0,0,fc6f2532d62536f57f6959754844311196ea55b6a39fbf85c7d2f459ee5381d0,2024-02-07T20:15:49.320000 -CVE-2024-22988,0,0,c36c440e4580b61405b0d6bef59bdfd4ca4e33a6daf3f8421f39950f6bad180b,2025-06-06T13:15:24.743000 +CVE-2024-22988,0,1,bf3cd2839e352a92648f411e63f2f1ff70c4419f0ad60b7025d2f24725ef57f6,2025-06-07T21:15:21.620000 CVE-2024-2299,0,0,76e1268d9e586f7e108759dfb4a3b616648fa75f57f1f685f576ecccc85b8d02,2024-11-21T09:09:27.393000 CVE-2024-2300,0,0,c92a8f4bde6838d4ec64cad2649eead9a06ac17086996316734c20573aeb6bdf,2024-11-21T09:09:27.507000 CVE-2024-2301,0,0,64adce604b0bc27e42016cdb8242b23454751df3587b599cdf9bd5fd28acf7da,2025-03-14T01:15:38.990000 @@ -276772,7 +276772,7 @@ CVE-2024-5558,0,0,27c470fd7893b831fc84cdde276205428cb613b4f465921ca99eb643164424 CVE-2024-55580,0,0,d0db8db8caa9064b5ccfd1ebfcb70a56a05a77720b165abb2a708efdd1b5b12c,2024-12-10T15:15:08.300000 CVE-2024-55581,0,0,c4461aeefe710b8127c139746d541669508c4f036fc04415a5c2df9466c650ae,2025-04-07T18:39:22.837000 CVE-2024-55582,0,0,8c7e64bb3acec7a473c6e65040db0fdec814405cb32a2dc0c98b336fe36f3523,2024-12-11T17:15:21.103000 -CVE-2024-55585,1,1,e55b333987d99242753a3f1bb78e9b11a9bd51c869bc54f6ecca988d4ffce500,2025-06-07T19:15:22.333000 +CVE-2024-55585,0,1,0f7c661ba4dfaf575227f6713aaef1b832bbfabbe5bb617576dabc535accb22b,2025-06-07T20:15:23.417000 CVE-2024-55586,0,0,925f554fe1c6418481a3cd536be7ee8d09491d59c7f2a3844aeb8009a61c81a3,2024-12-12T02:08:22.247000 CVE-2024-55587,0,0,043360c021c66dd2c5a5e7aa976c02dd7134a3fcd9d370dcc05a2b2b78d778ba,2024-12-12T17:15:11.197000 CVE-2024-5559,0,0,da875044adc3709281edfed6e696b593f02a48923f7270d2350dbdeb9c3f0186,2024-11-21T09:47:55.840000 @@ -289789,7 +289789,7 @@ CVE-2025-2806,0,0,6b6d32bab86f8065f4651aeecc3deaaa96ebe10ed3b688f80b2cc292ba9dad CVE-2025-28062,0,0,e1db63ec886621518e90774c46d7bddd3542ce52896dfe84b18e1d20b7e3c53f,2025-05-13T20:15:27.343000 CVE-2025-2807,0,0,f8faf57b374faab8743fa15c01545fe02708770c7c9d6b7c7888f61e54c92b92,2025-04-08T18:13:53.347000 CVE-2025-28072,0,0,9d11ce673db5bded08078d90348ac835537e426481654f68c0b7843b05bb341e,2025-04-28T17:38:00.493000 -CVE-2025-28073,0,1,82408d9324690047375411d776179920dcdac07099e8a2f055355c3a936db84c,2025-06-07T19:15:23.200000 +CVE-2025-28073,0,0,82408d9324690047375411d776179920dcdac07099e8a2f055355c3a936db84c,2025-06-07T19:15:23.200000 CVE-2025-28074,0,0,b02ac0f420b17ba9b67a5021fcfb3b5dd840a65b48f55cbafee10799a79ac336,2025-06-07T15:15:21.747000 CVE-2025-28076,0,0,b06de1a60b2b58a912832fcc82a776940195b8e28d482a3c11c68d9bb16af3cf,2025-04-29T13:52:28.490000 CVE-2025-2808,0,0,2d9ef6fcbe323df90c90b4e91a51bb82e8f5ef9746894b9f5e9c32273a3c6988,2025-04-08T18:13:53.347000 @@ -296388,7 +296388,7 @@ CVE-2025-4948,0,0,2d8928ecccf769064199e618193b5181fd943840af74729dd43fad03a17cb7 CVE-2025-4949,0,0,c11b53f05ae94538ba622256f90c8d8b1286550f417cb15b7dccd733b074e027,2025-05-23T07:15:21.160000 CVE-2025-4951,0,0,8d2965f90ffa46a261e1b06cd533aeb358abbd5115dc1f57a5b34acf12ab582b,2025-05-21T20:25:16.407000 CVE-2025-49599,0,0,f422e579100d81619126fdb05172f6f63b5a43123a5c3cb8a9e2e7d97f2a064c,2025-06-06T17:15:36.147000 -CVE-2025-49619,0,0,bf0f7c8454d7179447cd412b0c997e5deb3b1d48075fbe1ea3aba2a9ac170bb9,2025-06-07T14:15:21.573000 +CVE-2025-49619,0,1,668bd05025c86671edffdc13a521d6f88794f1d70ee3c0823fa2dd6aee1a1e54,2025-06-07T21:15:21.887000 CVE-2025-4963,0,0,bcea30a5657c56e720740d0c1da3f6ecccc2ea27495c62c19f4e987237e46939,2025-05-28T15:01:30.720000 CVE-2025-4964,0,0,9a4175fc819c8903aae087508d79cb283240d351bb7e4f3f9bd0bc9b58a9f683,2025-06-06T14:07:28.330000 CVE-2025-4966,0,0,8884eb97bbdf1a18517bed6dc84588ccbd4cf19bb3dff5ec3aa5d29bc4c7285b,2025-06-06T14:07:28.330000 @@ -296970,5 +296970,5 @@ CVE-2025-5814,0,0,8eaa11a12cc6d088f99ec0c5bfb996778135d981aea4d6fb1de682955c0d7f CVE-2025-5836,0,0,565d4f19453abbf56c1b4488c6be21c7ecd730624265db965143c5e82f418662,2025-06-07T14:15:22.500000 CVE-2025-5837,0,0,be29c5c9b02bd53536929c7a116921036f05804cf354e43b53d617bbaab362bd,2025-06-07T14:15:22.803000 CVE-2025-5838,0,0,ba5038c5e4544342301fefd65f16f3eb1945ebf96b386c6cbebecd735cfeddff,2025-06-07T16:15:23.440000 -CVE-2025-5839,1,1,4efb9e7f992ec0cf0b490a41765d64fdc79638a0fc7c7b695bd87786fa84522d,2025-06-07T18:15:25.080000 -CVE-2025-5840,1,1,6060b28c44367562648dda64a70c474fb07a81415250a659e2cb863608a79fe9,2025-06-07T18:15:25.320000 +CVE-2025-5839,0,0,4efb9e7f992ec0cf0b490a41765d64fdc79638a0fc7c7b695bd87786fa84522d,2025-06-07T18:15:25.080000 +CVE-2025-5840,0,0,6060b28c44367562648dda64a70c474fb07a81415250a659e2cb863608a79fe9,2025-06-07T18:15:25.320000