admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-07 19:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2024-02-20T19:00:39.502142+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2024-02-20 19:00:43 +00:00
parent d472969ed9
commit 62ca07ac91
34 changed files with 861 additions and 114 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
CVE-2023/CVE-2023-385xx/CVE-2023-38562.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-38562",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T15:15:08.020",
"lastModified": "2024-02-20T15:15:08.020",
"lastModified": "2024-02-20T18:15:49.790",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1829",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1829",
"source": "talos-cna@cisco.com"
}
]
}

2
CVE-2023/CVE-2023-392xx/CVE-2023-39251.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-39251",
"sourceIdentifier": "security_alert@emc.com",
"published": "2023-12-22T18:15:07.317",
"lastModified": "2024-01-04T14:53:31.367",
"lastModified": "2024-02-20T18:50:54.943",
"vulnStatus": "Analyzed",
"descriptions": [
{

6
CVE-2023/CVE-2023-395xx/CVE-2023-39540.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-39540",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T15:15:08.323",
"lastModified": "2024-02-20T15:15:08.323",
"lastModified": "2024-02-20T18:15:49.890",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1828",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1828",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2023/CVE-2023-395xx/CVE-2023-39541.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-39541",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T15:15:08.533",
"lastModified": "2024-02-20T15:15:08.533",
"lastModified": "2024-02-20T18:15:49.973",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1828",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1828",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2023/CVE-2023-453xx/CVE-2023-45318.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-45318",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T15:15:08.727",
"lastModified": "2024-02-20T15:15:08.727",
"lastModified": "2024-02-20T18:15:50.060",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1843",
"source": "talos-cna@cisco.com"
}
]
}

83
CVE-2023/CVE-2023-476xx/CVE-2023-47635.json Normal file
View File

@ -0,0 +1,83 @@
{
"id": "CVE-2023-47635",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:50.147",
"lastModified": "2024-02-20T18:15:50.147",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Decidim is a participatory democracy framework. Starting in version 0.23.0 and prior to versions 0.27.5 and 0.28.0, the CSRF authenticity token check is disabled for the questionnaire templates preview. The issue does not imply a serious security thread as you need to have access also to the session cookie in order to see this resource. This URL does not allow modifying the resource but it may allow attackers to gain access to information which was not meant to be public. The issue is fixed in version 0.27.5 and 0.28.0. As a workaround, disable the templates functionality or remove all available templates."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-918"
}
]
}
],
"references": [
{
"url": "https://github.com/decidim/decidim/blob/3187bdfd40ea1c57c2c12512b09a7fec0b2bed08/decidim-templates/app/controllers/decidim/templates/admin/questionnaire_templates_controller.rb#L11",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/commit/5542227be66e3b6d7530f5b536069bce09376660",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/commit/57a4b467787448307b5d9b01ce6e2c8502e121ac",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/pull/11743",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/pull/6247",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.27.5",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.28.0",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/security/advisories/GHSA-f3qm-vfc3-jg6v",
"source": "security-advisories@github.com"
}
]
}

87
CVE-2023/CVE-2023-482xx/CVE-2023-48220.json Normal file
View File

@ -0,0 +1,87 @@
{
"id": "CVE-2023-48220",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:50.350",
"lastModified": "2024-02-20T18:15:50.350",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Decidim is a participatory democracy framework. Starting in version 0.4.rc3 and prior to version 2.0.9 of the `devise_invitable` gem, the invites feature allows users to accept the invitation for an unlimited amount of time through the password reset functionality. This issue creates vulnerable dependencies starting in version 0.0.1.alpha3 and prior to versions 0.26.9, 0.27.5, and 0.28.0 of the `decidim,` `decidim-admin`, and `decidim-system` gems. When using the password reset functionality, the `devise_invitable` gem always accepts the pending invitation if the user has been invited. The only check done is if the user has been invited but the code does not ensure that the pending invitation is still valid as defined by the `invite_for` expiry period. Decidim sets this configuration to `2.weeks` so this configuration should be respected. The bug is in the `devise_invitable` gem and should be fixed there and the dependency should be upgraded in Decidim once the fix becomes available. `devise_invitable` to version `2.0.9` and above fix this issue. Versions 0.26.9, 0.27.5, and 0.28.0 of the `decidim,` `decidim-admin`, and `decidim-system` gems contain this fix. As a workaround, invitations can be cancelled directly from the database."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "HIGH",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 5.7,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.5,
"impactScore": 5.2
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-672"
}
]
}
],
"references": [
{
"url": "https://github.com/decidim/decidim/blob/d2d390578050772d1bdb6d731395f1afc39dcbfc/decidim-core/config/initializers/devise.rb#L134",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/commit/073e60e2e4224dd81815a784002ebba30f2ebb34",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/commit/b12800717a689c295a9ea680a38ca9f823d2c454",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.26.9",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.27.5",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.28.0",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/security/advisories/GHSA-w3q8-m492-4pwp",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/scambra/devise_invitable/blob/41f58970ff76fb64382a9b9ea1bd530f7c3adab2/lib/devise_invitable/models.rb#L198",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/scambra/devise_invitable/commit/94d859c7de0829bf63f679ae5dd3cab2b866a098",
"source": "security-advisories@github.com"
}
]
}

2
CVE-2023/CVE-2023-513xx/CVE-2023-51363.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-51363",
"sourceIdentifier": "vultures@jpcert.or.jp",
"published": "2023-12-26T08:15:11.760",
"lastModified": "2024-01-03T21:08:47.153",
"lastModified": "2024-02-20T18:52:19.997",
"vulnStatus": "Analyzed",
"descriptions": [
{

75
CVE-2023/CVE-2023-514xx/CVE-2023-51447.json Normal file
View File

@ -0,0 +1,75 @@
{
"id": "CVE-2023-51447",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:50.547",
"lastModified": "2024-02-20T18:15:50.547",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Decidim is a participatory democracy framework. Starting in version 0.27.0 and prior to versions 0.27.5 and 0.28.0, the dynamic file upload feature is subject to potential cross-site scripting attacks in case the attacker manages to modify the file names of the records being uploaded to the server. This appears in sections where the user controls the file upload dialogs themselves and has the technical knowledge to change the file names through the dynamic upload endpoint. Therefore I believe it would require the attacker to control the whole session of the particular user but in any case, this needs to be fixed. Successful exploit of this vulnerability would require the user to have successfully uploaded a file blob to the server with a malicious file name and then have the possibility to direct the other user to the edit page of the record where the attachment is attached. The users are able to craft the direct upload requests themselves controlling the file name that gets stored to the database. The attacker is able to change the filename e.g. to `<svg onload=alert('XSS')>` if they know how to craft these requests themselves. And then enter the returned blob ID to the form inputs manually by modifying the edit page source. Versions 0.27.5 and 0.28.0 contain a patch for this issue. As a workaround, disable dynamic uploads for the instance, e.g. from proposals."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.1,
"impactScore": 4.2
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/decidim/decidim/commit/aaf72787cf18beeeb6a771c1f7cbb7654b073423",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/pull/11612",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.27.5",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/releases/tag/v0.28.0",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/decidim/decidim/security/advisories/GHSA-9w99-78rj-hmxq",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/rails/rails/blob/a967d355c6fee9ad9b8bd115d43bc8b0fc207e7e/activestorage/app/controllers/active_storage/direct_uploads_controller.rb#L14",
"source": "security-advisories@github.com"
}
]
}

8
CVE-2023/CVE-2023-524xx/CVE-2023-52433.json
View File

@ -2,22 +2,22 @@
"id": "CVE-2023-52433",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-02-20T13:15:08.140",
"lastModified": "2024-02-20T13:15:08.140",
"lastModified": "2024-02-20T18:15:50.740",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "netfilter: nft_set_rbtree: skip sync GC for new elements in this transaction\n\nNew elements in this transaction might expired before such transaction\nends. Skip sync GC for such elements otherwise commit path might walk\nover an already released object. Once transaction is finished, async GC\nwill collect such expired element."
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_rbtree: skip sync GC for new elements in this transaction\n\nNew elements in this transaction might expired before such transaction\nends. Skip sync GC for such elements otherwise commit path might walk\nover an already released object. Once transaction is finished, async GC\nwill collect such expired element."
}
],
"metrics": {},
"references": [
{
"url": "https://git.kernel.org/stable/c/2ee52ae94baa",
"url": "https://git.kernel.org/stable/c/2ee52ae94baabf7ee09cf2a8d854b990dac5d0e4",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/e3213ff99a35",
"url": "https://git.kernel.org/stable/c/e3213ff99a355cda811b41e8dbb3472d13167a3a",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
]

24
CVE-2023/CVE-2023-524xx/CVE-2023-52434.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2023-52434",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-02-20T18:15:50.790",
"lastModified": "2024-02-20T18:15:50.790",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nsmb: client: fix potential OOBs in smb2_parse_contexts()\n\nValidate offsets and lengths before dereferencing create contexts in\nsmb2_parse_contexts().\n\nThis fixes following oops when accessing invalid create contexts from\nserver:\n\n BUG: unable to handle page fault for address: ffff8881178d8cc3\n #PF: supervisor read access in kernel mode\n #PF: error_code(0x0000) - not-present page\n PGD 4a01067 P4D 4a01067 PUD 0\n Oops: 0000 [#1] PREEMPT SMP NOPTI\n CPU: 3 PID: 1736 Comm: mount.cifs Not tainted 6.7.0-rc4 #1\n Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS\n rel-1.16.2-3-gd478f380-rebuilt.opensuse.org 04/01/2014\n RIP: 0010:smb2_parse_contexts+0xa0/0x3a0 [cifs]\n Code: f8 10 75 13 48 b8 93 ad 25 50 9c b4 11 e7 49 39 06 0f 84 d2 00\n 00 00 8b 45 00 85 c0 74 61 41 29 c5 48 01 c5 41 83 fd 0f 76 55 <0f> b7\n 7d 04 0f b7 45 06 4c 8d 74 3d 00 66 83 f8 04 75 bc ba 04 00\n RSP: 0018:ffffc900007939e0 EFLAGS: 00010216\n RAX: ffffc90000793c78 RBX: ffff8880180cc000 RCX: ffffc90000793c90\n RDX: ffffc90000793cc0 RSI: ffff8880178d8cc0 RDI: ffff8880180cc000\n RBP: ffff8881178d8cbf R08: ffffc90000793c22 R09: 0000000000000000\n R10: ffff8880180cc000 R11: 0000000000000024 R12: 0000000000000000\n R13: 0000000000000020 R14: 0000000000000000 R15: ffffc90000793c22\n FS: 00007f873753cbc0(0000) GS:ffff88806bc00000(0000)\n knlGS:0000000000000000\n CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n CR2: ffff8881178d8cc3 CR3: 00000000181ca000 CR4: 0000000000750ef0\n PKRU: 55555554\n Call Trace:\n <TASK>\n ? __die+0x23/0x70\n ? page_fault_oops+0x181/0x480\n ? search_module_extables+0x19/0x60\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? exc_page_fault+0x1b6/0x1c0\n ? asm_exc_page_fault+0x26/0x30\n ? smb2_parse_contexts+0xa0/0x3a0 [cifs]\n SMB2_open+0x38d/0x5f0 [cifs]\n ? smb2_is_path_accessible+0x138/0x260 [cifs]\n smb2_is_path_accessible+0x138/0x260 [cifs]\n cifs_is_path_remote+0x8d/0x230 [cifs]\n cifs_mount+0x7e/0x350 [cifs]\n cifs_smb3_do_mount+0x128/0x780 [cifs]\n smb3_get_tree+0xd9/0x290 [cifs]\n vfs_get_tree+0x2c/0x100\n ? capable+0x37/0x70\n path_mount+0x2d7/0xb80\n ? srso_alias_return_thunk+0x5/0xfbef5\n ? _raw_spin_unlock_irqrestore+0x44/0x60\n __x64_sys_mount+0x11a/0x150\n do_syscall_64+0x47/0xf0\n entry_SYSCALL_64_after_hwframe+0x6f/0x77\n RIP: 0033:0x7f8737657b1e"
}
],
"metrics": {},
"references": [
{
"url": "https://git.kernel.org/stable/c/17a0f64cc02d4972e21c733d9f21d1c512963afa",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/af1689a9b7701d9907dfc84d2a4b57c4bc907144",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
]
}

20
CVE-2024/CVE-2024-07xx/CVE-2024-0794.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-0794",
"sourceIdentifier": "hp-security-alert@hp.com",
"published": "2024-02-20T18:15:50.840",
"lastModified": "2024-02-20T18:15:50.840",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Certain HP LaserJet Pro, HP Enterprise LaserJet, and HP LaserJet Managed Printers are potentially vulnerable to Remote Code Execution due to buffer overflow when rendering fonts embedded in a PDF file."
}
],
"metrics": {},
"references": [
{
"url": "https://support.hp.com/us-en/document/ish_10174031-10174074-16",
"source": "hp-security-alert@hp.com"
}
]
}

47
CVE-2024/CVE-2024-216xx/CVE-2024-21678.json Normal file
View File

@ -0,0 +1,47 @@
{
"id": "CVE-2024-21678",
"sourceIdentifier": "security@atlassian.com",
"published": "2024-02-20T18:15:50.897",
"lastModified": "2024-02-20T18:15:50.897",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "This High severity Stored XSS vulnerability was introduced in version 2.7.0 of Confluence Data Center.\r\n\r\nThis Stored XSS vulnerability, with a CVSS Score of 8.5, allows an authenticated attacker to execute arbitrary HTML or JavaScript code on a victims browser which has high impact to confidentiality, low impact to integrity, no impact to availability, and requires no user interaction.\r\nData Center\r\n\r\nAtlassian recommends that Confluence Data Center customers upgrade to the latest version. If you are unable to do so, upgrade your instance to one of the specified supported fixed versions:\r\n||Affected versions||Fixed versions||\r\n|from 8.7.0 to 8.7.1|8.8.0 recommended or 8.7.2|\r\n|from 8.6.0 to 8.6.1|8.8.0 recommended|\r\n|from 8.5.0 to 8.5.4 LTS|8.8.0 recommended or 8.5.5 LTS or 8.5.6 LTS|\r\n|from 8.4.0 to 8.4.5|8.8.0 recommended or 8.5.6 LTS|\r\n|from 8.3.0 to 8.3.4|8.8.0 recommended or 8.5.6 LTS|\r\n|from 8.2.0 to 8.2.3|8.8.0 recommended or 8.5.6 LTS|\r\n|from 8.1.0 to 8.1.4|8.8.0 recommended or 8.5.6 LTS|\r\n|from 8.0.0 to 8.0.4|8.8.0 recommended or 8.5.6 LTS|\r\n|from 7.20.0 to 7.20.3|8.8.0 recommended or 8.5.6 LTS|\r\n|from 7.19.0 to 7.19.17 LTS|8.8.0 recommended or 8.5.6 LTS or 7.19.18 LTS or 7.19.19 LTS|\r\n|from 7.18.0 to 7.18.3|8.8.0 recommended or 8.5.6 LTS or 7.19.19 LTS|\r\n|from 7.17.0 to 7.17.5|8.8.0 recommended or 8.5.6 LTS or 7.19.19 LTS|\r\n|Any earlier versions|8.8.0 recommended or 8.5.6 LTS or 7.19.19 LTS|\r\nServer\r\n\r\nAtlassian recommends that Confluence Server customers upgrade to the latest 8.5.x LTS version. If you are unable to do so, upgrade your instance to one of the specified supported fixed versions:\r\n\r\n\u00a0\r\n||Affected versions||Fixed versions||\r\n|from 8.5.0 to 8.5.4 LTS|8.5.5 LTS or 8.5.6 LTS recommended\u00a0|\r\n|from 8.4.0 to 8.4.5|8.5.6 LTS recommended|\r\n|from 8.3.0 to 8.3.4|8.5.6 LTS recommended|\r\n|from 8.2.0 to 8.2.3|8.5.6 LTS recommended|\r\n|from 8.1.0 to 8.1.4|8.5.6 LTS recommended|\r\n|from 8.0.0 to 8.0.4|8.5.6 LTS recommended|\r\n|from 7.20.0 to 7.20.3|8.5.6 LTS recommended|\r\n|from 7.19.0 to 7.19.17 LTS|8.5.6 LTS recommended or 7.19.18 LTS or 7.19.19 LTS|\r\n|from 7.18.0 to 7.18.3|8.5.6 LTS recommended or 7.19.19 LTS|\r\n|from 7.17.0 to 7.17.5|8.5.6 LTS recommended or 7.19.19 LTS|\r\n|Any earlier versions|8.5.6 LTS recommended or 7.19.19 LTS|\r\n\r\nSee the release notes ([https://confluence.atlassian.com/doc/confluence-release-notes-327.html]). You can download the latest version of Confluence Data Center from the download center ([https://www.atlassian.com/software/confluence/download-archives]).\r\n\r\nThis vulnerability was reported via our Bug Bounty program."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "security@atlassian.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 8.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.1,
"impactScore": 4.7
}
]
},
"references": [
{
"url": "https://confluence.atlassian.com/pages/viewpage.action?pageId=1354501606",
"source": "security@atlassian.com"
},
{
"url": "https://jira.atlassian.com/browse/CONFSERVER-94513",
"source": "security@atlassian.com"
}
]
}

55
CVE-2024/CVE-2024-216xx/CVE-2024-21682.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-21682",
"sourceIdentifier": "security@atlassian.com",
"published": "2024-02-20T18:15:51.063",
"lastModified": "2024-02-20T18:15:51.063",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "This High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 (all versions). \n\nAssets Discovery, which can be downloaded via Atlassian Marketplace, is a network scanning tool that can be used with or without an agent with Jira Service Management Cloud, Data Center or Server. It detects hardware and software that is connected to your local network and extracts detailed information about each asset. This data can then be imported into Assets in Jira Service Management to help you manage all of the devices and configuration items within your local network.\n\nThis Injection vulnerability, with a CVSS Score of 7.2, allows an authenticated attacker to modify the actions taken by a system call which has high impact to confidentiality, high impact to integrity, high impact to availability, and requires no user interaction.\n\nAtlassian recommends that Assets Discovery customers upgrade to latest version, if you are unable to do so, upgrade your instance to one of the specified supported fixed versions\n\nSee the release notes (https://confluence.atlassian.com/assetapps/assets-discovery-3-2-1-cloud-6-2-1-data_center-1333987182.html). You can download the latest version of Assets Discovery from the Atlassian Marketplace (https://marketplace.atlassian.com/apps/1214668/assets-discovery?hosting=datacenter&tab=installation).\n\nThis vulnerability was reported via our Penetration Testing program."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "security@atlassian.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.2,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.2,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://confluence.atlassian.com/assetapps/assets-discovery-3-2-1-cloud-6-2-1-data_center-1333987182.html",
"source": "security@atlassian.com"
},
{
"url": "https://confluence.atlassian.com/pages/viewpage.action?pageId=1354501606",
"source": "security@atlassian.com"
},
{
"url": "https://jira.atlassian.com/browse/JSDSERVER-15067",
"source": "security@atlassian.com"
},
{
"url": "https://marketplace.atlassian.com/apps/1214668/assets-discovery?hosting=datacenter&tab=installation",
"source": "security@atlassian.com"
}
]
}

6
CVE-2024/CVE-2024-217xx/CVE-2024-21795.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-21795",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:08.130",
"lastModified": "2024-02-20T16:15:08.130",
"lastModified": "2024-02-20T18:15:51.220",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1920",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1920",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2024/CVE-2024-218xx/CVE-2024-21812.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-21812",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:08.370",
"lastModified": "2024-02-20T16:15:08.370",
"lastModified": "2024-02-20T18:15:51.313",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1921",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1921",
"source": "talos-cna@cisco.com"
}
]
}

43
CVE-2024/CVE-2024-220xx/CVE-2024-22054.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2024-22054",
"sourceIdentifier": "support@hackerone.com",
"published": "2024-02-20T18:15:51.393",
"lastModified": "2024-02-20T18:15:51.393",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery.\n\n \n\n \n\nAffected Products:\n\nUniFi Access Points\n\nUniFi Switches\n\nUniFi LTE Backup\n\nUniFi Express (Only Mesh Mode, Router mode is not affected)\n\n \n\nMitigation:\n\nUpdate UniFi Access Points to Version 6.6.65 or later.\n\nUpdate UniFi Switches to Version 6.6.61 or later.\n\nUpdate UniFi LTE Backup to Version 6.6.57 or later.\n\nUpdate UniFi Express to Version 3.2.5 or later."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "support@hackerone.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://community.ui.com/releases/Security-Advisory-Bulletin-037-037/9aeeccef-ca4a-4f10-9f66-1eb400b3d027",
"source": "support@hackerone.com"
}
]
}

6
CVE-2024/CVE-2024-220xx/CVE-2024-22097.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-22097",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:08.583",
"lastModified": "2024-02-20T16:15:08.583",
"lastModified": "2024-02-20T18:15:51.550",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1917",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1917",
"source": "talos-cna@cisco.com"
}
]
}

55
CVE-2024/CVE-2024-222xx/CVE-2024-22245.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-22245",
"sourceIdentifier": "security@vmware.com",
"published": "2024-02-20T18:15:51.647",
"lastModified": "2024-02-20T18:15:51.647",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Arbitrary Authentication Relay and Session Hijack vulnerabilities in the deprecated VMware Enhanced Authentication Plug-in (EAP) could allow\u00a0a\u00a0malicious actor that could trick a target domain user with EAP installed in their web browser into requesting and relaying service tickets for arbitrary Active Directory Service Principal Names (SPNs)."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security@vmware.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.6,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 2.8,
"impactScore": 6.0
}
]
},
"weaknesses": [
{
"source": "security@vmware.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
],
"references": [
{
"url": "https://www.vmware.com/security/advisories/VMSA-2024-0003.html",
"source": "security@vmware.com"
}
]
}

55
CVE-2024/CVE-2024-222xx/CVE-2024-22250.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-22250",
"sourceIdentifier": "security@vmware.com",
"published": "2024-02-20T18:15:51.843",
"lastModified": "2024-02-20T18:15:51.843",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Session Hijack vulnerability in Deprecated VMware Enhanced Authentication Plug-in could allow a\u00a0malicious actor with unprivileged local access to a windows operating system can hijack a privileged EAP session when initiated by a privileged domain user on the same system."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security@vmware.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.1,
"impactScore": 6.0
}
]
},
"weaknesses": [
{
"source": "security@vmware.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-384"
}
]
}
],
"references": [
{
"url": "https://www.vmware.com/security/advisories/VMSA-2024-0003.html",
"source": "security@vmware.com"
}
]
}

6
CVE-2024/CVE-2024-233xx/CVE-2024-23305.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23305",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:08.823",
"lastModified": "2024-02-20T16:15:08.823",
"lastModified": "2024-02-20T18:15:52.023",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1918",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1918",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2024/CVE-2024-233xx/CVE-2024-23310.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23310",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:09.097",
"lastModified": "2024-02-20T16:15:09.097",
"lastModified": "2024-02-20T18:15:52.113",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1923",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1923",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2024/CVE-2024-233xx/CVE-2024-23313.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23313",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:09.477",
"lastModified": "2024-02-20T16:15:09.477",
"lastModified": "2024-02-20T18:15:52.200",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1922",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1922",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2024/CVE-2024-236xx/CVE-2024-23606.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23606",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:09.737",
"lastModified": "2024-02-20T16:15:09.737",
"lastModified": "2024-02-20T18:15:52.293",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1925",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1925",
"source": "talos-cna@cisco.com"
}
]
}

6
CVE-2024/CVE-2024-238xx/CVE-2024-23809.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23809",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T16:15:10.003",
"lastModified": "2024-02-20T16:15:10.003",
"lastModified": "2024-02-20T18:15:52.380",
"vulnStatus": "Received",
"descriptions": [
{
@ -50,10 +50,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1919",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1919",
"source": "talos-cna@cisco.com"
}
]
}

28
CVE-2024/CVE-2024-244xx/CVE-2024-24474.json Normal file
View File

@ -0,0 +1,28 @@
{
"id": "CVE-2024-24474",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-02-20T18:15:52.463",
"lastModified": "2024-02-20T18:15:52.463",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Buffer Overflow vulnerability in Qemu before v.8.2.0 allows a remote attacker to execute arbitrary code via the async_len variable to the FIFO buffer component."
}
],
"metrics": {},
"references": [
{
"url": "https://gist.github.com/1047524396/5ce07b9d387095c276b1cd234ae5615e",
"source": "cve@mitre.org"
},
{
"url": "https://github.com/qemu/qemu/commit/77668e4b9bca03a856c27ba899a2513ddf52bb52",
"source": "cve@mitre.org"
},
{
"url": "https://gitlab.com/qemu-project/qemu/-/issues/1810",
"source": "cve@mitre.org"
}
]
}

59
CVE-2024/CVE-2024-247xx/CVE-2024-24763.json Normal file
View File

@ -0,0 +1,59 @@
{
"id": "CVE-2024-24763",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:52.520",
"lastModified": "2024-02-20T18:15:52.520",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "JumpServer is an open source bastion host and an operation and maintenance security audit system. Prior to version 3.10.0, attackers can exploit this vulnerability to construct malicious links, leading users to click on them, thereby facilitating phishing attacks or cross-site scripting attacks. Version 3.10.0 contains a patch for this issue. No known workarounds are available."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-601"
}
]
}
],
"references": [
{
"url": "https://github.com/jumpserver/jumpserver/releases/tag/v3.10.0",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/jumpserver/jumpserver/security/advisories/GHSA-p2mq-cm25-g4m5",
"source": "security-advisories@github.com"
}
]
}

10
CVE-2024/CVE-2024-247xx/CVE-2024-24793.json
View File

@ -2,12 +2,16 @@
"id": "CVE-2024-24793",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T11:15:08.090",
"lastModified": "2024-02-20T11:15:08.090",
"lastModified": "2024-02-20T18:15:52.700",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_element_create()` parsing the elements in the File Meta Information header."
},
{
"lang": "es",
"value": "Existe una vulnerabilidad de use-after-free en DICOM Element Parsing implementado en Imaging Data Commons libdicom 1.0.5. Un archivo DICOM especialmente manipulado puede provocar la liberaci\u00f3n prematura de memoria que se utilizar\u00e1 m\u00e1s adelante. Para desencadenar esta vulnerabilidad, un atacante necesitar\u00eda inducir a la aplicaci\u00f3n vulnerable a procesar una imagen DICOM maliciosa. El Use-After-Free ocurre en `parse_meta_element_create()` analizando los elementos en el encabezado de metainformaci\u00f3n del archivo."
}
],
"metrics": {
@ -50,10 +54,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1931",
"source": "talos-cna@cisco.com"
}
]
}

10
CVE-2024/CVE-2024-247xx/CVE-2024-24794.json
View File

@ -2,12 +2,16 @@
"id": "CVE-2024-24794",
"sourceIdentifier": "talos-cna@cisco.com",
"published": "2024-02-20T11:15:08.343",
"lastModified": "2024-02-20T11:15:08.343",
"lastModified": "2024-02-20T18:15:52.793",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_sequence_end()` parsing the Sequence Value Represenations."
},
{
"lang": "es",
"value": "Existe una vulnerabilidad de uuse-after-free en DICOM Element Parsing implementado en Imaging Data Commons libdicom 1.0.5. Un archivo DICOM especialmente manipulado puede provocar la liberaci\u00f3n prematura de memoria que se utilizar\u00e1 m\u00e1s adelante. Para desencadenar esta vulnerabilidad, un atacante necesitar\u00eda inducir a la aplicaci\u00f3n vulnerable a procesar una imagen DICOM maliciosa. El Use-After-Free ocurre en `parse_meta_sequence_end()` analizando las representaciones de valores de secuencia."
}
],
"metrics": {
@ -50,10 +54,6 @@
{
"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931",
"source": "talos-cna@cisco.com"
},
{
"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1931",
"source": "talos-cna@cisco.com"
}
]
}

28
CVE-2024/CVE-2024-252xx/CVE-2024-25260.json Normal file
View File

@ -0,0 +1,28 @@
{
"id": "CVE-2024-25260",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-02-20T18:15:52.880",
"lastModified": "2024-02-20T18:15:52.880",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "elfutils v0.189 was discovered to contain a NULL pointer dereference via the handle_verdef() function at readelf.c."
}
],
"metrics": {},
"references": [
{
"url": "https://github.com/schsiung/fuzzer_issues/issues/1",
"source": "cve@mitre.org"
},
{
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=31058",
"source": "cve@mitre.org"
},
{
"url": "https://sourceware.org/elfutils/",
"source": "cve@mitre.org"
}
]
}

63
CVE-2024/CVE-2024-256xx/CVE-2024-25630.json Normal file
View File

@ -0,0 +1,63 @@
{
"id": "CVE-2024-25630",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:52.930",
"lastModified": "2024-02-20T18:15:52.930",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who are using CRDs to store Cilium state (the default configuration) and Wireguard transparent encryption, traffic to/from the Ingress and health endpoints is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and has been patched in Cilium v1.14.7. There is no workaround to this issue."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.6,
"impactScore": 4.0
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-311"
}
]
}
],
"references": [
{
"url": "https://docs.cilium.io/en/stable/security/network/encryption-wireguard/#encryption-wg",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/cilium/cilium/releases/tag/v1.14.7",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/cilium/cilium/security/advisories/GHSA-7496-fgv9-xw82",
"source": "security-advisories@github.com"
}
]
}

67
CVE-2024/CVE-2024-256xx/CVE-2024-25631.json Normal file
View File

@ -0,0 +1,67 @@
{
"id": "CVE-2024-25631",
"sourceIdentifier": "security-advisories@github.com",
"published": "2024-02-20T18:15:53.117",
"lastModified": "2024-02-20T18:15:53.117",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Cilium is a networking, observability, and security solution with an eBPF-based dataplane. For Cilium users who have enabled an external kvstore and Wireguard transparent encryption, traffic between pods in the affected cluster is not encrypted. This issue affects Cilium v1.14 before v1.14.7 and has been patched in Cilium v1.14.7. There is no workaround to this issue."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.6,
"impactScore": 4.0
}
]
},
"weaknesses": [
{
"source": "security-advisories@github.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-311"
}
]
}
],
"references": [
{
"url": "https://docs.cilium.io/en/stable/installation/k8s-install-external-etcd/#when-do-i-need-to-use-a-kvstore",
"source": "security-advisories@github.com"
},
{
"url": "https://docs.cilium.io/en/stable/security/network/encryption-wireguard/#encryption-wg",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/cilium/cilium/releases/tag/v1.14.7",
"source": "security-advisories@github.com"
},
{
"url": "https://github.com/cilium/cilium/security/advisories/GHSA-x989-52fc-4vr4",
"source": "security-advisories@github.com"
}
]
}

12
CVE-2024/CVE-2024-265xx/CVE-2024-26581.json
View File

@ -2,30 +2,30 @@
"id": "CVE-2024-26581",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-02-20T13:15:09.020",
"lastModified": "2024-02-20T13:15:09.020",
"lastModified": "2024-02-20T18:15:53.283",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "netfilter: nft_set_rbtree: skip end interval element from gc\n\nrbtree lazy gc on insert might collect an end interval element that has\nbeen just added in this transactions, skip end interval elements that\nare not yet active."
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnetfilter: nft_set_rbtree: skip end interval element from gc\n\nrbtree lazy gc on insert might collect an end interval element that has\nbeen just added in this transactions, skip end interval elements that\nare not yet active."
}
],
"metrics": {},
"references": [
{
"url": "https://git.kernel.org/stable/c/1296c110c5a0",
"url": "https://git.kernel.org/stable/c/1296c110c5a0b45a8fcf58e7d18bc5da61a565cb",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/60c0c230c6f0",
"url": "https://git.kernel.org/stable/c/60c0c230c6f046da536d3df8b39a20b9a9fd6af0",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/6eb14441f106",
"url": "https://git.kernel.org/stable/c/6eb14441f10602fa1cf691da9d685718b68b78a9",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
},
{
"url": "https://git.kernel.org/stable/c/b734f7a47aeb",
"url": "https://git.kernel.org/stable/c/b734f7a47aeb32a5ba298e4ccc16bb0c52b6dbf7",
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
]

70
README.md
View File

@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2024-02-20T17:16:43.781420+00:00
2024-02-20T19:00:39.502142+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2024-02-20T16:55:30.890000+00:00
2024-02-20T18:52:19.997000+00:00
```
### Last Data Feed Release
@ -29,46 +29,52 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
238986
239001
```
### CVEs added in the last Commit
Recently added CVEs: `19`
Recently added CVEs: `15`
* [CVE-2023-38562](CVE-2023/CVE-2023-385xx/CVE-2023-38562.json) (`2024-02-20T15:15:08.020`)
* [CVE-2023-39540](CVE-2023/CVE-2023-395xx/CVE-2023-39540.json) (`2024-02-20T15:15:08.323`)
* [CVE-2023-39541](CVE-2023/CVE-2023-395xx/CVE-2023-39541.json) (`2024-02-20T15:15:08.533`)
* [CVE-2023-45318](CVE-2023/CVE-2023-453xx/CVE-2023-45318.json) (`2024-02-20T15:15:08.727`)
* [CVE-2024-1155](CVE-2024/CVE-2024-11xx/CVE-2024-1155.json) (`2024-02-20T15:15:09.703`)
* [CVE-2024-1156](CVE-2024/CVE-2024-11xx/CVE-2024-1156.json) (`2024-02-20T15:15:09.910`)
* [CVE-2024-22369](CVE-2024/CVE-2024-223xx/CVE-2024-22369.json) (`2024-02-20T15:15:10.113`)
* [CVE-2024-22824](CVE-2024/CVE-2024-228xx/CVE-2024-22824.json) (`2024-02-20T15:15:10.270`)
* [CVE-2024-23114](CVE-2024/CVE-2024-231xx/CVE-2024-23114.json) (`2024-02-20T15:15:10.333`)
* [CVE-2024-21795](CVE-2024/CVE-2024-217xx/CVE-2024-21795.json) (`2024-02-20T16:15:08.130`)
* [CVE-2024-21812](CVE-2024/CVE-2024-218xx/CVE-2024-21812.json) (`2024-02-20T16:15:08.370`)
* [CVE-2024-22097](CVE-2024/CVE-2024-220xx/CVE-2024-22097.json) (`2024-02-20T16:15:08.583`)
* [CVE-2024-23305](CVE-2024/CVE-2024-233xx/CVE-2024-23305.json) (`2024-02-20T16:15:08.823`)
* [CVE-2024-23310](CVE-2024/CVE-2024-233xx/CVE-2024-23310.json) (`2024-02-20T16:15:09.097`)
* [CVE-2024-23313](CVE-2024/CVE-2024-233xx/CVE-2024-23313.json) (`2024-02-20T16:15:09.477`)
* [CVE-2024-23606](CVE-2024/CVE-2024-236xx/CVE-2024-23606.json) (`2024-02-20T16:15:09.737`)
* [CVE-2024-23809](CVE-2024/CVE-2024-238xx/CVE-2024-23809.json) (`2024-02-20T16:15:10.003`)
* [CVE-2024-25274](CVE-2024/CVE-2024-252xx/CVE-2024-25274.json) (`2024-02-20T16:15:10.230`)
* [CVE-2024-25366](CVE-2024/CVE-2024-253xx/CVE-2024-25366.json) (`2024-02-20T16:15:10.283`)
* [CVE-2023-47635](CVE-2023/CVE-2023-476xx/CVE-2023-47635.json) (`2024-02-20T18:15:50.147`)
* [CVE-2023-48220](CVE-2023/CVE-2023-482xx/CVE-2023-48220.json) (`2024-02-20T18:15:50.350`)
* [CVE-2023-51447](CVE-2023/CVE-2023-514xx/CVE-2023-51447.json) (`2024-02-20T18:15:50.547`)
* [CVE-2023-52434](CVE-2023/CVE-2023-524xx/CVE-2023-52434.json) (`2024-02-20T18:15:50.790`)
* [CVE-2024-0794](CVE-2024/CVE-2024-07xx/CVE-2024-0794.json) (`2024-02-20T18:15:50.840`)
* [CVE-2024-21678](CVE-2024/CVE-2024-216xx/CVE-2024-21678.json) (`2024-02-20T18:15:50.897`)
* [CVE-2024-21682](CVE-2024/CVE-2024-216xx/CVE-2024-21682.json) (`2024-02-20T18:15:51.063`)
* [CVE-2024-22054](CVE-2024/CVE-2024-220xx/CVE-2024-22054.json) (`2024-02-20T18:15:51.393`)
* [CVE-2024-22245](CVE-2024/CVE-2024-222xx/CVE-2024-22245.json) (`2024-02-20T18:15:51.647`)
* [CVE-2024-22250](CVE-2024/CVE-2024-222xx/CVE-2024-22250.json) (`2024-02-20T18:15:51.843`)
* [CVE-2024-24474](CVE-2024/CVE-2024-244xx/CVE-2024-24474.json) (`2024-02-20T18:15:52.463`)
* [CVE-2024-24763](CVE-2024/CVE-2024-247xx/CVE-2024-24763.json) (`2024-02-20T18:15:52.520`)
* [CVE-2024-25260](CVE-2024/CVE-2024-252xx/CVE-2024-25260.json) (`2024-02-20T18:15:52.880`)
* [CVE-2024-25630](CVE-2024/CVE-2024-256xx/CVE-2024-25630.json) (`2024-02-20T18:15:52.930`)
* [CVE-2024-25631](CVE-2024/CVE-2024-256xx/CVE-2024-25631.json) (`2024-02-20T18:15:53.117`)
### CVEs modified in the last Commit
Recently modified CVEs: `8`
Recently modified CVEs: `18`
* [CVE-2023-6356](CVE-2023/CVE-2023-63xx/CVE-2023-6356.json) (`2024-02-20T15:15:08.933`)
* [CVE-2023-6535](CVE-2023/CVE-2023-65xx/CVE-2023-6535.json) (`2024-02-20T15:15:09.097`)
* [CVE-2023-6536](CVE-2023/CVE-2023-65xx/CVE-2023-6536.json) (`2024-02-20T15:15:09.213`)
* [CVE-2023-6606](CVE-2023/CVE-2023-66xx/CVE-2023-6606.json) (`2024-02-20T15:15:09.327`)
* [CVE-2023-6610](CVE-2023/CVE-2023-66xx/CVE-2023-6610.json) (`2024-02-20T15:15:09.487`)
* [CVE-2023-50387](CVE-2023/CVE-2023-503xx/CVE-2023-50387.json) (`2024-02-20T16:55:30.890`)
* [CVE-2024-0646](CVE-2024/CVE-2024-06xx/CVE-2024-0646.json) (`2024-02-20T15:15:09.587`)
* [CVE-2024-0622](CVE-2024/CVE-2024-06xx/CVE-2024-0622.json) (`2024-02-20T16:15:08.007`)
* [CVE-2023-38562](CVE-2023/CVE-2023-385xx/CVE-2023-38562.json) (`2024-02-20T18:15:49.790`)
* [CVE-2023-39540](CVE-2023/CVE-2023-395xx/CVE-2023-39540.json) (`2024-02-20T18:15:49.890`)
* [CVE-2023-39541](CVE-2023/CVE-2023-395xx/CVE-2023-39541.json) (`2024-02-20T18:15:49.973`)
* [CVE-2023-45318](CVE-2023/CVE-2023-453xx/CVE-2023-45318.json) (`2024-02-20T18:15:50.060`)
* [CVE-2023-52433](CVE-2023/CVE-2023-524xx/CVE-2023-52433.json) (`2024-02-20T18:15:50.740`)
* [CVE-2023-39251](CVE-2023/CVE-2023-392xx/CVE-2023-39251.json) (`2024-02-20T18:50:54.943`)
* [CVE-2023-51363](CVE-2023/CVE-2023-513xx/CVE-2023-51363.json) (`2024-02-20T18:52:19.997`)
* [CVE-2024-21795](CVE-2024/CVE-2024-217xx/CVE-2024-21795.json) (`2024-02-20T18:15:51.220`)
* [CVE-2024-21812](CVE-2024/CVE-2024-218xx/CVE-2024-21812.json) (`2024-02-20T18:15:51.313`)
* [CVE-2024-22097](CVE-2024/CVE-2024-220xx/CVE-2024-22097.json) (`2024-02-20T18:15:51.550`)
* [CVE-2024-23305](CVE-2024/CVE-2024-233xx/CVE-2024-23305.json) (`2024-02-20T18:15:52.023`)
* [CVE-2024-23310](CVE-2024/CVE-2024-233xx/CVE-2024-23310.json) (`2024-02-20T18:15:52.113`)
* [CVE-2024-23313](CVE-2024/CVE-2024-233xx/CVE-2024-23313.json) (`2024-02-20T18:15:52.200`)
* [CVE-2024-23606](CVE-2024/CVE-2024-236xx/CVE-2024-23606.json) (`2024-02-20T18:15:52.293`)
* [CVE-2024-23809](CVE-2024/CVE-2024-238xx/CVE-2024-23809.json) (`2024-02-20T18:15:52.380`)
* [CVE-2024-24793](CVE-2024/CVE-2024-247xx/CVE-2024-24793.json) (`2024-02-20T18:15:52.700`)
* [CVE-2024-24794](CVE-2024/CVE-2024-247xx/CVE-2024-24794.json) (`2024-02-20T18:15:52.793`)
* [CVE-2024-26581](CVE-2024/CVE-2024-265xx/CVE-2024-26581.json) (`2024-02-20T18:15:53.283`)
## Download and Usage