admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-07-09 16:05:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2024-07-21T16:00:18.635978+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2024-07-21 16:03:14 +00:00
parent 61eb108f64
commit 63418c32af
6 changed files with 432 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
CVE-2024/CVE-2024-68xx/CVE-2024-6802.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-6802",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-07-17T02:15:10.780",
"lastModified": "2024-07-19T14:58:12.707",
"vulnStatus": "Analyzed",
"lastModified": "2024-07-21T15:15:02.190",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
@ -159,11 +159,8 @@
],
"references": [
{
"url": "https://reports-kunull.vercel.app/CVE%20research/computer-laboratory-management-system-save_record",
"source": "cna@vuldb.com",
"tags": [
"Broken Link"
]
"url": "https://reports-kunull.vercel.app/CVE%20research/2024/cve-2024-6802",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.271704",

137
CVE-2024/CVE-2024-69xx/CVE-2024-6956.json Normal file
View File

@ -0,0 +1,137 @@
{
"id": "CVE-2024-6956",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-07-21T14:15:03.373",
"lastModified": "2024-07-21T14:15:03.373",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in itsourcecode University Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view_cgpa.php. The manipulation of the argument VR/VN leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-272078 is the identifier assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"vulnerableSystemConfidentiality": "LOW",
"vulnerableSystemIntegrity": "LOW",
"vulnerableSystemAvailability": "LOW",
"subsequentSystemConfidentiality": "NONE",
"subsequentSystemIntegrity": "NONE",
"subsequentSystemAvailability": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirements": "NOT_DEFINED",
"integrityRequirements": "NOT_DEFINED",
"availabilityRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnerableSystemConfidentiality": "NOT_DEFINED",
"modifiedVulnerableSystemIntegrity": "NOT_DEFINED",
"modifiedVulnerableSystemAvailability": "NOT_DEFINED",
"modifiedSubsequentSystemConfidentiality": "NOT_DEFINED",
"modifiedSubsequentSystemIntegrity": "NOT_DEFINED",
"modifiedSubsequentSystemAvailability": "NOT_DEFINED",
"safety": "NOT_DEFINED",
"automatable": "NOT_DEFINED",
"recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/DeepMountains/Mirage/blob/main/CVE6-2.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.272078",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.272078",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.377754",
"source": "cna@vuldb.com"
}
]
}

137
CVE-2024/CVE-2024-69xx/CVE-2024-6957.json Normal file
View File

@ -0,0 +1,137 @@
{
"id": "CVE-2024-6957",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-07-21T15:15:03.267",
"lastModified": "2024-07-21T15:15:03.267",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. This affects an unknown part of the file functions.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-272079."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"vulnerableSystemConfidentiality": "LOW",
"vulnerableSystemIntegrity": "LOW",
"vulnerableSystemAvailability": "LOW",
"subsequentSystemConfidentiality": "NONE",
"subsequentSystemIntegrity": "NONE",
"subsequentSystemAvailability": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirements": "NOT_DEFINED",
"integrityRequirements": "NOT_DEFINED",
"availabilityRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnerableSystemConfidentiality": "NOT_DEFINED",
"modifiedVulnerableSystemIntegrity": "NOT_DEFINED",
"modifiedVulnerableSystemAvailability": "NOT_DEFINED",
"modifiedSubsequentSystemConfidentiality": "NOT_DEFINED",
"modifiedSubsequentSystemIntegrity": "NOT_DEFINED",
"modifiedSubsequentSystemAvailability": "NOT_DEFINED",
"safety": "NOT_DEFINED",
"automatable": "NOT_DEFINED",
"recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED",
"baseScore": 6.9,
"baseSeverity": "MEDIUM"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/DeepMountains/Mirage/blob/main/CVE6-3.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.272079",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.272079",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.377755",
"source": "cna@vuldb.com"
}
]
}

137
CVE-2024/CVE-2024-69xx/CVE-2024-6958.json Normal file
View File

@ -0,0 +1,137 @@
{
"id": "CVE-2024-6958",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-07-21T15:15:03.720",
"lastModified": "2024-07-21T15:15:03.720",
"vulnStatus": "Received",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /st_update.php of the component Avatar File Handler. The manipulation of the argument personal_image leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-272080."
}
],
"metrics": {
"cvssMetricV40": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "4.0",
"vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"vulnerableSystemConfidentiality": "LOW",
"vulnerableSystemIntegrity": "LOW",
"vulnerableSystemAvailability": "LOW",
"subsequentSystemConfidentiality": "NONE",
"subsequentSystemIntegrity": "NONE",
"subsequentSystemAvailability": "NONE",
"exploitMaturity": "NOT_DEFINED",
"confidentialityRequirements": "NOT_DEFINED",
"integrityRequirements": "NOT_DEFINED",
"availabilityRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnerableSystemConfidentiality": "NOT_DEFINED",
"modifiedVulnerableSystemIntegrity": "NOT_DEFINED",
"modifiedVulnerableSystemAvailability": "NOT_DEFINED",
"modifiedSubsequentSystemConfidentiality": "NOT_DEFINED",
"modifiedSubsequentSystemIntegrity": "NOT_DEFINED",
"modifiedSubsequentSystemAvailability": "NOT_DEFINED",
"safety": "NOT_DEFINED",
"automatable": "NOT_DEFINED",
"recovery": "NOT_DEFINED",
"valueDensity": "NOT_DEFINED",
"vulnerabilityResponseEffort": "NOT_DEFINED",
"providerUrgency": "NOT_DEFINED",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
}
}
],
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-434"
}
]
}
],
"references": [
{
"url": "https://github.com/DeepMountains/Mirage/blob/main/CVE6-4.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.272080",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.272080",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.377756",
"source": "cna@vuldb.com"
}
]
}

17
README.md
View File

@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2024-07-21T14:00:18.059584+00:00
2024-07-21T16:00:18.635978+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2024-07-21T13:15:03.580000+00:00
2024-07-21T15:15:03.720000+00:00
```
### Last Data Feed Release
@ -33,24 +33,23 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
257662
257665
```
### CVEs added in the last Commit
Recently added CVEs: `4`
Recently added CVEs: `3`
- [CVE-2024-6952](CVE-2024/CVE-2024-69xx/CVE-2024-6952.json) (`2024-07-21T12:15:02.043`)
- [CVE-2024-6953](CVE-2024/CVE-2024-69xx/CVE-2024-6953.json) (`2024-07-21T12:15:02.500`)
- [CVE-2024-6954](CVE-2024/CVE-2024-69xx/CVE-2024-6954.json) (`2024-07-21T13:15:03.130`)
- [CVE-2024-6955](CVE-2024/CVE-2024-69xx/CVE-2024-6955.json) (`2024-07-21T13:15:03.580`)
- [CVE-2024-6956](CVE-2024/CVE-2024-69xx/CVE-2024-6956.json) (`2024-07-21T14:15:03.373`)
- [CVE-2024-6957](CVE-2024/CVE-2024-69xx/CVE-2024-6957.json) (`2024-07-21T15:15:03.267`)
- [CVE-2024-6958](CVE-2024/CVE-2024-69xx/CVE-2024-6958.json) (`2024-07-21T15:15:03.720`)
### CVEs modified in the last Commit
Recently modified CVEs: `1`
- [CVE-2024-6807](CVE-2024/CVE-2024-68xx/CVE-2024-6807.json) (`2024-07-21T13:15:02.420`)
- [CVE-2024-6802](CVE-2024/CVE-2024-68xx/CVE-2024-6802.json) (`2024-07-21T15:15:02.190`)
## Download and Usage

15
_state.csv
View File

@ -257614,9 +257614,9 @@ CVE-2024-6779,0,0,eb8d5debe3ae4525916f27034d3cd0e49a98090896d6ba5d8c5bcdb0d54820
CVE-2024-6780,0,0,54fc3efeb973ca2f40f04f54d5a723685bcfaff31befba604fec0242bd088a83,2024-07-16T13:43:58.773000
CVE-2024-6799,0,0,d264d144b11594f6ded9670466775d4f3f4cc730c0f4ee32dd0c581019252c1d,2024-07-19T13:01:44.567000
CVE-2024-6801,0,0,6cf94e1980aea6fcc25b038d583cb2250e04ba4c9461d4d907e1f9ce16b1e09a,2024-07-19T14:55:25.753000
CVE-2024-6802,0,0,28d3acf4fd2d79095dac148cf5494a8bae6c6a9f871caa0540dd765a2bd6262d,2024-07-19T14:58:12.707000
CVE-2024-6802,0,1,0911fc614ea139d423cd023a1b26ff351c1061407fddd3917beb9c821ca9c47f,2024-07-21T15:15:02.190000
CVE-2024-6803,0,0,e77960f60e5c3ea5b22b60c53aac93b8bf6ffc93dd5f015dabaabc8b5a77736e,2024-07-19T15:01:50.250000
CVE-2024-6807,0,1,36a1bf799eb85168b836021ed001160a7d96eb0cb1f17f7dd33adcef058c2a69,2024-07-21T13:15:02.420000
CVE-2024-6807,0,0,36a1bf799eb85168b836021ed001160a7d96eb0cb1f17f7dd33adcef058c2a69,2024-07-21T13:15:02.420000
CVE-2024-6808,0,0,2df5a702fa4af6687f0c8dc8e100812ff9b6b346801edb239f41e0ca638c0076,2024-07-19T15:04:43.837000
CVE-2024-6830,0,0,66325e33317c6fde8b929b285667c5104c4ae04492532b5067560968ff36e7fb,2024-07-18T12:28:43.707000
CVE-2024-6833,0,0,b0ea48d29166f6347ac218b4f9f93d3f7fc599fd932b64c35cfa55e5a1a94672,2024-07-18T12:28:43.707000
@ -257655,9 +257655,12 @@ CVE-2024-6948,0,0,4fc3e434749882422f18b5c630b940b45e27cb43027fb2dcfbb260c47fea22
CVE-2024-6949,0,0,80bcd8aed05907e43cecd5d8f3dfeaf3fcf5bf79000da46e890c204072543fab,2024-07-21T10:15:04.023000
CVE-2024-6950,0,0,f9d503d224a25934caf84d1cd9e6f5d924b2905ebf06009b0e5a9e9b2200c331,2024-07-21T11:15:02.287000
CVE-2024-6951,0,0,0cb2c5a3d9c362f37736780646a01100279cdd76755366ac216210937db2d919,2024-07-21T11:15:02.737000
CVE-2024-6952,1,1,0b958dd458faf92d43d702fc4a93a360d4ed9f5f4d3845ad3cc619169ea19776,2024-07-21T12:15:02.043000
CVE-2024-6953,1,1,ac626fafed478ea1eac8d87958db8ede5e45a39b6599affc1b81aaf01cbb6e8b,2024-07-21T12:15:02.500000
CVE-2024-6954,1,1,1cf3dfbf4eaaccb96c497b4a9bcb5e1be80275e0c2c7db77802020cf062d1366,2024-07-21T13:15:03.130000
CVE-2024-6955,1,1,490c287acd1917b79b57fc5e5ed200553e1c21acd5c1885d479b585931059799,2024-07-21T13:15:03.580000
CVE-2024-6952,0,0,0b958dd458faf92d43d702fc4a93a360d4ed9f5f4d3845ad3cc619169ea19776,2024-07-21T12:15:02.043000
CVE-2024-6953,0,0,ac626fafed478ea1eac8d87958db8ede5e45a39b6599affc1b81aaf01cbb6e8b,2024-07-21T12:15:02.500000
CVE-2024-6954,0,0,1cf3dfbf4eaaccb96c497b4a9bcb5e1be80275e0c2c7db77802020cf062d1366,2024-07-21T13:15:03.130000
CVE-2024-6955,0,0,490c287acd1917b79b57fc5e5ed200553e1c21acd5c1885d479b585931059799,2024-07-21T13:15:03.580000
CVE-2024-6956,1,1,1a97f2d8a886c67d8e14f4034927dcbf7d7461248f3d4bf31e7720a6f4a33052,2024-07-21T14:15:03.373000
CVE-2024-6957,1,1,0ca8bd7f7e134058544a1b917fa657b20e9b1fc841895178aa2a43854c4a23d3,2024-07-21T15:15:03.267000
CVE-2024-6958,1,1,10c35a562f104bf26edc34cda5745e8508d2fc551bc37e1036cb77cc67be3c81,2024-07-21T15:15:03.720000
CVE-2024-6960,0,0,ba4c074aecd7169a6139d543cba8cbfb41667ce709a3bfbb365e6f9e1f60679c,2024-07-21T10:15:04.497000
CVE-2024-6961,0,0,1a698a573fc6a37f490849f49b78d0c6e20175ea7184cf2bdf39116d6d0eac08,2024-07-21T11:15:03.187000

Can't render this file because it is too large.