Auto-Update: 2025-02-17T11:01:03.143011+00:00

2025-05-08 03:27:17 +00:00 · 2025-02-17 11:04:30 +00:00 · 2025-02-17 11:04:30 +00:00 · 686b31c339
commit 686b31c339
parent b1afe7228f
5 changed files with 92 additions and 35 deletions
--- a/CVE-2025/CVE-2025-00xx/CVE-2025-0001.json
+++ b/CVE-2025/CVE-2025-00xx/CVE-2025-0001.json
@ -0,0 +1,56 @@
+{
+  "id": "CVE-2025-0001",
+  "sourceIdentifier": "vulnerability@ncsc.ch",
+  "published": "2025-02-17T10:15:08.550",
+  "lastModified": "2025-02-17T10:15:08.550",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Abacus ERP is versions older than 2024.210.16036, 2023.205.15833, 2022.105.15542 are affected by an authenticated arbitrary file read vulnerability."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "vulnerability@ncsc.ch",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
+          "baseScore": 6.5,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE"
+        },
+        "exploitabilityScore": 2.8,
+        "impactScore": 3.6
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "vulnerability@ncsc.ch",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-36"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://borelenzo.github.io/stuff/2025/02/15/CVE-2025-0001.html",
+      "source": "vulnerability@ncsc.ch"
+    }
+  ]
+}
--- a/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json
+++ b/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json
@ -2,7 +2,7 @@
  "id": "CVE-2025-0354",
  "sourceIdentifier": "psirt-info@cyber.jp.nec.com",
  "published": "2025-01-15T08:15:26.330",
-  "lastModified": "2025-01-21T04:15:07.147",
+  "lastModified": "2025-02-17T10:15:08.767",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
@ -22,20 +22,20 @@
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
-          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
-          "baseScore": 7.2,
-          "baseSeverity": "HIGH",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
+          "baseScore": 4.8,
+          "baseSeverity": "MEDIUM",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
-          "userInteraction": "NONE",
-          "scope": "UNCHANGED",
-          "confidentialityImpact": "HIGH",
-          "integrityImpact": "HIGH",
-          "availabilityImpact": "HIGH"
+          "userInteraction": "REQUIRED",
+          "scope": "CHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "LOW",
+          "availabilityImpact": "NONE"
        },
-        "exploitabilityScore": 1.2,
-        "impactScore": 5.9
+        "exploitabilityScore": 1.7,
+        "impactScore": 2.7
      }
    ]
  },
--- a/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json
+++ b/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json
@ -2,7 +2,7 @@
  "id": "CVE-2025-0356",
  "sourceIdentifier": "psirt-info@cyber.jp.nec.com",
  "published": "2025-01-15T08:15:26.650",
-  "lastModified": "2025-01-21T04:15:07.980",
+  "lastModified": "2025-02-17T10:15:08.973",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
@ -22,20 +22,20 @@
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
-          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
-          "baseScore": 4.8,
-          "baseSeverity": "MEDIUM",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 7.2,
+          "baseSeverity": "HIGH",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
-          "userInteraction": "REQUIRED",
-          "scope": "CHANGED",
-          "confidentialityImpact": "LOW",
-          "integrityImpact": "LOW",
-          "availabilityImpact": "NONE"
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
        },
-        "exploitabilityScore": 1.7,
-        "impactScore": 2.7
+        "exploitabilityScore": 1.2,
+        "impactScore": 5.9
      }
    ]
  },
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2025-02-17T09:00:46.343484+00:00
+2025-02-17T11:01:03.143011+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2025-02-17T08:15:08.540000+00:00
+2025-02-17T10:15:08.973000+00:00
 ```

 ### Last Data Feed Release
@ -33,22 +33,22 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs

 ```plain
-281539
+281540
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `3`
+Recently added CVEs: `1`

- [CVE-2025-1379](CVE-2025/CVE-2025-13xx/CVE-2025-1379.json) (`2025-02-17T07:15:08.503`)
- [CVE-2025-1380](CVE-2025/CVE-2025-13xx/CVE-2025-1380.json) (`2025-02-17T07:15:08.953`)
- [CVE-2025-1381](CVE-2025/CVE-2025-13xx/CVE-2025-1381.json) (`2025-02-17T08:15:08.540`)
+- [CVE-2025-0001](CVE-2025/CVE-2025-00xx/CVE-2025-0001.json) (`2025-02-17T10:15:08.550`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `0`
+Recently modified CVEs: `2`

+- [CVE-2025-0354](CVE-2025/CVE-2025-03xx/CVE-2025-0354.json) (`2025-02-17T10:15:08.767`)
+- [CVE-2025-0356](CVE-2025/CVE-2025-03xx/CVE-2025-0356.json) (`2025-02-17T10:15:08.973`)


 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -278650,6 +278650,7 @@ CVE-2024-9996,0,0,188a485776485f9e8dc9179367e7d7a07cab50fec958b227455a8676b58582
 CVE-2024-9997,0,0,c951d1dfad7abcf434414a546a4fccad53052e3fa40c16bd73a8c37c97d5eba8,2024-11-01T16:27:34.960000
 CVE-2024-9998,0,0,0419a3dad23ae850906f2650ca4d40b180999b4a5d360bcc1b838f8893ae2af5,2024-11-12T11:15:03.840000
 CVE-2024-9999,0,0,cad7c92a380ae514b71a1dd06f3b79a139ea65cb773110d32be2b942d72ae5af,2024-11-13T17:01:58.603000
+CVE-2025-0001,1,1,5760e2d1c8a423ec1fce437052bab776887b78a7792a13401fa67b8fbdd14b3d,2025-02-17T10:15:08.550000
 CVE-2025-0015,0,0,321b388b66a6f24115764aad9373a5b4540cea827bc5f4a9ec4c99c3ab51602a,2025-02-03T16:15:33.770000
 CVE-2025-0053,0,0,b8373307f8e7839c7035660b5035e0ad8594f9f834cb4c64706371a8c3a2ce31,2025-01-14T01:15:15.403000
 CVE-2025-0054,0,0,22a967176aaf42249dc9b67293cdaa2b5c3cbf9a9dce95abf2b5e51fe83ab402,2025-02-11T06:15:19.863000
@ -278792,9 +278793,9 @@ CVE-2025-0348,0,0,caf29c7d10aa1d0bc868897d1f5fe71d1c997b913af05adf015858af50a208
 CVE-2025-0349,0,0,5c5bde0373ec0c26c713a0d565cd6e4461e0dfe3c3d54fa435cc26640f811d63,2025-01-09T11:15:16.547000
 CVE-2025-0350,0,0,568075e13fb305f34efa279da3968d622f1d523cffbec586aa7d1232c4534cda,2025-02-04T20:36:53.180000
 CVE-2025-0353,0,0,fefe78eacfc73b3da0e296010fc7bc87595c20639bad926c14a54ed0a611d0ba,2025-01-29T12:15:29.477000
-CVE-2025-0354,0,0,428d38f2781814173c07276c3123b7894bf18887b24de42981453e8b9fe91fd5,2025-01-21T04:15:07.147000
+CVE-2025-0354,0,1,55d23a0a87a8729e983746f1f043f903439316639d87df33d11e2f4253dd49f1,2025-02-17T10:15:08.767000
 CVE-2025-0355,0,0,60139aab38184d5553deea3c96ee67451ff405f2b0f65acb32b8c01c91586866,2025-01-21T04:15:07.877000
-CVE-2025-0356,0,0,00c4e703b995e5d2c2e4f165848b6efa20e85198e0b810bdb74efa5802e75a40,2025-01-21T04:15:07.980000
+CVE-2025-0356,0,1,7e522859a3d0689ccb777c8fef64a1b2b2f878cb4a2c9cceba026470a39874f6,2025-02-17T10:15:08.973000
 CVE-2025-0357,0,0,0ae647dab29c7a227a1c7ef392ca808faddaedd9823b613fe8bd7952dd9efb7a,2025-01-25T02:15:26.990000
 CVE-2025-0364,0,0,2423f698b570bf74da97e05ed992c1dc720ce0cd77b54afdd0e3b50ba4f8a276,2025-02-04T18:15:35.067000
 CVE-2025-0365,0,0,68c9fa607d9af008f74f0910ed30a33940a0fb9c7f83018a7eca1ddc882dffeb,2025-02-01T06:15:31.213000
@ -279314,9 +279315,9 @@ CVE-2025-1374,0,0,b7fa05f0c4c2d66fd4f270cc4250c2b3257c8dc0e6f850c49a3e1698d2a969
 CVE-2025-1376,0,0,9cb77eaa81162f231e769e62670da692672bd5970c49c962e7dfd1fdd0bc00ba,2025-02-17T05:15:09.807000
 CVE-2025-1377,0,0,84dbd56dc863bede5cc83182ed6a5edcda6cbf59030317e1e5400d3b48957f28,2025-02-17T05:15:10.090000
 CVE-2025-1378,0,0,7b9abfd951882c59db8337f9925f5cb5ff8b160c284ba7a02d59e3bbbeb92335,2025-02-17T06:15:13.277000
-CVE-2025-1379,1,1,f06cc7a550feac8469cc71237ab20b6df0f3252ba0fd8ff6d20187a309fc5ba0,2025-02-17T07:15:08.503000
-CVE-2025-1380,1,1,97acbcf19503911aa92ecfe9e3db3a7b50e5444b606fa09cc94f0673917599e7,2025-02-17T07:15:08.953000
-CVE-2025-1381,1,1,8a9685f5e5b8ebad8a0ac5f23a89b6b3ba45fc062151114d3deac1372ed1f0ae,2025-02-17T08:15:08.540000
+CVE-2025-1379,0,0,f06cc7a550feac8469cc71237ab20b6df0f3252ba0fd8ff6d20187a309fc5ba0,2025-02-17T07:15:08.503000
+CVE-2025-1380,0,0,97acbcf19503911aa92ecfe9e3db3a7b50e5444b606fa09cc94f0673917599e7,2025-02-17T07:15:08.953000
+CVE-2025-1381,0,0,8a9685f5e5b8ebad8a0ac5f23a89b6b3ba45fc062151114d3deac1372ed1f0ae,2025-02-17T08:15:08.540000
 CVE-2025-1387,0,0,3471c5e221fd26cc82d790d0348e17ce666394a812c51ab6ee55856ad41c6d05,2025-02-17T04:15:08.807000
 CVE-2025-1388,0,0,6166d0831a99cbb271e76281dd624232fbaf9903152209f7151545224b25416d,2025-02-17T04:15:08.960000
 CVE-2025-1389,0,0,b6f1b0c672dbbad3874206b7be5adc417f88010255a18af2ae0024e0bb3a7bd5,2025-02-17T05:15:10.317000