From 77063550c75918a43857ccb5a84bd1233b0e5b13 Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Thu, 22 Feb 2024 00:55:30 +0000 Subject: [PATCH] Auto-Update: 2024-02-22T00:55:27.093221+00:00 --- CVE-2023/CVE-2023-35xx/CVE-2023-3509.json | 59 +++++++++++++++++++ CVE-2023/CVE-2023-441xx/CVE-2023-44188.json | 4 +- CVE-2023/CVE-2023-58xx/CVE-2023-5841.json | 6 +- CVE-2023/CVE-2023-64xx/CVE-2023-6477.json | 59 +++++++++++++++++++ CVE-2024/CVE-2024-04xx/CVE-2024-0410.json | 59 +++++++++++++++++++ CVE-2024/CVE-2024-04xx/CVE-2024-0446.json | 32 +++++++++++ CVE-2024/CVE-2024-08xx/CVE-2024-0861.json | 59 +++++++++++++++++++ CVE-2024/CVE-2024-14xx/CVE-2024-1451.json | 59 +++++++++++++++++++ CVE-2024/CVE-2024-14xx/CVE-2024-1485.json | 12 ++-- CVE-2024/CVE-2024-15xx/CVE-2024-1525.json | 55 ++++++++++++++++++ CVE-2024/CVE-2024-231xx/CVE-2024-23120.json | 32 +++++++++++ CVE-2024/CVE-2024-261xx/CVE-2024-26147.json | 59 +++++++++++++++++++ CVE-2024/CVE-2024-261xx/CVE-2024-26148.json | 63 +++++++++++++++++++++ README.md | 42 ++++++-------- 14 files changed, 565 insertions(+), 35 deletions(-) create mode 100644 CVE-2023/CVE-2023-35xx/CVE-2023-3509.json create mode 100644 CVE-2023/CVE-2023-64xx/CVE-2023-6477.json create mode 100644 CVE-2024/CVE-2024-04xx/CVE-2024-0410.json create mode 100644 CVE-2024/CVE-2024-04xx/CVE-2024-0446.json create mode 100644 CVE-2024/CVE-2024-08xx/CVE-2024-0861.json create mode 100644 CVE-2024/CVE-2024-14xx/CVE-2024-1451.json create mode 100644 CVE-2024/CVE-2024-15xx/CVE-2024-1525.json create mode 100644 CVE-2024/CVE-2024-231xx/CVE-2024-23120.json create mode 100644 CVE-2024/CVE-2024-261xx/CVE-2024-26147.json create mode 100644 CVE-2024/CVE-2024-261xx/CVE-2024-26148.json diff --git a/CVE-2023/CVE-2023-35xx/CVE-2023-3509.json b/CVE-2023/CVE-2023-35xx/CVE-2023-3509.json new file mode 100644 index 00000000000..1c0071c47f2 --- /dev/null +++ b/CVE-2023/CVE-2023-35xx/CVE-2023-3509.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2023-3509", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-21T23:15:08.223", + "lastModified": "2024-02-21T23:15:08.223", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab affecting all versions before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. It was possible for group members with sub-maintainer role to change the title of privately accessible deploy keys associated with projects in the group." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 3.7, + "baseSeverity": "LOW" + }, + "exploitabilityScore": 1.2, + "impactScore": 2.5 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-284" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/416945", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2037814", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2023/CVE-2023-441xx/CVE-2023-44188.json b/CVE-2023/CVE-2023-441xx/CVE-2023-44188.json index 91a73c41ba8..c4adfff241e 100644 --- a/CVE-2023/CVE-2023-441xx/CVE-2023-44188.json +++ b/CVE-2023/CVE-2023-441xx/CVE-2023-44188.json @@ -2,12 +2,12 @@ "id": "CVE-2023-44188", "sourceIdentifier": "sirt@juniper.net", "published": "2023-10-11T21:15:10.047", - "lastModified": "2023-10-25T23:15:17.703", + "lastModified": "2024-02-21T23:15:08.443", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", - "value": "\nA Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Juniper Networks Junos OS allows a network-based authenticated attacker to flood the system with multiple telemetry requests, causing the Junos Kernel Debugging Streaming Daemon (jkdsd) process to crash, leading to a Denial of Service (DoS). Continued receipt and processing of telemetry requests will repeatedly crash the jkdsd process and sustain the Denial of Service (DoS) condition.\n\nThis issue is seen on all Junos platforms. The crash is triggered when multiple telemetry requests come from different collectors. As the load increases, the Dynamic Rendering Daemon (drend) decides to defer processing and continue later, which results in a timing issue accessing stale memory, causing the jkdsd process to crash and restart.\n\nNote: jkdsd is not shipped with SRX Series devices and therefore are not affected by this vulnerability.\nThis issue affects:\n\nJuniper Networks Junos OS:\n\n\n\n * 20.4 versions prior to 20.4R3-S9;\n * 21.1 versions 21.1R1 and later;\n * 21.2 versions prior to 21.2R3-S6;\n * 21.3 versions prior to 21.3R3-S5;\n * 21.4 versions prior to 21.4R3-S5;\n * 22.1 versions prior to 22.1R3-S4;\n * 22.2 versions prior to 22.2R3-S2;\n * 22.3 versions prior to 22.3R2-S1, 22.3R3-S1;\n * 22.4 versions prior to 22.4R2-S2, 22.4R3;\n * 23.1 versions prior to 23.1R2;\n * 23.2 versions prior to 23.2R2.\n\n\n\n\nThis issue does not affect Juniper Networks Junos OS versions prior to 19.4R1.\n\n\n\n" + "value": "\nA Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in telemetry processing of Juniper Networks Junos OS allows a network-based authenticated attacker to flood the system with multiple telemetry requests, causing the Junos Kernel Debugging Streaming Daemon (jkdsd) process to crash, leading to a Denial of Service (DoS). Continued receipt and processing of telemetry requests will repeatedly crash the jkdsd process and sustain the Denial of Service (DoS) condition.\n\nThis issue is seen on all Junos platforms. The crash is triggered when multiple telemetry requests come from different collectors. As the load increases, the Dynamic Rendering Daemon (drend) decides to defer processing and continue later, which results in a timing issue accessing stale memory, causing the jkdsd process to crash and restart.\n\nNote: jkdsd is not shipped with SRX Series devices and therefore are not affected by this vulnerability.\nThis issue affects:\n\nJuniper Networks Junos OS:\n\n\n\n * 20.4 versions prior to 20.4R3-S9;\n * 21.1 versions 21.1R1 and later;\n * 21.2 versions prior to 21.2R3-S6;\n * 21.3 versions prior to 21.3R3-S5;\n * 21.4 versions prior to 21.4R3-S5;\n * 22.1 versions prior to 22.1R3-S4;\n * 22.2 versions prior to 22.2R3-S2;\n * 22.3 versions prior to 22.3R2-S1, 22.3R3-S1;\n * 22.4 versions prior to 22.4R2-S2, 22.4R3;\n * 23.1 versions prior to 23.1R2.\n\n\n\n\nThis issue does not affect Juniper Networks Junos OS versions prior to 19.4R1.\n\n\n\n" }, { "lang": "es", diff --git a/CVE-2023/CVE-2023-58xx/CVE-2023-5841.json b/CVE-2023/CVE-2023-58xx/CVE-2023-5841.json index 727e216d2c3..dc44f0463e5 100644 --- a/CVE-2023/CVE-2023-58xx/CVE-2023-5841.json +++ b/CVE-2023/CVE-2023-58xx/CVE-2023-5841.json @@ -2,12 +2,12 @@ "id": "CVE-2023-5841", "sourceIdentifier": "cve@takeonme.org", "published": "2024-02-01T19:15:08.097", - "lastModified": "2024-02-09T20:19:43.133", - "vulnStatus": "Analyzed", + "lastModified": "2024-02-22T00:15:51.440", + "vulnStatus": "Modified", "descriptions": [ { "lang": "en", - "value": "Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX\u00a0image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability." + "value": "Due to a failure in validating the number of scanline samples of a OpenEXR file containing deep scanline data, Academy Software Foundation OpenEX\u00a0image parsing library version 3.2.1 and prior is susceptible to a heap-based buffer overflow vulnerability. This issue was resolved as of versions\u00a0v3.2.2 and v3.1.12 of the affected library.\n" }, { "lang": "es", diff --git a/CVE-2023/CVE-2023-64xx/CVE-2023-6477.json b/CVE-2023/CVE-2023-64xx/CVE-2023-6477.json new file mode 100644 index 00000000000..cbde0323ab6 --- /dev/null +++ b/CVE-2023/CVE-2023-64xx/CVE-2023-6477.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2023-6477", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-22T00:15:51.533", + "lastModified": "2024-02-22T00:15:51.533", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab EE affecting all versions starting from 16.5 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. When a user is assigned a custom role with admin_group_member permission, they may be able to make a group, other members or themselves Owners of that group, which may lead to privilege escalation." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "LOW", + "baseScore": 6.7, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 1.2, + "impactScore": 5.5 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-269" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/433463", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2270898", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-04xx/CVE-2024-0410.json b/CVE-2024/CVE-2024-04xx/CVE-2024-0410.json new file mode 100644 index 00000000000..1a4020dc544 --- /dev/null +++ b/CVE-2024/CVE-2024-04xx/CVE-2024-0410.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2024-0410", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-22T00:15:51.723", + "lastModified": "2024-02-22T00:15:51.723", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An authorization bypass vulnerability was discovered in GitLab affecting versions 15.1 prior to 16.7.6, 16.8 prior to 16.8.3, and 16.9 prior to 16.9.1. A developer could bypass CODEOWNERS approvals by creating a merge conflict." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE", + "baseScore": 7.7, + "baseSeverity": "HIGH" + }, + "exploitabilityScore": 1.3, + "impactScore": 5.8 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-284" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/437988", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2296778", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-04xx/CVE-2024-0446.json b/CVE-2024/CVE-2024-04xx/CVE-2024-0446.json new file mode 100644 index 00000000000..ecb511b5028 --- /dev/null +++ b/CVE-2024/CVE-2024-04xx/CVE-2024-0446.json @@ -0,0 +1,32 @@ +{ + "id": "CVE-2024-0446", + "sourceIdentifier": "psirt@autodesk.com", + "published": "2024-02-22T00:15:51.903", + "lastModified": "2024-02-22T00:15:51.903", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "A maliciously crafted STP, CATPART or MODEL file when parsed in ASMKERN228A.dll through Autodesk AutoCAD can force an Out-of-Bound Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.\u00a0\n" + } + ], + "metrics": {}, + "weaknesses": [ + { + "source": "psirt@autodesk.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-787" + } + ] + } + ], + "references": [ + { + "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002", + "source": "psirt@autodesk.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-08xx/CVE-2024-0861.json b/CVE-2024/CVE-2024-08xx/CVE-2024-0861.json new file mode 100644 index 00000000000..cdccc82e791 --- /dev/null +++ b/CVE-2024/CVE-2024-08xx/CVE-2024-0861.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2024-0861", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-22T00:15:51.973", + "lastModified": "2024-02-22T00:15:51.973", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab EE affecting all versions starting from 16.4 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. Users with the `Guest` role can change `Custom dashboard projects` settings contrary to permissions." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 4.3, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-285" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/439240", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2316435", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-14xx/CVE-2024-1451.json b/CVE-2024/CVE-2024-14xx/CVE-2024-1451.json new file mode 100644 index 00000000000..e53ed16ab9a --- /dev/null +++ b/CVE-2024/CVE-2024-14xx/CVE-2024-1451.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2024-1451", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-22T00:15:52.153", + "lastModified": "2024-02-22T00:15:52.153", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.9 before 16.9.1. A crafted payload added to the user profile page could lead to a stored XSS on the client side, allowing attackers to perform arbitrary actions on behalf of victims.\"" + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE", + "baseScore": 8.7, + "baseSeverity": "HIGH" + }, + "exploitabilityScore": 2.3, + "impactScore": 5.8 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/441457", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2371126", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-14xx/CVE-2024-1485.json b/CVE-2024/CVE-2024-14xx/CVE-2024-1485.json index f77eb12ef28..c3eca2edf42 100644 --- a/CVE-2024/CVE-2024-14xx/CVE-2024-1485.json +++ b/CVE-2024/CVE-2024-14xx/CVE-2024-1485.json @@ -2,7 +2,7 @@ "id": "CVE-2024-1485", "sourceIdentifier": "secalert@redhat.com", "published": "2024-02-14T00:15:46.783", - "lastModified": "2024-02-21T17:15:08.377", + "lastModified": "2024-02-21T23:15:08.573", "vulnStatus": "Awaiting Analysis", "descriptions": [ { @@ -21,19 +21,19 @@ "type": "Secondary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:H", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:H", "attackVector": "NETWORK", - "attackComplexity": "LOW", + "attackComplexity": "HIGH", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", - "baseScore": 9.3, - "baseSeverity": "CRITICAL" + "baseScore": 8.0, + "baseSeverity": "HIGH" }, - "exploitabilityScore": 2.8, + "exploitabilityScore": 1.6, "impactScore": 5.8 } ] diff --git a/CVE-2024/CVE-2024-15xx/CVE-2024-1525.json b/CVE-2024/CVE-2024-15xx/CVE-2024-1525.json new file mode 100644 index 00000000000..51d2d19aaa2 --- /dev/null +++ b/CVE-2024/CVE-2024-15xx/CVE-2024-1525.json @@ -0,0 +1,55 @@ +{ + "id": "CVE-2024-1525", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-02-22T00:15:52.327", + "lastModified": "2024-02-22T00:15:52.327", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab CE/EE affecting all versions starting from 16.1 before 16.7.6, all versions starting from 16.8 before 16.8.3, all versions starting from 16.9 before 16.9.1. Under some specialized conditions, an LDAP user may be able to reset their password using their verified secondary email address and sign-in using direct authentication with the reset password, bypassing LDAP." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE", + "baseScore": 5.3, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 1.6, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-284" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/438144", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-231xx/CVE-2024-23120.json b/CVE-2024/CVE-2024-231xx/CVE-2024-23120.json new file mode 100644 index 00000000000..233a3bcac0c --- /dev/null +++ b/CVE-2024/CVE-2024-231xx/CVE-2024-23120.json @@ -0,0 +1,32 @@ +{ + "id": "CVE-2024-23120", + "sourceIdentifier": "psirt@autodesk.com", + "published": "2024-02-22T00:15:52.510", + "lastModified": "2024-02-22T00:15:52.510", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "A maliciously crafted STP file when parsed in ASMIMPORT228A.dll through Autodesk AutoCAD can force an Out-of-Bound Write. A malicious actor can leverage this vulnerability to cause a crash, write sensitive data, or execute arbitrary code in the context of the current process.\n" + } + ], + "metrics": {}, + "weaknesses": [ + { + "source": "psirt@autodesk.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-787" + } + ] + } + ], + "references": [ + { + "url": "https://www.autodesk.com/trust/security-advisories/adsk-sa-2024-0002", + "source": "psirt@autodesk.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-261xx/CVE-2024-26147.json b/CVE-2024/CVE-2024-261xx/CVE-2024-26147.json new file mode 100644 index 00000000000..cad2737ce6d --- /dev/null +++ b/CVE-2024/CVE-2024-261xx/CVE-2024-26147.json @@ -0,0 +1,59 @@ +{ + "id": "CVE-2024-26147", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-02-21T23:15:08.763", + "lastModified": "2024-02-21T23:15:08.763", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an `index.yaml` file or a plugins `plugin.yaml` file were missing all metadata a panic would occur in Helm. In the Helm SDK, this is found when using the `LoadIndexFile` or `DownloadIndexFile` functions in the `repo` package or the `LoadDir` function in the `plugin` package. For the Helm client this impacts functions around adding a repository and all Helm functions if a malicious plugin is added as Helm inspects all known plugins on each invocation. This issue has been resolved in Helm v3.14.2. If a malicious plugin has been added which is causing all Helm client commands to panic, the malicious plugin can be manually removed from the filesystem. If using Helm SDK versions prior to 3.14.2, calls to affected functions can use `recover` to catch the panic." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "HIGH", + "baseScore": 7.5, + "baseSeverity": "HIGH" + }, + "exploitabilityScore": 3.9, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-457" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/helm/helm/commit/bb4cc9125503a923afb7988f3eb478722a8580af", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/helm/helm/security/advisories/GHSA-r53h-jv2g-vpx6", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-261xx/CVE-2024-26148.json b/CVE-2024/CVE-2024-261xx/CVE-2024-26148.json new file mode 100644 index 00000000000..4fc9c86e8b9 --- /dev/null +++ b/CVE-2024/CVE-2024-261xx/CVE-2024-26148.json @@ -0,0 +1,63 @@ +{ + "id": "CVE-2024-26148", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-02-21T23:15:08.970", + "lastModified": "2024-02-21T23:15:08.970", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "Querybook is a user interface for querying big data. Prior to version 3.31.1, there is a vulnerability in Querybook's rich text editor that enables users to input arbitrary URLs without undergoing necessary validation. This particular security flaw allows the use of `javascript:` protocol which can potentially trigger arbitrary client-side execution. The most extreme exploit of this flaw could occur when an admin user unknowingly clicks on a cross-site scripting URL, thereby unintentionally compromising admin role access to the attacker. A patch to rectify this issue has been introduced in Querybook version `3.31.1`. The fix is backward compatible and automatically fixes existing DataDocs. There are no known workarounds for this issue, except for manually checking each URL prior to clicking on them." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE", + "baseScore": 6.1, + "baseSeverity": "MEDIUM" + }, + "exploitabilityScore": 2.8, + "impactScore": 2.7 + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/pinterest/querybook/commit/bc620dabaaf13ff1dcb30af0b46a490403fb9908", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/pinterest/querybook/pull/1412", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/pinterest/querybook/security/advisories/GHSA-fh6g-gvvp-587f", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index 3b5f0699506..2403734375b 100644 --- a/README.md +++ b/README.md @@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-02-21T23:00:25.482001+00:00 +2024-02-22T00:55:27.093221+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-02-21T22:15:49.117000+00:00 +2024-02-22T00:15:52.510000+00:00 ``` ### Last Data Feed Release @@ -29,38 +29,32 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -239156 +239166 ``` ### CVEs added in the last Commit -Recently added CVEs: `13` +Recently added CVEs: `10` -* [CVE-2023-24330](CVE-2023/CVE-2023-243xx/CVE-2023-24330.json) (`2024-02-21T21:15:08.503`) -* [CVE-2023-24331](CVE-2023/CVE-2023-243xx/CVE-2023-24331.json) (`2024-02-21T21:15:08.567`) -* [CVE-2023-24332](CVE-2023/CVE-2023-243xx/CVE-2023-24332.json) (`2024-02-21T21:15:08.617`) -* [CVE-2023-24333](CVE-2023/CVE-2023-243xx/CVE-2023-24333.json) (`2024-02-21T21:15:08.673`) -* [CVE-2023-24334](CVE-2023/CVE-2023-243xx/CVE-2023-24334.json) (`2024-02-21T21:15:08.723`) -* [CVE-2023-37177](CVE-2023/CVE-2023-371xx/CVE-2023-37177.json) (`2024-02-21T21:15:08.773`) -* [CVE-2023-38844](CVE-2023/CVE-2023-388xx/CVE-2023-38844.json) (`2024-02-21T21:15:08.840`) -* [CVE-2023-51828](CVE-2023/CVE-2023-518xx/CVE-2023-51828.json) (`2024-02-21T22:15:48.960`) -* [CVE-2023-52153](CVE-2023/CVE-2023-521xx/CVE-2023-52153.json) (`2024-02-21T22:15:49.023`) -* [CVE-2023-52154](CVE-2023/CVE-2023-521xx/CVE-2023-52154.json) (`2024-02-21T22:15:49.073`) -* [CVE-2023-52155](CVE-2023/CVE-2023-521xx/CVE-2023-52155.json) (`2024-02-21T22:15:49.117`) -* [CVE-2024-23654](CVE-2024/CVE-2024-236xx/CVE-2024-23654.json) (`2024-02-21T21:15:09.060`) -* [CVE-2024-25124](CVE-2024/CVE-2024-251xx/CVE-2024-25124.json) (`2024-02-21T21:15:09.250`) +* [CVE-2023-3509](CVE-2023/CVE-2023-35xx/CVE-2023-3509.json) (`2024-02-21T23:15:08.223`) +* [CVE-2023-6477](CVE-2023/CVE-2023-64xx/CVE-2023-6477.json) (`2024-02-22T00:15:51.533`) +* [CVE-2024-26147](CVE-2024/CVE-2024-261xx/CVE-2024-26147.json) (`2024-02-21T23:15:08.763`) +* [CVE-2024-26148](CVE-2024/CVE-2024-261xx/CVE-2024-26148.json) (`2024-02-21T23:15:08.970`) +* [CVE-2024-0410](CVE-2024/CVE-2024-04xx/CVE-2024-0410.json) (`2024-02-22T00:15:51.723`) +* [CVE-2024-0446](CVE-2024/CVE-2024-04xx/CVE-2024-0446.json) (`2024-02-22T00:15:51.903`) +* [CVE-2024-0861](CVE-2024/CVE-2024-08xx/CVE-2024-0861.json) (`2024-02-22T00:15:51.973`) +* [CVE-2024-1451](CVE-2024/CVE-2024-14xx/CVE-2024-1451.json) (`2024-02-22T00:15:52.153`) +* [CVE-2024-1525](CVE-2024/CVE-2024-15xx/CVE-2024-1525.json) (`2024-02-22T00:15:52.327`) +* [CVE-2024-23120](CVE-2024/CVE-2024-231xx/CVE-2024-23120.json) (`2024-02-22T00:15:52.510`) ### CVEs modified in the last Commit -Recently modified CVEs: `6` +Recently modified CVEs: `3` -* [CVE-2010-3322](CVE-2010/CVE-2010-33xx/CVE-2010-3322.json) (`2024-02-21T21:08:34.413`) -* [CVE-2020-25644](CVE-2020/CVE-2020-256xx/CVE-2020-25644.json) (`2024-02-21T21:08:54.470`) -* [CVE-2021-39155](CVE-2021/CVE-2021-391xx/CVE-2021-39155.json) (`2024-02-21T21:01:31.320`) -* [CVE-2023-44981](CVE-2023/CVE-2023-449xx/CVE-2023-44981.json) (`2024-02-21T21:10:46.910`) -* [CVE-2023-42503](CVE-2023/CVE-2023-425xx/CVE-2023-42503.json) (`2024-02-21T21:27:10.477`) -* [CVE-2024-0822](CVE-2024/CVE-2024-08xx/CVE-2024-0822.json) (`2024-02-21T21:15:08.900`) +* [CVE-2023-44188](CVE-2023/CVE-2023-441xx/CVE-2023-44188.json) (`2024-02-21T23:15:08.443`) +* [CVE-2023-5841](CVE-2023/CVE-2023-58xx/CVE-2023-5841.json) (`2024-02-22T00:15:51.440`) +* [CVE-2024-1485](CVE-2024/CVE-2024-14xx/CVE-2024-1485.json) (`2024-02-21T23:15:08.573`) ## Download and Usage