Auto-Update: 2024-04-15T04:00:46.204014+00:00

2025-05-08 19:47:09 +00:00 · 2024-04-15 04:03:35 +00:00 · 2024-04-15 04:03:35 +00:00 · 7b75dadf75
commit 7b75dadf75
parent f18f8253e1
8 changed files with 158 additions and 38 deletions
--- a/CVE-2024/CVE-2024-298xx/CVE-2024-29844.json
+++ b/CVE-2024/CVE-2024-298xx/CVE-2024-29844.json
@ -2,7 +2,7 @@
  "id": "CVE-2024-29844",
  "sourceIdentifier": "430a6cef-dc26-47e3-9fa8-52fb7f19644e",
  "published": "2024-04-15T00:15:14.573",
-  "lastModified": "2024-04-15T00:15:14.573",
+  "lastModified": "2024-04-15T03:16:06.320",
  "vulnStatus": "Received",
  "descriptions": [
    {
@ -17,20 +17,20 @@
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
-          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
-          "integrityImpact": "NONE",
+          "integrityImpact": "HIGH",
-          "availabilityImpact": "NONE",
+          "availabilityImpact": "HIGH",
-          "baseScore": 7.5,
+          "baseScore": 9.8,
-          "baseSeverity": "HIGH"
+          "baseSeverity": "CRITICAL"
        },
        "exploitabilityScore": 3.9,
-        "impactScore": 3.6
+        "impactScore": 5.9
      }
    ]
  },
--- a/CVE-2024/CVE-2024-31xx/CVE-2024-3157.json
+++ b/CVE-2024/CVE-2024-31xx/CVE-2024-3157.json
@ -2,7 +2,7 @@
  "id": "CVE-2024-3157",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2024-04-10T19:15:49.623",
-  "lastModified": "2024-04-14T04:15:56.260",
+  "lastModified": "2024-04-15T03:16:07.840",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
@ -20,6 +20,10 @@
      "url": "https://issues.chromium.org/issues/331237485",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EW66LXDACTB5FCHLUPZOGD2KA2J62Q2/",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NDHNEFD76ORM7WBWAEZT6HSYDMZVIED4/",
      "source": "chrome-cve-admin@google.com"
--- a/CVE-2024/CVE-2024-35xx/CVE-2024-3515.json
+++ b/CVE-2024/CVE-2024-35xx/CVE-2024-3515.json
@ -2,7 +2,7 @@
  "id": "CVE-2024-3515",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2024-04-10T19:15:49.670",
-  "lastModified": "2024-04-14T04:15:56.830",
+  "lastModified": "2024-04-15T03:16:07.907",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
@ -20,6 +20,10 @@
      "url": "https://issues.chromium.org/issues/331123811",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EW66LXDACTB5FCHLUPZOGD2KA2J62Q2/",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NDHNEFD76ORM7WBWAEZT6HSYDMZVIED4/",
      "source": "chrome-cve-admin@google.com"
--- a/CVE-2024/CVE-2024-35xx/CVE-2024-3516.json
+++ b/CVE-2024/CVE-2024-35xx/CVE-2024-3516.json
@ -2,7 +2,7 @@
  "id": "CVE-2024-3516",
  "sourceIdentifier": "chrome-cve-admin@google.com",
  "published": "2024-04-10T19:15:49.717",
-  "lastModified": "2024-04-14T04:15:56.870",
+  "lastModified": "2024-04-15T03:16:07.943",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
@ -20,6 +20,10 @@
      "url": "https://issues.chromium.org/issues/328859176",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5EW66LXDACTB5FCHLUPZOGD2KA2J62Q2/",
      "source": "chrome-cve-admin@google.com"
    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NDHNEFD76ORM7WBWAEZT6HSYDMZVIED4/",
      "source": "chrome-cve-admin@google.com"
--- a/CVE-2024/CVE-2024-37xx/CVE-2024-3772.json
+++ b/CVE-2024/CVE-2024-37xx/CVE-2024-3772.json
@ -0,0 +1,55 @@
 {
  "id": "CVE-2024-3772",
  "sourceIdentifier": "430a6cef-dc26-47e3-9fa8-52fb7f19644e",
  "published": "2024-04-15T03:16:07.987",
  "lastModified": "2024-04-15T03:16:07.987",
  "vulnStatus": "Received",
  "descriptions": [
    {
      "lang": "en",
      "value": "Regular expression denial of service in Pydanic < 2.4.0, < 1.10.13 allows remote attackers to cause denial of service via a crafted email string.\n"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "430a6cef-dc26-47e3-9fa8-52fb7f19644e",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "HIGH",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "availabilityImpact": "HIGH",
          "baseScore": 5.9,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 3.6
      }
    ]
  },
  "weaknesses": [
    {
      "source": "430a6cef-dc26-47e3-9fa8-52fb7f19644e",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-1333"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://github.com/pydantic/pydantic/pull/7360",
      "source": "430a6cef-dc26-47e3-9fa8-52fb7f19644e"
    }
  ]
 }
--- a/CVE-2024/CVE-2024-37xx/CVE-2024-3774.json
+++ b/CVE-2024/CVE-2024-37xx/CVE-2024-3774.json
@ -0,0 +1,55 @@
 {
  "id": "CVE-2024-3774",
  "sourceIdentifier": "twcert@cert.org.tw",
  "published": "2024-04-15T03:16:08.197",
  "lastModified": "2024-04-15T03:16:08.197",
  "vulnStatus": "Received",
  "descriptions": [
    {
      "lang": "en",
      "value": "aEnrich Technology a+HRD's functionality for front-end retrieval of system configuration values lacks proper restrictions on a specific parameter, allowing attackers to modify this parameter to access certain sensitive system configuration values."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "twcert@cert.org.tw",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4
      }
    ]
  },
  "weaknesses": [
    {
      "source": "twcert@cert.org.tw",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://www.twcert.org.tw/tw/cp-132-7724-c28d3-1.html",
      "source": "twcert@cert.org.tw"
    }
  ]
 }
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update
 ```plain
-2024-04-15T02:00:31.232180+00:00
+2024-04-15T04:00:46.204014+00:00
 ```
 ### Most recent CVE Modification Timestamp synchronized with NVD
 ```plain
-2024-04-15T00:15:14.773000+00:00
+2024-04-15T03:16:08.197000+00:00
 ```
 ### Last Data Feed Release
@ -33,29 +33,25 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs
 ```plain
-245433
+245435
 ```
 ### CVEs added in the last Commit
-Recently added CVEs: `10`
+Recently added CVEs: `2`
- [CVE-2024-29836](CVE-2024/CVE-2024-298xx/CVE-2024-29836.json) (`2024-04-15T00:15:12.847`)
+- [CVE-2024-3772](CVE-2024/CVE-2024-37xx/CVE-2024-3772.json) (`2024-04-15T03:16:07.987`)
- [CVE-2024-29837](CVE-2024/CVE-2024-298xx/CVE-2024-29837.json) (`2024-04-15T00:15:13.097`)
+- [CVE-2024-3774](CVE-2024/CVE-2024-37xx/CVE-2024-3774.json) (`2024-04-15T03:16:08.197`)
 - [CVE-2024-29838](CVE-2024/CVE-2024-298xx/CVE-2024-29838.json) (`2024-04-15T00:15:13.307`)
 - [CVE-2024-29839](CVE-2024/CVE-2024-298xx/CVE-2024-29839.json) (`2024-04-15T00:15:13.533`)
 - [CVE-2024-29840](CVE-2024/CVE-2024-298xx/CVE-2024-29840.json) (`2024-04-15T00:15:13.753`)
 - [CVE-2024-29841](CVE-2024/CVE-2024-298xx/CVE-2024-29841.json) (`2024-04-15T00:15:13.963`)
 - [CVE-2024-29842](CVE-2024/CVE-2024-298xx/CVE-2024-29842.json) (`2024-04-15T00:15:14.167`)
 - [CVE-2024-29843](CVE-2024/CVE-2024-298xx/CVE-2024-29843.json) (`2024-04-15T00:15:14.373`)
 - [CVE-2024-29844](CVE-2024/CVE-2024-298xx/CVE-2024-29844.json) (`2024-04-15T00:15:14.573`)
 - [CVE-2024-3766](CVE-2024/CVE-2024-37xx/CVE-2024-3766.json) (`2024-04-15T00:15:14.773`)
 ### CVEs modified in the last Commit
-Recently modified CVEs: `0`
+Recently modified CVEs: `4`
 - [CVE-2024-29844](CVE-2024/CVE-2024-298xx/CVE-2024-29844.json) (`2024-04-15T03:16:06.320`)
 - [CVE-2024-3157](CVE-2024/CVE-2024-31xx/CVE-2024-3157.json) (`2024-04-15T03:16:07.840`)
 - [CVE-2024-3515](CVE-2024/CVE-2024-35xx/CVE-2024-3515.json) (`2024-04-15T03:16:07.907`)
 - [CVE-2024-3516](CVE-2024/CVE-2024-35xx/CVE-2024-3516.json) (`2024-04-15T03:16:07.943`)
 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -244356,16 +244356,16 @@ CVE-2024-2983,0,0,23d5f9d4638c65dc43b0706ddf09d53e64a3d415ebcd6885079f6fe9d10c5f
 CVE-2024-29832,0,0,9f165dd8af7b150aedd8ba0e648c487f081558a3943c83b1f6267f1670f3eb8a,2024-03-26T17:09:53.043000
 CVE-2024-29833,0,0,425a7917efe73a1770fcefa4ce4ec7e1a0c1da408936ec3b87fe92c30b675f21,2024-03-26T17:09:53.043000
 CVE-2024-29834,0,0,fcb2204bebc95a769cbfbc7fb2ab65826176bce82e40b2c7464bcb200fbaac1b,2024-04-02T20:31:58.463000
-CVE-2024-29836,1,1,37e4cbfbd0c62fd1e658a8e84b366928b44e312be64057cf7e2b4fe4abf6ffa1,2024-04-15T00:15:12.847000
+CVE-2024-29836,0,0,37e4cbfbd0c62fd1e658a8e84b366928b44e312be64057cf7e2b4fe4abf6ffa1,2024-04-15T00:15:12.847000
-CVE-2024-29837,1,1,f17756fb522a9e39a5905d0c4c9a7248e53b5b5c923422cb93441052e18a639e,2024-04-15T00:15:13.097000
+CVE-2024-29837,0,0,f17756fb522a9e39a5905d0c4c9a7248e53b5b5c923422cb93441052e18a639e,2024-04-15T00:15:13.097000
-CVE-2024-29838,1,1,24f1232d2cd448e0457658913ca8918f08ce3b3ab5c4de21cbbff97efcd84d58,2024-04-15T00:15:13.307000
+CVE-2024-29838,0,0,24f1232d2cd448e0457658913ca8918f08ce3b3ab5c4de21cbbff97efcd84d58,2024-04-15T00:15:13.307000
-CVE-2024-29839,1,1,b682176657620433b340ec7cfe7e7687d1614406cb337baba237d351bc3bf298,2024-04-15T00:15:13.533000
+CVE-2024-29839,0,0,b682176657620433b340ec7cfe7e7687d1614406cb337baba237d351bc3bf298,2024-04-15T00:15:13.533000
 CVE-2024-2984,0,0,4b5982b3c3e0e5e17ce3322c4c77f227ad9c5e510c9a2d4ef229246c4d0c5f67,2024-04-11T01:25:43.683000
-CVE-2024-29840,1,1,e0bf1336a8777f05d9ddff6cf61dfcb3c4a78e2ee7e7598df2b7d8f55e88ae24,2024-04-15T00:15:13.753000
+CVE-2024-29840,0,0,e0bf1336a8777f05d9ddff6cf61dfcb3c4a78e2ee7e7598df2b7d8f55e88ae24,2024-04-15T00:15:13.753000
-CVE-2024-29841,1,1,bf6d11f8ff0404b2beb5351f96a9cc308cffb274608eb7f51e441183d4b2ea09,2024-04-15T00:15:13.963000
+CVE-2024-29841,0,0,bf6d11f8ff0404b2beb5351f96a9cc308cffb274608eb7f51e441183d4b2ea09,2024-04-15T00:15:13.963000
-CVE-2024-29842,1,1,9fcd654a2b9c876cb5d73b31ac2983bb0f5f46f7812ffeaa12170dee8d6b58fd,2024-04-15T00:15:14.167000
+CVE-2024-29842,0,0,9fcd654a2b9c876cb5d73b31ac2983bb0f5f46f7812ffeaa12170dee8d6b58fd,2024-04-15T00:15:14.167000
-CVE-2024-29843,1,1,fe546397c94a00575ea363edd74f297119a8af5489577f632f47948f6fe7f2f2,2024-04-15T00:15:14.373000
+CVE-2024-29843,0,0,fe546397c94a00575ea363edd74f297119a8af5489577f632f47948f6fe7f2f2,2024-04-15T00:15:14.373000
-CVE-2024-29844,1,1,cc64152b8477f4266dbd6ddf7c24c949161e7a5b01c40ea0ed75920030365afd,2024-04-15T00:15:14.573000
+CVE-2024-29844,0,1,5e036faaa6a2022e503d1a8a5ef581a949907b7db40a8996ddc3c78d8deea42a,2024-04-15T03:16:06.320000
 CVE-2024-2985,0,0,eae3273dd06632fb9083734fb3ca3d6279482f4638135d81e5659988419ffe7f,2024-04-11T01:25:43.773000
 CVE-2024-29858,0,0,ec21ad079a83cd076ada45f6eaa6cdca3318bb07ab260d892702dff1f9c09fde,2024-03-21T12:58:51.093000
 CVE-2024-29859,0,0,1a3bc8759fdc8c10e013f96dddd14f2ff64d6c749aade8e9054f9e130df1726e,2024-03-21T12:58:51.093000
@ -245134,7 +245134,7 @@ CVE-2024-31507,0,0,8a4d05957463fb55563022c4622a2463374ff774a0631f4c63214875a7c78
 CVE-2024-3151,0,0,2dd1cf236cf7e4dbb7d9720cf950d856f9b652cd7c08d701ecc784bea1322bb1,2024-04-11T01:25:55.410000
 CVE-2024-31544,0,0,bc835e0f71240df22cec22617fbfab2cab4d97b1f555eabe4ef7c23231d6357c,2024-04-10T13:24:22.187000
 CVE-2024-3156,0,0,672d7786ba8482c7e78ab9597c9f5a6e717f264787edb700157c849ff3c9f687,2024-04-08T18:48:40.217000
-CVE-2024-3157,0,0,2e52cffd8e495ebf0f6229208ba6bf71114b109adc77acfe8f48ee6cddf311ea,2024-04-14T04:15:56.260000
+CVE-2024-3157,0,1,5a423f43ed9e43d0f3e67864a2f920e32c6b616d23d4a97009e6a50d35454586,2024-04-15T03:16:07.840000
 CVE-2024-3158,0,0,d2414412e299d1c6c6fd5c25934ca9d016ec38ac6210ea884f5d6eabc2220b22,2024-04-08T18:48:40.217000
 CVE-2024-3159,0,0,ab3d3fc3f58ff99c2f10e23574a75e665f3343c344ecfe71138e927973febb6e,2024-04-08T18:48:40.217000
 CVE-2024-3160,0,0,f58561faca7869291dbd40f98b5207b12f048bddf4323b50e2fa0b0605fe77f4,2024-04-11T01:25:55.513000
@ -245362,8 +245362,8 @@ CVE-2024-3465,0,0,a42aecf57f43969ec60c90b90013ebe0e449783aa33103b39be184486d2b2c
 CVE-2024-3466,0,0,06b3d0b5c629cfcd72994ab03bcc3d914522a60f9b439b6d13775db50704418a,2024-04-11T01:26:03.777000
 CVE-2024-3512,0,0,0bde0dc5c2508608f7df2e92075f3b315e69961d5bc617a9cf046c486aab6ef4,2024-04-10T13:23:38.787000
 CVE-2024-3514,0,0,6b760aa2049aa25a8d1a8a27afd68abe75f99cb1cc8192949aefe4b5db8f51ce,2024-04-10T13:23:38.787000
-CVE-2024-3515,0,0,5468697271bc6b150a37cdc37185fba19452278c6e2af7511e30c6bc99ef52e2,2024-04-14T04:15:56.830000
+CVE-2024-3515,0,1,7c2080a97360e37202e0b326d4ec64e60af0e0d13acfca93ee3ef27890144e60,2024-04-15T03:16:07.907000
-CVE-2024-3516,0,0,b99578f278d72fa6dbd30e45b2e689c8f24fcea01522b8a3f366bd43db470b94,2024-04-14T04:15:56.870000
+CVE-2024-3516,0,1,81c13df32a1714de507a8aeec8fb3d7db93df5fba8ae524ffd7483155d3c1893,2024-04-15T03:16:07.943000
 CVE-2024-3521,0,0,e61d852c00114c6bd3f4a1b5eeb2ffc212b4c353a3c03a3453182d437a66b289,2024-04-11T01:26:03.900000
 CVE-2024-3522,0,0,2dd2aff8352737c957083bbb548feca94c6bc4d24050574d0269bbbcc566f409,2024-04-11T01:26:03.977000
 CVE-2024-3523,0,0,4bcdc0c2641557edee953608e7aa9e663000e70c847d90476983bd4354ae7983,2024-04-11T01:26:04.057000
@ -245431,4 +245431,6 @@ CVE-2024-3762,0,0,b191d101f4a9d645c7e9f95afa47f2c207df5b4c70ecd3749179a783e15e08
 CVE-2024-3763,0,0,262909d0950c7a3228e8fed8ae6373f18cbf0c3e21f14cf96c53b24e96840fc4,2024-04-14T23:15:46.110000
 CVE-2024-3764,0,0,4d189903af3cfe6d7249ff59c89b78dd404f54d55b4d90a0597a6d48e963acf9,2024-04-14T23:15:46.373000
 CVE-2024-3765,0,0,b3d1b16d269cee243522ba0b3be107f044389782884d6822e375f86a69fc36c5,2024-04-14T23:15:46.650000
-CVE-2024-3766,1,1,28f42c457ae28605580e5cf8d3ddbf5c4178184dcd9c90284dd7756c20e9f53b,2024-04-15T00:15:14.773000
+CVE-2024-3766,0,0,28f42c457ae28605580e5cf8d3ddbf5c4178184dcd9c90284dd7756c20e9f53b,2024-04-15T00:15:14.773000
 CVE-2024-3772,1,1,e4ccd472bd870e0b47fe1cad763e454d866943170fcbf1220c4ccf6b594b25ed,2024-04-15T03:16:07.987000
 CVE-2024-3774,1,1,dd4053ce443100bd83b9ea82a8bbca2ed0af020758e7494ffa2a017457f90394,2024-04-15T03:16:08.197000