diff --git a/CVE-2024/CVE-2024-129xx/CVE-2024-12987.json b/CVE-2024/CVE-2024-129xx/CVE-2024-12987.json index 5b40a30dc3e..eb85d6b3763 100644 --- a/CVE-2024/CVE-2024-129xx/CVE-2024-12987.json +++ b/CVE-2024/CVE-2024-129xx/CVE-2024-12987.json @@ -2,7 +2,7 @@ "id": "CVE-2024-12987", "sourceIdentifier": "cna@vuldb.com", "published": "2024-12-27T16:15:24.143", - "lastModified": "2025-05-14T17:15:47.220", + "lastModified": "2025-05-15T01:15:48.413", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ @@ -140,6 +140,18 @@ { "url": "https://vuldb.com/?submit.468795", "source": "cna@vuldb.com" + }, + { + "url": "https://fw.draytek.com.tw/Vigor2960/Firmware/v1.5.1.5/DrayTek_Vigor2960_V1.5.1.5_01release-note.pdf", + "source": "af854a3a-2127-422b-91ae-364da2661108" + }, + { + "url": "https://fw.draytek.com.tw/Vigor300B/Firmware/v1.5.1.5/DrayTek_Vigor300B_V1.5.1.5_01release-note.pdf", + "source": "af854a3a-2127-422b-91ae-364da2661108" + }, + { + "url": "https://fw.draytek.com.tw/Vigor3900/Firmware/v1.5.1.5/DrayTek_Vigor3900_V1.5.1.5_01release-note.pdf", + "source": "af854a3a-2127-422b-91ae-364da2661108" } ] } \ No newline at end of file diff --git a/CVE-2025/CVE-2025-327xx/CVE-2025-32756.json b/CVE-2025/CVE-2025-327xx/CVE-2025-32756.json index 04899cb4792..f2fb0414f5c 100644 --- a/CVE-2025/CVE-2025-327xx/CVE-2025-32756.json +++ b/CVE-2025/CVE-2025-327xx/CVE-2025-32756.json @@ -2,13 +2,17 @@ "id": "CVE-2025-32756", "sourceIdentifier": "psirt@fortinet.com", "published": "2025-05-13T15:15:57.113", - "lastModified": "2025-05-13T19:35:18.080", + "lastModified": "2025-05-15T01:00:02.207", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", "value": "A stack-based buffer overflow vulnerability [CWE-121] in Fortinet FortiVoice versions 7.2.0, 7.0.0 through 7.0.6, 6.4.0 through 6.4.10, FortiRecorder versions 7.2.0 through 7.2.3, 7.0.0 through 7.0.5, 6.4.0 through 6.4.5, FortiMail versions 7.6.0 through 7.6.2, 7.4.0 through 7.4.4, 7.2.0 through 7.2.7, 7.0.0 through 7.0.8, FortiNDR versions 7.6.0, 7.4.0 through 7.4.7, 7.2.0 through 7.2.4, 7.0.0 through 7.0.6, FortiCamera versions 2.1.0 through 2.1.3, 2.0 all versions, 1.1 all versions, allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie." + }, + { + "lang": "es", + "value": "Una vulnerabilidad de desbordamiento de b\u00fafer basada en pila [CWE-121] en Fortinet FortiVoice versiones 7.2.0, 7.0.0 a 7.0.6, 6.4.0 a 6.4.10, FortiRecorder versiones 7.2.0 a 7.2.3, 7.0.0 a 7.0.5, 6.4.0 a 6.4.5, FortiMail versiones 7.6.0 a 7.6.2, 7.4.0 a 7.4.4, 7.2.0 a 7.2.7, 7.0.0 a 7.0.8, FortiNDR versiones 7.6.0, 7.4.0 a 7.4.7, 7.2.0 a 7.2.4, 7.0.0 a 7.0.6, FortiCamera versiones 2.1.0 a 2.1.1, 2.1.2 a 2.1.3, 2.1.4 a 2.1.5, 2.1.6 a 2.1.7, 2.1.8 a 2.1.9, 2.1.1 a 2.1.19, 2.1.9 a 2.1.19, 2.1.1 a 2.1.29, 2.1.3 a 2.1.49, 2.1.4 a 2.1.59, 2.1.6 a 2.1.79, 2.1.8 a 2.1.89, 2.1.9 a 2.1.99, 2.1.9 a 2.1.19, 2.1.9 a 2.1.2 ... 2.1.3, 2.0 todas las versiones, 1.1 todas las versiones, permite a un atacante remoto no autenticado ejecutar c\u00f3digo o comandos arbitrarios mediante el env\u00edo de solicitudes HTTP con cookies hash especialmente manipuladas." } ], "metrics": { @@ -35,6 +39,10 @@ } ] }, + "cisaExploitAdd": "2025-05-14", + "cisaActionDue": "2025-06-04", + "cisaRequiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.", + "cisaVulnerabilityName": "Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability", "weaknesses": [ { "source": "psirt@fortinet.com", diff --git a/README.md b/README.md index bf67f596cb4..17f8626f793 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2025-05-14T23:55:19.447189+00:00 +2025-05-15T02:00:12.477297+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2025-05-14T23:15:48.213000+00:00 +2025-05-15T01:15:48.413000+00:00 ``` ### Last Data Feed Release @@ -27,7 +27,7 @@ Repository synchronizes with the NVD every 2 hours. Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest) ```plain -2025-05-14T00:00:04.313566+00:00 +2025-05-15T00:00:04.309824+00:00 ``` ### Total Number of included CVEs @@ -38,24 +38,16 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `9` +Recently added CVEs: `0` -- [CVE-2024-45067](CVE-2024/CVE-2024-450xx/CVE-2024-45067.json) (`2025-05-14T23:15:47.590`) -- [CVE-2025-29686](CVE-2025/CVE-2025-296xx/CVE-2025-29686.json) (`2025-05-14T22:15:17.397`) -- [CVE-2025-29688](CVE-2025/CVE-2025-296xx/CVE-2025-29688.json) (`2025-05-14T22:15:17.520`) -- [CVE-2025-29689](CVE-2025/CVE-2025-296xx/CVE-2025-29689.json) (`2025-05-14T22:15:17.633`) -- [CVE-2025-29690](CVE-2025/CVE-2025-296xx/CVE-2025-29690.json) (`2025-05-14T22:15:17.750`) -- [CVE-2025-29691](CVE-2025/CVE-2025-296xx/CVE-2025-29691.json) (`2025-05-14T22:15:17.853`) -- [CVE-2025-32421](CVE-2025/CVE-2025-324xx/CVE-2025-32421.json) (`2025-05-14T23:15:47.870`) -- [CVE-2025-46836](CVE-2025/CVE-2025-468xx/CVE-2025-46836.json) (`2025-05-14T23:15:48.073`) -- [CVE-2025-47783](CVE-2025/CVE-2025-477xx/CVE-2025-47783.json) (`2025-05-14T23:15:48.213`) ### CVEs modified in the last Commit -Recently modified CVEs: `1` +Recently modified CVEs: `2` -- [CVE-2024-8447](CVE-2024/CVE-2024-84xx/CVE-2024-8447.json) (`2025-05-14T23:15:47.753`) +- [CVE-2024-12987](CVE-2024/CVE-2024-129xx/CVE-2024-12987.json) (`2025-05-15T01:15:48.413`) +- [CVE-2025-32756](CVE-2025/CVE-2025-327xx/CVE-2025-32756.json) (`2025-05-15T01:00:02.207`) ## Download and Usage diff --git a/_state.csv b/_state.csv index 3baf839905b..69167249cdb 100644 --- a/_state.csv +++ b/_state.csv @@ -247840,7 +247840,7 @@ CVE-2024-12983,0,0,272d21ff0bd7ad31920b0f5a1f365cd5611020b94feab759e6e545e221283 CVE-2024-12984,0,0,2f1f6d47358f5bf062b046e597be4abadb2d2163986aa69703e28be2bc64f2f0,2024-12-27T15:15:11.957000 CVE-2024-12985,0,0,d4a76a2362f1758d86bddad7f928601739b4725522b1084e160f0600dff7746c,2024-12-27T16:15:23.807000 CVE-2024-12986,0,0,7dd3f2d726dcb5a458fc7b91b18601177f669d7d46611c5cd80f422704f659a7,2024-12-30T15:15:08.390000 -CVE-2024-12987,0,0,c50f266b2ce0fa54e98d82f7642f68b9cc6db8daba57f8dc2768e4daf6c7f89c,2025-05-14T17:15:47.220000 +CVE-2024-12987,0,1,53e657923f1fb1a1957bbacf4d50431bcd1d5fdf9d47768045b6083eb73a678e,2025-05-15T01:15:48.413000 CVE-2024-12988,0,0,6b43b227c0a11a09ff63735139e3c0815f8a92acb694a5f6ed88540880813398,2025-01-14T14:15:28.347000 CVE-2024-12989,0,0,fd797d96087934abf32990a9422815e2eba5c1a1b977827a964e68b244d813ab,2024-12-27T18:15:24.777000 CVE-2024-1299,0,0,c7f245e662ec35ddd87c48ae29ff03e74531f9ba7973bf15293ed4e82f111599,2024-12-11T20:23:27.497000 @@ -268860,7 +268860,7 @@ CVE-2024-45061,0,0,05b1c7309f8ac21a996408c3f436219993810ef39c6cdbea2d2923f338223 CVE-2024-45063,0,0,1409a1792fb044d0180db60765e18242d949607976f55c38d4cb7d3b87690fec,2024-09-06T17:35:18.370000 CVE-2024-45064,0,0,f9743d959694386bb54450caed4c891cbc8d8760238efdc92821b602741223ec,2025-04-02T22:15:17.837000 CVE-2024-45066,0,0,d33701ba745edbfb429176564dad3e868c8fa86bb8965e021d0d157e59195ffa,2024-10-01T16:18:10.680000 -CVE-2024-45067,1,1,7655983895c036a917bf45612cc2071185d8ad356a12d381bae143079272f45f,2025-05-14T23:15:47.590000 +CVE-2024-45067,0,0,7655983895c036a917bf45612cc2071185d8ad356a12d381bae143079272f45f,2025-05-14T23:15:47.590000 CVE-2024-45068,0,0,c8edc7e1dd2efd4150730702fd7fc207bb2cdcb6fa3089f6d2a2ca2cb86ca5f7,2024-12-03T03:15:04.953000 CVE-2024-4507,0,0,0cce0099e9b56e6c38adf32141097ae968c74e9462bd520a29ad2d370b497aec,2024-11-21T09:42:58.820000 CVE-2024-45070,0,0,43e0077f9a86df49dc06e0bc270dca12765a65a9b97b06417a38e8b9e983cbe0,2025-01-07T08:15:25.457000 @@ -280433,7 +280433,7 @@ CVE-2024-8442,0,0,1473bd60a3766b0c653a479759c088836feae1c4be2c703fbd6d11452eb7d1 CVE-2024-8443,0,0,e403b8f31dbddb2e3b372b092da72428bab5de3f10c800d3013c6f9756adca46,2024-10-01T13:15:03.110000 CVE-2024-8444,0,0,bd1dc9e3080ae8d5d57de0244ca5a6088476b5db63cc75b67a3aefd487ee7f08,2025-04-10T14:44:48.317000 CVE-2024-8445,0,0,384f7011d0e449169e0e5da94ceb0dcddb207f57c664fe42a2a017883a234991,2024-10-01T06:15:02.650000 -CVE-2024-8447,0,1,776bade15f95494a5f79f6872147a55a28d860640be32d8a232644c9fcc879b7,2025-05-14T23:15:47.753000 +CVE-2024-8447,0,0,776bade15f95494a5f79f6872147a55a28d860640be32d8a232644c9fcc879b7,2025-05-14T23:15:47.753000 CVE-2024-8448,0,0,4a8c8d1bfebabbf2ba0ba756d068b503635fe81a85cb0207ca51da67d6a58dd3,2024-10-04T15:07:22.160000 CVE-2024-8449,0,0,8202397b96924e45a71740b476ee2832c82c2be7be3be08f9fd280d97144814a,2024-10-04T15:08:22.733000 CVE-2024-8450,0,0,1a17c50d6a2a40f92ac2e96ed2e0686e3341ebb017ed39caf0b567c3aacbc5f9,2024-10-04T15:08:58.820000 @@ -289421,12 +289421,12 @@ CVE-2025-29661,0,0,ae2c135a70f6155c281e67b8a5af7487f5fcf748cd55183d73b750a0c0e7b CVE-2025-29662,0,0,282a1c6aaef837cc8d68855cb8ea8ea58b4b36fabaa6e48347ab102dbea89844,2025-04-18T16:15:21.970000 CVE-2025-2967,0,0,14b33c1f634d82e0ee8f6eba9d8900eb26f8e5ef6b28fe9846307dc0432895cc,2025-04-04T01:15:39.857000 CVE-2025-2968,0,0,2f5310773b41e32a0609f9013ca63505bab1761feb2b83c508abd214cd1156b1,2025-04-04T01:15:39.930000 -CVE-2025-29686,1,1,2fb92e1fe1aa72a0e2a3db1b9078fd2002ede5be786db4b270cbac72d28138da,2025-05-14T22:15:17.397000 -CVE-2025-29688,1,1,52ed5092a72a2264645f465ecb67aa708107f7c8b5988aca12a8b3699aade5b6,2025-05-14T22:15:17.520000 -CVE-2025-29689,1,1,a49858cc87cb84f7f8bb5402dc002704907776458cb50aa5ca2180563f27ecd6,2025-05-14T22:15:17.633000 +CVE-2025-29686,0,0,2fb92e1fe1aa72a0e2a3db1b9078fd2002ede5be786db4b270cbac72d28138da,2025-05-14T22:15:17.397000 +CVE-2025-29688,0,0,52ed5092a72a2264645f465ecb67aa708107f7c8b5988aca12a8b3699aade5b6,2025-05-14T22:15:17.520000 +CVE-2025-29689,0,0,a49858cc87cb84f7f8bb5402dc002704907776458cb50aa5ca2180563f27ecd6,2025-05-14T22:15:17.633000 CVE-2025-2969,0,0,2c92f9aaf929a695828188a9354c9039b1da27ec28571736050e209bd0423cad,2025-04-04T01:15:40 -CVE-2025-29690,1,1,1d8512be0a66727b435786bb5bfca5d5a8cb4b87387c8ff4c0cb393074afe3f8,2025-05-14T22:15:17.750000 -CVE-2025-29691,1,1,5ed20deb42edd339d5ef28f2e650910581b5b4b1192ee9e5d0ff1c8896404122,2025-05-14T22:15:17.853000 +CVE-2025-29690,0,0,1d8512be0a66727b435786bb5bfca5d5a8cb4b87387c8ff4c0cb393074afe3f8,2025-05-14T22:15:17.750000 +CVE-2025-29691,0,0,5ed20deb42edd339d5ef28f2e650910581b5b4b1192ee9e5d0ff1c8896404122,2025-05-14T22:15:17.853000 CVE-2025-2970,0,0,67c007e67877a94fb703f9d730b81129ea1f6387e2e40954ff831fd4807254f0,2025-04-04T01:15:40.067000 CVE-2025-29705,0,0,db46ea7cb4987b1ec39c2b266bb1cf2d37c016a13edf470bbcef2fe3094e3dcc,2025-04-22T17:46:31.730000 CVE-2025-29708,0,0,296455411b44b57fb8a44b1ba985b6f7a964cefc933d8b8be5f3143c7e1a12dc,2025-04-23T16:33:51.693000 @@ -291378,7 +291378,7 @@ CVE-2025-32413,0,0,264a0d1d6affdc64cee850b499944750da36d787f6454e6724a671c6b9cc8 CVE-2025-32414,0,0,aaa89bb2af83aaa5fbfad264462fffe584ae7e3b6f4c274b67b345ec1e77a66b,2025-04-23T19:09:35.517000 CVE-2025-32415,0,0,d29173a40b926f4d8a4f4c23264a4918002c1958abe7180e7270ca73497407ad,2025-04-23T18:17:52.053000 CVE-2025-3242,0,0,90f995a708d9cd05fe38453d981720f1f901788e31f2dca6c83720803f7bb956,2025-04-07T14:18:15.560000 -CVE-2025-32421,1,1,0f55967d3483a1914bfd9e847a0cf9ca691193ed892eb5d673cd45e6c0b5321b,2025-05-14T23:15:47.870000 +CVE-2025-32421,0,0,0f55967d3483a1914bfd9e847a0cf9ca691193ed892eb5d673cd45e6c0b5321b,2025-05-14T23:15:47.870000 CVE-2025-32426,0,0,b286059d918712d59cb2d895ee7485e036c072ec630f37ef7686dbc7bf9e6990,2025-04-11T15:39:52.920000 CVE-2025-32427,0,0,57d3a7d2051dd0b51d8b12614834873286577350e593d5683068731d274c9288,2025-04-11T15:39:52.920000 CVE-2025-32428,0,0,32eeebbb9eb52efc2ed96bd05d1eccbda5203d0361f63bfcafb88d13c22b345a,2025-04-15T18:39:27.967000 @@ -291656,7 +291656,7 @@ CVE-2025-32743,0,0,22cd88375a4ea091d730f6e11751ffcb7fa9bb31f6c5963a03a37755aa77a CVE-2025-3275,0,0,21a93c4b8629a3b2ced7ba0d70601ec8bc49832622baa8caefb367590d177cbe,2025-04-21T14:23:45.950000 CVE-2025-32754,0,0,5bbb45f7415b1e2c7a5ab5d943b9862fc873ca5c18ed080e0c57d8749166206a,2025-05-02T19:39:07.240000 CVE-2025-32755,0,0,e32d4749fcafcf69dcb6ba1ca9a1a70329867db7030a0a3a6955b6405162d04d,2025-05-02T15:54:54.490000 -CVE-2025-32756,0,0,74d7d8b345ac9ba5439ddab5bc9be8bc5aaa3d6180e8d81ba18e43ec671b8ce6,2025-05-13T19:35:18.080000 +CVE-2025-32756,0,1,784ce632c1e3298a2ac35506ddf069ea0fabf84a584b032f979b5c06101de69d,2025-05-15T01:00:02.207000 CVE-2025-32757,0,0,c640364748c5c666fd6dc8aec9d84948af9deb15cd9711efe75ce6833fb0d8c1,2025-04-11T03:15:13.903000 CVE-2025-32758,0,0,d3608f6f13a9a5b49230d2ebeae393f102196b87b92e834ebddf934752919dc3,2025-04-11T03:15:14.427000 CVE-2025-32759,0,0,4ec2028500fce9598ebd65d94b8913a1d569360cd32f22b47c68102fcbfca47a,2025-04-11T03:15:14.477000 @@ -293727,7 +293727,7 @@ CVE-2025-46826,0,0,4ebfbc6d75263f85719c0d0d1d8f9b8909260efe5b13feb7916cc0e1f165c CVE-2025-46827,0,0,c0b5f5a1083a579afc89b63dd048c6f49094a080ff2d7d40bacf27137a0cb51c,2025-05-08T14:39:09.683000 CVE-2025-46828,0,0,532e47223ca8fc8b1e58670e3c3c9fb2e1d5a2b40ddfbbf3135abc43bb60308e,2025-05-08T14:39:09.683000 CVE-2025-46833,0,0,c80dd4df89ed1d9904a340fdabec8ad2db7d55e381346ed4e99c9bf921e12b91,2025-05-12T17:32:52.810000 -CVE-2025-46836,1,1,63fe3d16aa5c6406ec6454ea899fd75e25c1b6271effa29ea5dcce263af30e9c,2025-05-14T23:15:48.073000 +CVE-2025-46836,0,0,63fe3d16aa5c6406ec6454ea899fd75e25c1b6271effa29ea5dcce263af30e9c,2025-05-14T23:15:48.073000 CVE-2025-47153,0,0,1bca3f0c72274ce4b4c023a8e0978fd82f9f0090c23ca3f26eaede96af2bc369,2025-05-02T19:15:55.930000 CVE-2025-47154,0,0,6a55c646b5911b6b02123224674cd90dd2e3787c01df5f2ac266b60ca2d454e0,2025-05-02T13:53:40.163000 CVE-2025-47201,0,0,f7da15483f84676db296d7fc167792c339031bbfa11c378fcc7b75aaf9edeb30,2025-05-07T16:51:09.947000 @@ -293952,7 +293952,7 @@ CVE-2025-47777,0,0,35eb9d6604dd8418347de82157b6545b0d383e4d6e1feb7b89b88c34f4b48 CVE-2025-47778,0,0,8ca84978e9134d44015f284738895b7f24a0666fdd9dd1ca2767f130aee1029f,2025-05-14T16:15:29.110000 CVE-2025-47781,0,0,991f36a25c7c00e0f17e17af26ddcfd3616820540bf5d31cc05dded899348853,2025-05-14T18:15:31.460000 CVE-2025-47782,0,0,54bab9905cec69b8e510a9bfc89abd0f69a084fe965da2b6c0baaa717590df0f,2025-05-14T18:15:31.657000 -CVE-2025-47783,1,1,50c927099563f3f24e2031205368b145b7bef7876685994bc5b7a8fbdffbfac3,2025-05-14T23:15:48.213000 +CVE-2025-47783,0,0,50c927099563f3f24e2031205368b145b7bef7876685994bc5b7a8fbdffbfac3,2025-05-14T23:15:48.213000 CVE-2025-47814,0,0,91d01c94bb9a2d6cbf1f2ce3b51913f5401bb5d496a9da26d55db4bea09f6271,2025-05-13T15:15:59.160000 CVE-2025-47815,0,0,9592c3e4f771ae3f4778fd1417b837c60cd946494bcc69b16ff5a835676654f7,2025-05-12T19:15:51.627000 CVE-2025-47816,0,0,f2039bef5f35896f6323dde541ac2699fd60fa6f47c1d018e4464af2af438bb3,2025-05-12T19:15:51.733000