admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-07-09 16:05:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2024-11-01T21:00:20.427101+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2024-11-01 21:03:21 +00:00
parent 891e89ba79
commit 7be999dfaf
264 changed files with 4845 additions and 934 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
CVE-2021/CVE-2021-474xx/CVE-2021-47406.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2021-47406",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-05-21T15:15:26.170",
"lastModified": "2024-05-21T16:54:26.047",
"lastModified": "2024-11-01T20:35:00.870",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: ext4: agregue verificaci\u00f3n de errores a ext4_ext_replay_set_iblocks(). Si la llamada a ext4_map_blocks() falla debido a un sistema de archivos da\u00f1ado, ext4_ext_replay_set_iblocks() puede quedarse atascado en un bucle infinito. Esto podr\u00eda reproducirse ejecutando generic/526 con un sistema de archivos que tenga inline_data y fast_commit habilitados. El sistema iniciar\u00e1 sesi\u00f3n repetidamente en la consola: Advertencia EXT4-fs (dispositivo dm-3): ext4_block_to_path:105: bloque 1074800922 > max en el inodo 131076 y la pila en la que se atasca es: ext4_block_to_path+0xe3/0x130 ext4_ind_map_blocks+0x93/ 0x690 ext4_map_blocks+0x100/0x660 skip_hole+0x47/0x70 ext4_ext_replay_set_iblocks+0x223/0x440 ext4_fc_replay_inode+0x29e/0x3b0 ext4_fc_replay+0x278/0x550 do_one_pass+0x646/ 0xc10 jbd2_journal_recover+0x14a/0x270 jbd2_journal_load+0xc4/0x150 ext4_load_journal+0x1f3/0x490 ext4_fill_super+0x22d4/ 0x2c00 Con este parche, generic/526 todav\u00eda falla, pero el sistema ya no se bloquea en un bucle cerrado. Es probable que la causa ra\u00edz sea que la reproducci\u00f3n fast_commit est\u00e9 corrompiendo los sistemas de archivos con inline_data, y probablemente necesitemos agregar un mejor manejo de errores en la ruta del c\u00f3digo de reproducci\u00f3n de confirmaci\u00f3n r\u00e1pida m\u00e1s all\u00e1 de lo que se hace aqu\u00ed, lo que esencialmente simplemente rompe el bucle infinito sin informar al niveles superiores del c\u00f3digo."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://git.kernel.org/stable/c/1fd95c05d8f742abfe906620780aee4dbe1a2db0",

39
CVE-2023/CVE-2023-251xx/CVE-2023-25199.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-25199",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-04T07:15:07.923",
"lastModified": "2024-04-04T12:48:41.700",
"lastModified": "2024-11-01T19:35:10.870",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Existe una vulnerabilidad de Cross Site Scripting (XSS) reflejado en la versi\u00f3n NXG 19.05 del servidor web MT Safeline X-Ray X3310 que permite a un atacante remoto ejecutar c\u00f3digo JavaScript y obtener informaci\u00f3n confidencial en el navegador de la v\u00edctima."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://summitinfosec.com/blog/x-ray-vision-identifying-cve-2023-25199-and-cve-2023-25200-in-manufacturing-equipment/",

27
CVE-2023/CVE-2023-317xx/CVE-2023-31728.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-31728",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-02-17T04:15:07.503",
"lastModified": "2024-02-20T19:50:53.960",
"lastModified": "2024-11-01T19:35:12.073",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Los dispositivos Teltonika RUT240 con firmware anterior a 07.04.2, cuando se utiliza el modo puente, a veces hacen que los servicios SSH y HTTP est\u00e9n disponibles en la interfaz WAN IPv6 aunque la interfaz de usuario muestre que solo est\u00e1n disponibles en la interfaz LAN."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.0,
"impactScore": 5.9
}
]
},
"references": [
{
"url": "https://research.exoticsilicon.com/articles/lte_ethernet_bridge_bug_followup",

27
CVE-2023/CVE-2023-428xx/CVE-2023-42855.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-42855",
"sourceIdentifier": "product-security@apple.com",
"published": "2024-02-21T07:15:49.460",
"lastModified": "2024-02-22T19:07:27.197",
"lastModified": "2024-11-01T20:35:01.867",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Esta cuesti\u00f3n se abord\u00f3 con una mejor gesti\u00f3n de estado. Este problema se solucion\u00f3 en iOS 17.1 y iPadOS 17.1. Un atacante con acceso f\u00edsico puede conservar silenciosamente una ID de Apple en un dispositivo borrado."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "PHYSICAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 4.6,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 0.9,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://support.apple.com/en-us/HT213982",

22
CVE-2023/CVE-2023-429xx/CVE-2023-42956.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-42956",
"sourceIdentifier": "product-security@apple.com",
"published": "2024-03-28T16:15:08.377",
"lastModified": "2024-06-12T10:15:27.210",
"lastModified": "2024-11-01T19:35:12.537",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
@ -36,6 +36,26 @@
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},

27
CVE-2023/CVE-2023-440xx/CVE-2023-44038.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-44038",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-03T17:15:47.213",
"lastModified": "2024-04-03T17:24:18.150",
"lastModified": "2024-11-01T20:35:02.170",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "En VeridiumID anterior a 3.5.0, la p\u00e1gina del proveedor de identidad permite a un atacante no autenticado descubrir informaci\u00f3n sobre usuarios registrados mediante un ataque de inyecci\u00f3n LDAP."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://docs.veridiumid.com/docs/v3.5/security-advisory#id-%28v3.52%29SecurityAdvisory-Acknowledgement",

39
CVE-2023/CVE-2023-499xx/CVE-2023-49976.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-49976",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-06T01:15:07.147",
"lastModified": "2024-03-06T15:18:08.093",
"lastModified": "2024-11-01T19:35:12.907",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Una vulnerabilidad de cross-site scripting (XSS) en Customer Support System v1 permite a los atacantes ejecutar scripts web arbitrarios o HTML a trav\u00e9s de un payload manipulado inyectado en el par\u00e1metro del asunto en /customer_support/index.php?page=new_ticket."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/geraldoalcantara/CVE-2023-49976",

39
CVE-2023/CVE-2023-504xx/CVE-2023-50433.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-50433",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-29T22:15:06.830",
"lastModified": "2024-04-30T13:11:16.690",
"lastModified": "2024-11-01T20:35:02.620",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "marshall en dhcp_packet.c en simple-dhcp-server a trav\u00e9s de ec976d2 permite a atacantes remotos provocar una denegaci\u00f3n de servicio enviando un paquete DHCP malicioso. El bloqueo se debe a un error de confusi\u00f3n de tipos que da como resultado una gran asignaci\u00f3n de memoria; cuando esta asignaci\u00f3n de memoria falla, el servidor DHCP fallar\u00e1."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-843"
}
]
}
],
"references": [
{
"url": "https://papers.mathyvanhoef.com/esorics2024.pdf",

27
CVE-2023/CVE-2023-525xx/CVE-2023-52551.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2023-52551",
"sourceIdentifier": "psirt@huawei.com",
"published": "2024-04-08T09:15:09.130",
"lastModified": "2024-04-08T18:48:40.217",
"lastModified": "2024-11-01T19:35:14.057",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Vulnerabilidad de errores de verificaci\u00f3n de datos en el m\u00f3dulo del kernel. Impacto: La explotaci\u00f3n exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.4
}
]
},
"weaknesses": [
{
"source": "psirt@huawei.com",

93
CVE-2024/CVE-2024-105xx/CVE-2024-10509.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10509",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-30T03:15:04.060",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:52:15.573",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -61,6 +61,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -109,6 +129,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -120,22 +150,55 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://github.com/ppp-src/CVE/issues/27",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://vuldb.com/?ctiid.282449",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?id.282449",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.432720",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:codezips:online_institute_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51A6CFF2-B568-4430-ACB8-C640A44A06B9"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/ppp-src/CVE/issues/27",
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.282449",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282449",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.432720",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

83
CVE-2024/CVE-2024-105xx/CVE-2024-10556.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10556",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-31T01:15:14.253",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:51:35.617",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -61,6 +61,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -120,22 +140,55 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://github.com/ppp-src/CVE/issues/28",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://vuldb.com/?ctiid.282558",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?id.282558",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.432727",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:codezips:pet_shop_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E41915B8-0D4A-49AF-90F2-6DBCAE78A889"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/ppp-src/CVE/issues/28",
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.282558",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282558",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.432727",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

94
CVE-2024/CVE-2024-105xx/CVE-2024-10557.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10557",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-31T01:15:14.527",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:48:56.980",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -61,6 +61,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -120,26 +140,62 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://code-projects.org/",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://github.com/bevennyamande/bloodbank_profile_update_csrf",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?ctiid.282559",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.282559",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.433057",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:fabianros:blood_bank_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "074BD804-92B2-445A-9A77-DE019D9E8A13"
}
]
}
]
}
],
"references": [
{
"url": "https://code-projects.org/",
"source": "cna@vuldb.com",
"tags": [
"Product"
]
},
{
"url": "https://github.com/bevennyamande/bloodbank_profile_update_csrf",
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.282559",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282559",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.433057",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

94
CVE-2024/CVE-2024-105xx/CVE-2024-10559.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10559",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-31T02:15:03.370",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:43:41.070",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -61,6 +61,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -120,26 +140,62 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://github.com/CveSecLook/cve/issues/64",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://vuldb.com/?ctiid.282560",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?id.282560",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.433262",
"source": "cna@vuldb.com"
},
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:razormist:airport_booking_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "13A46EB4-EA63-4C05-A367-CB5D09C034C2"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/CveSecLook/cve/issues/64",
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.282560",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282560",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.433262",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://www.sourcecodester.com/",
"source": "cna@vuldb.com",
"tags": [
"Product"
]
}
]
}

93
CVE-2024/CVE-2024-105xx/CVE-2024-10561.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10561",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-31T02:15:03.680",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:42:12.303",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -61,6 +61,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -109,6 +129,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -120,22 +150,55 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://github.com/ppp-src/CVE/issues/29",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://vuldb.com/?ctiid.282561",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?id.282561",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.434445",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:codezips:pet_shop_management_system:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E41915B8-0D4A-49AF-90F2-6DBCAE78A889"
}
]
}
]
}
],
"references": [
{
"url": "https://github.com/ppp-src/CVE/issues/29",
"source": "cna@vuldb.com",
"tags": [
"Exploit",
"Third Party Advisory"
]
},
{
"url": "https://vuldb.com/?ctiid.282561",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282561",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.434445",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

82
CVE-2024/CVE-2024-105xx/CVE-2024-10595.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10595",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-10-31T21:15:15.387",
"lastModified": "2024-11-01T12:57:03.417",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:57:26.027",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -57,6 +57,26 @@
}
],
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
},
{
"source": "cna@vuldb.com",
"type": "Secondary",
@ -116,22 +136,54 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://flowus.cn/share/651b6010-4701-4cec-a5a3-6e01e22636b9?code=G8A6P3",
"source": "cna@vuldb.com"
},
"nodes": [
{
"url": "https://vuldb.com/?ctiid.282607",
"source": "cna@vuldb.com"
},
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"url": "https://vuldb.com/?id.282607",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.430051",
"source": "cna@vuldb.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:esafenet:cdg:5:*:*:*:*:*:*:*",
"matchCriteriaId": "94F213FF-17EB-4B99-9621-80792AD14A74"
}
]
}
]
}
],
"references": [
{
"url": "https://flowus.cn/share/651b6010-4701-4cec-a5a3-6e01e22636b9?code=G8A6P3",
"source": "cna@vuldb.com",
"tags": [
"Exploit"
]
},
{
"url": "https://vuldb.com/?ctiid.282607",
"source": "cna@vuldb.com",
"tags": [
"Permissions Required",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?id.282607",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
},
{
"url": "https://vuldb.com/?submit.430051",
"source": "cna@vuldb.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
]
}
]
}

4
CVE-2024/CVE-2024-106xx/CVE-2024-10655.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10655",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T14:15:05.057",
"lastModified": "2024-11-01T14:15:05.057",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:25:15.673",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10656.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10656",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T15:15:16.960",
"lastModified": "2024-11-01T15:15:16.960",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10657.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10657",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T15:15:17.247",
"lastModified": "2024-11-01T15:15:17.247",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10658.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10658",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T15:15:17.500",
"lastModified": "2024-11-01T15:15:17.500",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10659.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10659",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T16:15:06.830",
"lastModified": "2024-11-01T16:15:06.830",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10660.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10660",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T16:15:07.130",
"lastModified": "2024-11-01T16:15:07.130",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10661.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10661",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T16:15:07.430",
"lastModified": "2024-11-01T16:15:07.430",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-106xx/CVE-2024-10662.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-10662",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-11-01T16:15:07.723",
"lastModified": "2024-11-01T16:15:07.723",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

27
CVE-2024/CVE-2024-12xx/CVE-2024-1290.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-1290",
"sourceIdentifier": "contact@wpscan.com",
"published": "2024-03-11T18:15:18.003",
"lastModified": "2024-03-12T12:40:13.500",
"lastModified": "2024-11-01T19:35:14.447",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "El complemento User Registration de WordPress anterior a 2.12 no impide que los usuarios con al menos el rol de colaborador muestren c\u00f3digos cortos confidenciales, lo que les permite generar y filtrar URL v\u00e1lidas para restablecer contrase\u00f1as, que pueden usar para hacerse cargo de cualquier cuenta."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://wpscan.com/vulnerability/a60187d4-9491-435a-bc36-8dd348a1ffa3/",

494
CVE-2024/CVE-2024-203xx/CVE-2024-20300.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-20300",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2024-10-23T17:15:17.253",
"lastModified": "2024-10-25T12:56:36.827",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T20:14:59.393",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -17,6 +17,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -40,6 +60,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -51,18 +81,464 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-M446vbEO",
"source": "ykramarz@cisco.com"
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "6175407A-207E-4844-B150-EA0129C4CBBD"
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-dhJxQYZs",
"source": "ykramarz@cisco.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "45B6E615-F42A-468F-8E40-AD28994B4B1D"
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75300",
"source": "ykramarz@cisco.com"
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C4B08264-DA65-4BFF-A973-FF733C7325B1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "CE2A5330-8180-48CE-B22A-1CF24B7B1631"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "ACC1D72F-9542-4A62-AA90-C0E6B2095068"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "E4F3A97A-3359-40C7-95B0-2AB41C067141"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "B68BA14B-1752-4F05-9331-D556247462C3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "1DE72ABB-B573-43CC-A2AC-D81807970BD4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.8:*:*:*:*:*:*:*",
"matchCriteriaId": "535E8ECF-5CE5-4E78-A9EF-6167F4C59C45"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.9:*:*:*:*:*:*:*",
"matchCriteriaId": "3AE3F1C4-8C7A-48AA-83E5-6F832FA94DD3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.10:*:*:*:*:*:*:*",
"matchCriteriaId": "C40B7DC8-220C-4C34-A370-F1EB4B3F9EF1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.11:*:*:*:*:*:*:*",
"matchCriteriaId": "5DB186DC-6C03-4868-8218-06BEFC0CE400"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.12:*:*:*:*:*:*:*",
"matchCriteriaId": "B29670B8-F2D3-46D7-8F34-F44B320DD6FE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.13:*:*:*:*:*:*:*",
"matchCriteriaId": "2F04DDF5-2058-4208-A608-3673872450EA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.14:*:*:*:*:*:*:*",
"matchCriteriaId": "C9A483AC-A8CF-439C-9009-4DFAB0484BCE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.15:*:*:*:*:*:*:*",
"matchCriteriaId": "94E7D836-46E5-4CD5-8BDC-4697D915FE05"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.16:*:*:*:*:*:*:*",
"matchCriteriaId": "06220CB8-7F16-4D3C-A835-558D5F4D97ED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.17:*:*:*:*:*:*:*",
"matchCriteriaId": "82917F5C-CF20-4D97-A981-FE3F8476CCFE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.2.3.18:*:*:*:*:*:*:*",
"matchCriteriaId": "47E42025-1D1E-4390-AC21-9A1B0FBE8D82"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "52651664-CA65-4812-8226-E104E1BE7864"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "64E0FDB2-D5A4-4749-A182-B0B145DC00D3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "23B58490-C403-44D5-BDB9-88FAD19ABC2B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "DE33A280-84E4-4B5B-AB31-7A78754413F9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "BA3F9410-02E1-4FE9-9A4B-E504515F4615"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "8AAAF924-1ADE-4267-9957-DF060D1D3538"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4D02863A-1355-4FFE-A6BD-C912697774A0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "704E4D3D-D1D2-48D8-A68C-227CC92A1C1D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "80A3D0F1-DA29-4A66-A698-082DB0CFA4B0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "C6B9B536-ADF9-4CE1-86EC-07BCDD65FB92"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "1755E718-C726-442B-B203-E9536C546DF9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "AB80FC39-0FCE-49F7-9A28-CE733DBB3572"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "F61496C8-9ADE-4A4E-9788-447050691727"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "E0780AD6-4F38-4400-AA63-E41879F74B68"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "86BA5BA6-1F79-4C89-A3F4-A56E2B664AED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "52C7994F-AA17-467B-919E-A49F0CC9DB47"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "9F007F6B-1EAA-468C-8159-78B020DF1E58"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.4.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "C9053FDE-A6BE-4535-AE36-A323F8B7ACA4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "81F9AF68-70BD-46DE-B7F2-97C9BD5182A9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "D1D808CD-B030-4334-A286-9B3A1D35C61D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0DFE9115-3E32-4A55-AB5A-83513322FE97"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.3:*:*:*:*:*:*:*",
"matchCriteriaId": "09BD6616-B2B9-49B1-AD20-9B13D93C8F2C"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "35A9634E-FCF4-4C67-A463-6BA5F63DD2A5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2D8CF5AA-7B41-4E98-8E7E-A399AAA510B9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8452BA9A-F56C-48E0-BDBA-9095AF78F521"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B2CE3B06-353C-4623-9EF4-78814DCB0D7D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "FD968EA0-616D-4A22-A15D-C66918E71761"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7.1:*:*:*:*:*:*:*",
"matchCriteriaId": "BE45FF20-1E52-46B6-9B38-07E5A6D6FD6D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.6.7.2:*:*:*:*:*:*:*",
"matchCriteriaId": "249F9108-758A-4118-94C1-BAC747AF45ED"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "978284EE-8BE8-43ED-ADA0-B90151D83EA5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.7.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "0BA140F9-4706-4B05-826E-962A277E625A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.7.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "5E7D3C93-B0FC-475E-9CCA-AA8A2101781D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:6.7.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "270CA092-1AF1-48D4-8695-E7DB694969C5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DFA94312-376E-4785-888F-3C07612E1DF7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "29E73FBF-2579-4660-AFFA-7F9607004226"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "87FAAFFB-0589-441B-8289-8B8A6E18F705"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "73B92119-793D-4A43-A056-24DB6826E759"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "093A0BC2-037C-463F-AFC5-EF11C2954EAD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C4F434FC-CAA4-4DBB-8094-C4ECC28B31E7"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "68C70BB3-33B3-4E7E-99D5-FF76D4ED96AE"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "B881B8DF-A96D-4B64-B98A-71F0D3388641"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "F6A97625-D39C-42D5-89E4-415A868A0972"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "5E4D83B4-9697-4071-AC9F-7ADC86A6B529"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.0.6.1:*:*:*:*:*:*:*",
"matchCriteriaId": "8F81F708-ACED-4E42-8CA9-116B5C4F5141"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "A58A2DA5-3EE7-408D-AAFA-82330F0325B2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.1.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "7FA98EEC-2059-4CA9-92F1-72C1E0BB7EC6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.1.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "F4C51EE7-866B-410C-B75E-EF260D5062B0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.1.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "5F1FFD07-B874-4D3C-8E2C-9A204F1E994E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FB5ACB9E-86AF-4EC1-9F36-A202429CD0F4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "AD1E4527-AAE2-4DA9-AFDA-6375839F7843"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2F0AF047-EAE9-4C77-BCEF-5CB26F84C742"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED03874-4071-4382-8A46-8B3A59E601FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "BF84E043-DF3C-4A95-8FDA-B0FDCD795377"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B9498087-9642-4A86-B3EE-1513C55A86E2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "36C229AB-2851-48D4-815A-63AAB4462A24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6DA4BCFC-8237-4F5C-9863-523EE7D8619B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "07693A92-7D84-45A1-ACD6-D83AE41D504B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2C78050A-A5FB-427B-BF0D-0353B240A4FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "85E76AE7-12AC-4419-AE66-43730B173B4E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5D401072-6709-4921-8918-720F28D61E24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C0EA3467-4205-4C41-AF24-689330F7396B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9BE94E38-5F29-4AE1-8129-7F7582C2CC75"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "FEF603AD-D69B-4DD8-A7F4-6BEFD355EF29"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "D6BD1665-7824-4D98-A930-432CBDA4EAD5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F8056E69-22FA-4935-A576-916805D90C62"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.4.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6A80BBBE-DB5E-460A-8621-6E28D2BD6E44"
}
]
}
]
}
],
"references": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-M446vbEO",
"source": "ykramarz@cisco.com",
"tags": [
"Broken Link"
]
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-dhJxQYZs",
"source": "ykramarz@cisco.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-75300",
"source": "ykramarz@cisco.com",
"tags": [
"Vendor Advisory"
]
}
]
}

150
CVE-2024/CVE-2024-204xx/CVE-2024-20482.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-20482",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2024-10-23T18:15:12.063",
"lastModified": "2024-10-25T12:56:07.750",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-11-01T19:49:21.493",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -17,6 +17,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -40,6 +60,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-863"
}
]
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -51,10 +81,120 @@
]
}
],
"references": [
"configurations": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-priv-esc-CMQ4S6m7",
"source": "ykramarz@cisco.com"
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "FB5ACB9E-86AF-4EC1-9F36-A202429CD0F4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "AD1E4527-AAE2-4DA9-AFDA-6375839F7843"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2F0AF047-EAE9-4C77-BCEF-5CB26F84C742"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED03874-4071-4382-8A46-8B3A59E601FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3:*:*:*:*:*:*:*",
"matchCriteriaId": "BF84E043-DF3C-4A95-8FDA-B0FDCD795377"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B9498087-9642-4A86-B3EE-1513C55A86E2"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "36C229AB-2851-48D4-815A-63AAB4462A24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "6DA4BCFC-8237-4F5C-9863-523EE7D8619B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5:*:*:*:*:*:*:*",
"matchCriteriaId": "07693A92-7D84-45A1-ACD6-D83AE41D504B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "2C78050A-A5FB-427B-BF0D-0353B240A4FF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.5.2:*:*:*:*:*:*:*",
"matchCriteriaId": "85E76AE7-12AC-4419-AE66-43730B173B4E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.6:*:*:*:*:*:*:*",
"matchCriteriaId": "4D803EC9-26EE-4799-A435-C782C92739CF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.7:*:*:*:*:*:*:*",
"matchCriteriaId": "6EEF87CD-2335-4886-A65C-4E33775AEC52"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.8:*:*:*:*:*:*:*",
"matchCriteriaId": "953EB81A-1B53-4A57-9F59-D4A7D37E657E"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.2.8.1:*:*:*:*:*:*:*",
"matchCriteriaId": "1CB534BC-3E4D-4484-AFD0-69524B1F07F9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "5D401072-6709-4921-8918-720F28D61E24"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "C0EA3467-4205-4C41-AF24-689330F7396B"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9BE94E38-5F29-4AE1-8129-7F7582C2CC75"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:secure_firewall_management_center:7.3.1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "FEF603AD-D69B-4DD8-A7F4-6BEFD355EF29"
}
]
}
]
}
],
"references": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-priv-esc-CMQ4S6m7",
"source": "ykramarz@cisco.com",
"tags": [
"Vendor Advisory"
]
}
]
}

1485
CVE-2024/CVE-2024-204xx/CVE-2024-20485.json
View File

File diff suppressed because it is too large Load Diff

39
CVE-2024/CVE-2024-220xx/CVE-2024-22007.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-22007",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-03-11T19:15:47.233",
"lastModified": "2024-03-12T12:40:13.500",
"lastModified": "2024-11-01T20:35:04.670",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "En constraint_check de fvp.c, existe una posible lectura fuera de los l\u00edmites debido a una verificaci\u00f3n de los l\u00edmites faltante. Esto podr\u00eda dar lugar a la divulgaci\u00f3n de informaci\u00f3n local sin necesidad de privilegios de ejecuci\u00f3n adicionales. La interacci\u00f3n del usuario no es necesaria para la explotaci\u00f3n."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.5,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
],
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-03-01",

14
CVE-2024/CVE-2024-222xx/CVE-2024-22251.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-22251",
"sourceIdentifier": "security@vmware.com",
"published": "2024-02-29T01:44:05.870",
"lastModified": "2024-02-29T13:49:29.390",
"lastModified": "2024-11-01T20:35:05.520",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -39,6 +39,18 @@
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
],
"references": [
{
"url": "https://www.vmware.com/security/advisories/VMSA-2024-0005.html",

39
CVE-2024/CVE-2024-225xx/CVE-2024-22513.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-22513",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-16T07:15:06.513",
"lastModified": "2024-03-17T22:38:29.433",
"lastModified": "2024-11-01T20:35:06.280",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Djangorestframework-simplejwt versi\u00f3n 5.3.1 y anteriores es vulnerable a la divulgaci\u00f3n de informaci\u00f3n. Un usuario puede acceder a los recursos de la aplicaci\u00f3n web incluso despu\u00e9s de que su cuenta haya sido deshabilitada debido a que faltan verificaciones de validaci\u00f3n del usuario a trav\u00e9s del m\u00e9todo for_user."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
],
"references": [
{
"url": "https://github.com/dmdhrumilmistry/CVEs/tree/main/CVE-2024-22513",

4
CVE-2024/CVE-2024-227xx/CVE-2024-22733.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-22733",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-11-01T16:15:08.077",
"lastModified": "2024-11-01T16:15:08.077",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

27
CVE-2024/CVE-2024-232xx/CVE-2024-23260.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23260",
"sourceIdentifier": "product-security@apple.com",
"published": "2024-03-08T02:15:48.890",
"lastModified": "2024-03-13T21:15:57.227",
"lastModified": "2024-11-01T20:35:07.100",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Este problema se solucion\u00f3 eliminando derechos adicionales. Este problema se solucion\u00f3 en macOS Sonoma 14.4. Es posible que una aplicaci\u00f3n pueda acceder a datos confidenciales del usuario."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "http://seclists.org/fulldisclosure/2024/Mar/21",

14
CVE-2024/CVE-2024-235xx/CVE-2024-23558.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-23558",
"sourceIdentifier": "psirt@hcl.com",
"published": "2024-04-15T21:15:07.080",
"lastModified": "2024-04-16T13:24:07.103",
"lastModified": "2024-11-01T19:35:15.123",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -39,6 +39,18 @@
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-290"
}
]
}
],
"references": [
{
"url": "https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0111923",

34
CVE-2024/CVE-2024-241xx/CVE-2024-24192.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-24192",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-06-06T22:15:10.213",
"lastModified": "2024-10-29T18:25:10.853",
"vulnStatus": "Analyzed",
"lastModified": "2024-11-01T19:35:16.720",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
@ -36,6 +36,26 @@
},
"exploitabilityScore": 3.9,
"impactScore": 5.2
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"baseSeverity": "LOW"
},
"exploitabilityScore": 1.2,
"impactScore": 1.4
}
]
},
@ -49,6 +69,16 @@
"value": "CWE-125"
}
]
},
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"configurations": [

27
CVE-2024/CVE-2024-249xx/CVE-2024-24978.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-24978",
"sourceIdentifier": "vultures@jpcert.or.jp",
"published": "2024-05-01T13:15:48.753",
"lastModified": "2024-05-01T19:50:25.633",
"lastModified": "2024-11-01T19:35:17.880",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Existe una vulnerabilidad de denegaci\u00f3n de servicio (DoS) en TvRock 0.9t8a. Recibir una solicitud especialmente manipulada por un atacante remoto o hacer que un usuario de TvRock haga clic en una solicitud especialmente manipulada puede provocar ABEND (final anormal). Tenga en cuenta que el desarrollador era inalcanzable, por lo tanto, los usuarios deber\u00edan considerar dejar de usar TvRock 0.9t8a."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"references": [
{
"url": "https://jvn.jp/en/jp/JVN40079147/",

39
CVE-2024/CVE-2024-250xx/CVE-2024-25080.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-25080",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-01T09:15:50.930",
"lastModified": "2024-04-01T12:49:00.877",
"lastModified": "2024-11-01T19:35:18.183",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "WebMail en Axigen 10.x anterior a 10.3.3.62 permite XSS a trav\u00e9s del visor de archivos adjuntos de im\u00e1genes."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.7,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://www.axigen.com/knowledgebase/Axigen-WebMail-XSS-Vulnerability-CVE-2024-25080-_401.html",

39
CVE-2024/CVE-2024-263xx/CVE-2024-26330.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-26330",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-06-11T17:15:51.260",
"lastModified": "2024-06-14T20:15:10.707",
"lastModified": "2024-11-01T20:35:07.497",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Se descubri\u00f3 un problema en Kape CyberGhostVPN 8.4.3.12823 en Windows. Despu\u00e9s de un cierre de sesi\u00f3n exitoso, las credenciales del usuario permanecen en la memoria mientras el proceso a\u00fan est\u00e1 abierto y se pueden obtener volcando la memoria del proceso y analiz\u00e1ndola."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-522"
}
]
}
],
"references": [
{
"url": "https://www.secuvera.de/advisories/secuvera-SA-2024-04.md",

39
CVE-2024/CVE-2024-263xx/CVE-2024-26351.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-26351",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-02-22T14:15:47.177",
"lastModified": "2024-02-22T19:07:27.197",
"lastModified": "2024-11-01T19:35:19.010",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Se descubri\u00f3 que flusity-CMS v2.33 conten\u00eda Cross-Site Request Forgery (CSRF) a trav\u00e9s del componente /core/tools/update_place.php"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-352"
}
]
}
],
"references": [
{
"url": "https://github.com/Icycu123/cms/blob/main/4.md",

27
CVE-2024/CVE-2024-266xx/CVE-2024-26662.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-26662",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-04-02T07:15:43.213",
"lastModified": "2024-04-02T12:50:42.233",
"lastModified": "2024-11-01T20:35:08.353",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: drm/amd/display: la soluci\u00f3n 'panel_cntl' podr\u00eda ser nula en 'dcn21_set_backlight_level()'. La estructura 'panel_cntl' utilizada para controlar el panel de visualizaci\u00f3n podr\u00eda ser nula, desreferenciarla podr\u00eda conducir a un acceso de puntero nulo. Corrige lo siguiente: drivers/gpu/drm/amd/amdgpu/../display/dc/hwss/dcn21/dcn21_hwseq.c:269 Error de dcn21_set_backlight_level(): previamente asumimos que 'panel_cntl' podr\u00eda ser nulo (consulte la l\u00ednea 250)"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://git.kernel.org/stable/c/0c863cab0e9173f8b6c7bc328bee3b8625f131b5",

39
CVE-2024/CVE-2024-272xx/CVE-2024-27282.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-27282",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-05-14T15:11:57.667",
"lastModified": "2024-05-14T16:13:02.773",
"lastModified": "2024-11-01T19:35:19.803",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Se descubri\u00f3 un problema en Ruby 3.x hasta 3.3.0. Si los datos proporcionados por el atacante se proporcionan al compilador de expresiones regulares de Ruby, es posible extraer datos del mont\u00f3n arbitrarios relacionados con el inicio del texto, incluidos punteros y cadenas confidenciales. Las versiones fijas son 3.0.7, 3.1.5, 3.2.4 y 3.3.1."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 4.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
],
"references": [
{
"url": "https://hackerone.com/reports/2122624",

4
CVE-2024/CVE-2024-275xx/CVE-2024-27524.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-27524",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-11-01T15:15:17.907",
"lastModified": "2024-11-01T15:15:17.907",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-275xx/CVE-2024-27525.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-27525",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-11-01T15:15:18.003",
"lastModified": "2024-11-01T15:15:18.003",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

27
CVE-2024/CVE-2024-276xx/CVE-2024-27612.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-27612",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-08T06:15:52.763",
"lastModified": "2024-03-08T14:02:57.420",
"lastModified": "2024-11-01T20:35:08.853",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "El editor de Numbas anterior a 7.3 maneja mal la edici\u00f3n de temas y extensiones."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.5,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://github.com/numbas/Numbas",

39
CVE-2024/CVE-2024-277xx/CVE-2024-27706.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-27706",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-04-03T21:15:31.453",
"lastModified": "2024-04-04T12:48:41.700",
"lastModified": "2024-11-01T20:35:09.120",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Una vulnerabilidad de Cross Site Scripting en Huly Platform v.0.6.202 permite a los atacantes ejecutar c\u00f3digo arbitrario mediante la carga de un archivo SVG manipulado en los problemas."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/b-hermes/vulnerability-research/blob/main/CVE-2024-27706/README.md",

27
CVE-2024/CVE-2024-278xx/CVE-2024-27852.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-27852",
"sourceIdentifier": "product-security@apple.com",
"published": "2024-05-14T15:13:08.957",
"lastModified": "2024-06-10T18:15:29.900",
"lastModified": "2024-11-01T20:35:10.103",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Se solucion\u00f3 un problema de privacidad mejorando el manejo de la identificaci\u00f3n del cliente para mercados de aplicaciones alternativos. Este problema se solucion\u00f3 en iOS 17.5 y iPadOS 17.5. Una p\u00e1gina web creada con fines malintencionados puede distribuir un script que rastrea a los usuarios en otras p\u00e1ginas web."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "http://seclists.org/fulldisclosure/2024/May/10",

27
CVE-2024/CVE-2024-280xx/CVE-2024-28061.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-28061",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-05-28T20:16:35.817",
"lastModified": "2024-05-29T13:02:09.280",
"lastModified": "2024-11-01T20:35:10.410",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "Se descubri\u00f3 un problema en Apiris Kafeo 6.4.4. Permite eludir la protecci\u00f3n vigente para acceder a los datos almacenados en el archivo de base de datos integrado."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
]
},
"references": [
{
"url": "https://excellium-services.com/cert-xlm-advisory/cve-2024-28061/",

4
CVE-2024/CVE-2024-282xx/CVE-2024-28265.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-28265",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-11-01T16:15:08.277",
"lastModified": "2024-11-01T16:15:08.277",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

39
CVE-2024/CVE-2024-285xx/CVE-2024-28564.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-28564",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-20T06:15:08.933",
"lastModified": "2024-05-01T18:15:17.460",
"lastModified": "2024-11-01T19:35:20.600",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Vulnerabilidad de desbordamiento de b\u00fafer en open source FreeImage v.3.19.0 [r1909] permite que un atacante local provoque una denegaci\u00f3n de servicio (DoS) a trav\u00e9s de la funci\u00f3n Imf_2_2::CharPtrIO::readChars() al leer im\u00e1genes en formato EXR."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 6.2,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.5,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-120"
}
]
}
],
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2024/04/11/10",

27
CVE-2024/CVE-2024-287xx/CVE-2024-28754.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-28754",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-09T00:15:59.987",
"lastModified": "2024-03-11T01:32:39.697",
"lastModified": "2024-11-01T19:35:21.447",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "RaspAP (tambi\u00e9n conocido como raspap-webgui) hasta 3.0.9 permite a atacantes remotos provocar una denegaci\u00f3n de servicio persistente (bricking) mediante una solicitud manipulada."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"references": [
{
"url": "https://dustri.org/b/carrot-disclosure.html",

39
CVE-2024/CVE-2024-288xx/CVE-2024-28823.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-28823",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-03-11T05:15:05.930",
"lastModified": "2024-03-11T12:47:42.653",
"lastModified": "2024-11-01T19:35:21.633",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "Amazon AWS aws-js-s3-explorer (tambi\u00e9n conocido como AWS JavaScript S3 Explorer) 1.0.0 permite XSS a trav\u00e9s de un nombre de dep\u00f3sito S3 manipulado para index.html."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://github.com/awslabs/aws-js-s3-explorer/commit/f62f12960d081895960d0dc6fde8364f25d651b6",

27
CVE-2024/CVE-2024-32xx/CVE-2024-3231.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-3231",
"sourceIdentifier": "contact@wpscan.com",
"published": "2024-05-17T06:15:53.140",
"lastModified": "2024-05-17T18:36:05.263",
"lastModified": "2024-11-01T20:35:12.910",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": " El complemento Popup4Phone de WordPress hasta la versi\u00f3n 1.3.2 no sanitiza ni escapa a algunos par\u00e1metros, lo que podr\u00eda permitir a usuarios no autenticados realizar ataques de Cross Site Scripting contra administradores."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
]
},
"references": [
{
"url": "https://wpscan.com/vulnerability/81dbb5c0-ccdd-4af1-b2f2-71cb1b37fe93/",

27
CVE-2024/CVE-2024-32xx/CVE-2024-3239.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-3239",
"sourceIdentifier": "contact@wpscan.com",
"published": "2024-05-14T15:40:31.957",
"lastModified": "2024-05-14T16:11:39.510",
"lastModified": "2024-11-01T20:35:13.183",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "El complemento The Post Grid Gutenberg Blocks and WordPress Blog Plugin para WordPress anterior a 4.0.2 no valida ni escapa algunas de sus opciones de bloqueo antes de devolverlas a una p\u00e1gina/publicaci\u00f3n donde est\u00e1 incrustado el bloque, lo que podr\u00eda permitir a los usuarios con el rol de colaborador y superior para realizar ataques de Cross-Site Scripting Almacenado"
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "REQUIRED",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.3,
"impactScore": 2.7
}
]
},
"references": [
{
"url": "https://wpscan.com/vulnerability/dfa1421b-41b0-4b25-95ef-0843103e1f5e/",

14
CVE-2024/CVE-2024-340xx/CVE-2024-34090.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-34090",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-05-06T16:15:13.423",
"lastModified": "2024-05-06T19:53:38.797",
"lastModified": "2024-11-01T20:35:10.933",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -39,6 +39,18 @@
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-79"
}
]
}
],
"references": [
{
"url": "https://archerirm.com",

7
CVE-2024/CVE-2024-341xx/CVE-2024-34121.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-34121",
"sourceIdentifier": "psirt@adobe.com",
"published": "2024-09-13T09:15:02.943",
"lastModified": "2024-09-16T11:55:00.837",
"vulnStatus": "Undergoing Analysis",
"lastModified": "2024-11-01T20:35:17.293",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
@ -62,8 +62,9 @@
{
"vulnerable": true,
"criteria": "cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:*",
"versionStartIncluding": "27.0.0",
"versionEndExcluding": "27.9.6",
"matchCriteriaId": "AC06E482-90FA-4037-B2A4-1CF07B59003C"
"matchCriteriaId": "B28B9856-5CA1-4022-BB26-8774A829CF13"
},
{
"vulnerable": true,

39
CVE-2024/CVE-2024-345xx/CVE-2024-34528.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-34528",
"sourceIdentifier": "cve@mitre.org",
"published": "2024-05-06T00:15:10.263",
"lastModified": "2024-05-06T12:44:56.377",
"lastModified": "2024-11-01T19:35:22.677",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,42 @@
"value": "WordOps hasta 3.20.0 tiene una condici\u00f3n de ejecuci\u00f3n TOCTOU wo/cli/plugins/stack_pref.py porque conf_path os.open no usa un par\u00e1metro de modo durante la creaci\u00f3n del archivo."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE",
"baseScore": 7.7,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.5,
"impactScore": 5.2
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-367"
}
]
}
],
"references": [
{
"url": "https://github.com/WordOps/WordOps/blob/ecf20192c7853925e2cb3f8c8378cd0d86ca0d62/wo/cli/plugins/stack_pref.py#L77",

27
CVE-2024/CVE-2024-359xx/CVE-2024-35970.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-35970",
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"published": "2024-05-20T10:15:11.860",
"lastModified": "2024-05-20T13:00:04.957",
"lastModified": "2024-11-01T19:35:23.483",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
@ -15,7 +15,30 @@
"value": "En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: af_unix: Borrar u->oob_skb obsoleto. syzkaller comenz\u00f3 a informar un punto muerto de unix_gc_lock despu\u00e9s de la confirmaci\u00f3n 4090fa373f0e (\"af_unix: Reemplazar el algoritmo de recolecci\u00f3n de basura\"), pero simplemente descubre el error que ha estado ah\u00ed desde la confirmaci\u00f3n 314001f0bf92 (\"af_unix: Agregar soporte OOB\"). La reproducci\u00f3n b\u00e1sicamente hace lo siguiente. desde importaci\u00f3n de socket * desde matriz de importaci\u00f3n matriz c1, c2 = socketpair(AF_UNIX, SOCK_STREAM) c1.sendmsg([b'a'], [(SOL_SOCKET, SCM_RIGHTS, array(\"i\", [c2.fileno()])) ], MSG_OOB) c2.recv(1) # bloqueado porque no hay datos normales en la cola de recepci\u00f3n c2.close() # hecho as\u00edncrono y desbloquea recv() c1.close() # hecho as\u00edncrono y activa GC Un socket env\u00eda su descriptor de archivo a como datos OOB e intenta recibir datos normales, pero finalmente recv() falla debido al cierre as\u00edncrono(). El problema aqu\u00ed es el manejo incorrecto de OOB skb en Manage_oob(). Cuando se llama a recvmsg() sin MSG_OOB, se llama a Manage_oob() para verificar si el skb visto es skb OOB. En tal caso, Manage_oob() lo saca de la cola de recepci\u00f3n pero no borra unix_sock(sk)->oob_skb. Esto est\u00e1 mal en t\u00e9rminos de uAPI. Digamos que enviamos \"hola\" con MSG_OOB y \"mundo\" sin MSG_OOB. La 'o' se maneja como datos OOB. Cuando se llama a recv() dos veces sin MSG_OOB, los datos OOB deber\u00edan perderse. >>> desde importaci\u00f3n de socket * >>> c1, c2 = socketpair(AF_UNIX, SOCK_STREAM, 0) >>> c1.send(b'hello', MSG_OOB) # 'o' son datos OOB 5 >>> c1.send (b'world') 5 >>> c2.recv(5) # Los datos OOB no se reciben b'hell' >>> c2.recv(5) # La fecha OOB se omite b'world' >>> c2.recv (5, MSG_OOB) # Esto deber\u00eda devolver un error b'o'. En la misma situaci\u00f3n, TCP en realidad devuelve -EINVAL para el \u00faltimo recv(). Adem\u00e1s, si no borramos unix_sk(sk)->oob_skb, unix_poll() siempre establece EPOLLPRI aunque los datos hayan pasado por el recv() anterior. Para evitar estos problemas, debemos borrar unix_sk(sk)->oob_skb al retirarlo de la cola de recepci\u00f3n. La raz\u00f3n por la que el antiguo GC no provoc\u00f3 el punto muerto es porque el antiguo GC depend\u00eda de la cola de recepci\u00f3n para detectar el bucle. Cuando se activa, el socket con datos OOB se marca como candidato de GC porque el recuento de archivos == recuento en vuelo (1). Sin embargo, despu\u00e9s de atravesar todos los sockets en vuelo, el socket todav\u00eda tiene un recuento positivo en vuelo (1), por lo que el socket queda excluido de los candidatos. Entonces, el antiguo GC pierde la oportunidad de recolectar basura en el socket. Con el antiguo GC, la reproducci\u00f3n contin\u00faa creando verdadera basura que kmemleak nunca liberar\u00e1 ni detectar\u00e1, ya que est\u00e1 vinculada a la lista global a bordo. Por eso ni siquiera pudimos notar el problema."
}
],
"metrics": {},
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
]
},
"references": [
{
"url": "https://git.kernel.org/stable/c/601a89ea24d05089debfa2dc896ea9f5937ac7a6",

4
CVE-2024/CVE-2024-370xx/CVE-2024-37094.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37094",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T14:15:05.980",
"lastModified": "2024-11-01T14:15:05.980",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:25:15.673",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-370xx/CVE-2024-37095.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37095",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:18.303",
"lastModified": "2024-11-01T15:15:18.303",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-370xx/CVE-2024-37096.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37096",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:18.537",
"lastModified": "2024-11-01T15:15:18.537",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-371xx/CVE-2024-37106.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37106",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:18.797",
"lastModified": "2024-11-01T15:15:18.797",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-371xx/CVE-2024-37108.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37108",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:19.067",
"lastModified": "2024-11-01T15:15:19.067",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-371xx/CVE-2024-37119.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37119",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:19.347",
"lastModified": "2024-11-01T15:15:19.347",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-371xx/CVE-2024-37123.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37123",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:19.567",
"lastModified": "2024-11-01T15:15:19.567",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37201.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37201",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:19.797",
"lastModified": "2024-11-01T15:15:19.797",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37203.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37203",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:20.020",
"lastModified": "2024-11-01T15:15:20.020",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37204.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37204",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:20.223",
"lastModified": "2024-11-01T15:15:20.223",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37207.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37207",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:20.470",
"lastModified": "2024-11-01T15:15:20.470",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37209.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37209",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:20.690",
"lastModified": "2024-11-01T15:15:20.690",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37214.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37214",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:20.933",
"lastModified": "2024-11-01T15:15:20.933",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37218.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37218",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:21.153",
"lastModified": "2024-11-01T15:15:21.153",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37220.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37220",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:21.367",
"lastModified": "2024-11-01T15:15:21.367",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37226.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37226",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:21.610",
"lastModified": "2024-11-01T15:15:21.610",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37232.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37232",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:21.820",
"lastModified": "2024-11-01T15:15:21.820",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37249.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37249",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:22.037",
"lastModified": "2024-11-01T15:15:22.037",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37250.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37250",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:22.243",
"lastModified": "2024-11-01T15:15:22.243",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37254.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37254",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:22.447",
"lastModified": "2024-11-01T15:15:22.447",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37255.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37255",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:22.660",
"lastModified": "2024-11-01T15:15:22.660",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37269.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37269",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:22.867",
"lastModified": "2024-11-01T15:15:22.867",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37276.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37276",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:23.073",
"lastModified": "2024-11-01T15:15:23.073",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-372xx/CVE-2024-37277.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37277",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:23.293",
"lastModified": "2024-11-01T15:15:23.293",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37411.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37411",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:23.500",
"lastModified": "2024-11-01T15:15:23.500",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37415.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37415",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:23.710",
"lastModified": "2024-11-01T15:15:23.710",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37423.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37423",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:23.923",
"lastModified": "2024-11-01T15:15:23.923",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37425.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37425",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:24.140",
"lastModified": "2024-11-01T15:15:24.140",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37427.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37427",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:24.343",
"lastModified": "2024-11-01T15:15:24.343",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37439.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37439",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:24.550",
"lastModified": "2024-11-01T15:15:24.550",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37440.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37440",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:24.757",
"lastModified": "2024-11-01T15:15:24.757",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37443.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37443",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:24.973",
"lastModified": "2024-11-01T15:15:24.973",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37444.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37444",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:25.207",
"lastModified": "2024-11-01T15:15:25.207",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37453.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37453",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:25.677",
"lastModified": "2024-11-01T15:15:25.677",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37456.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37456",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:25.960",
"lastModified": "2024-11-01T15:15:25.960",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37463.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37463",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:26.280",
"lastModified": "2024-11-01T15:15:26.280",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37468.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37468",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:26.550",
"lastModified": "2024-11-01T15:15:26.550",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37470.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37470",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:26.853",
"lastModified": "2024-11-01T15:15:26.853",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37475.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37475",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:27.170",
"lastModified": "2024-11-01T15:15:27.170",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37477.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37477",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:27.723",
"lastModified": "2024-11-01T15:15:27.723",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37481.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37481",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:28.103",
"lastModified": "2024-11-01T15:15:28.103",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37482.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37482",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:28.330",
"lastModified": "2024-11-01T15:15:28.330",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-374xx/CVE-2024-37483.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37483",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:28.557",
"lastModified": "2024-11-01T15:15:28.557",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

4
CVE-2024/CVE-2024-375xx/CVE-2024-37505.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-37505",
"sourceIdentifier": "audit@patchstack.com",
"published": "2024-11-01T15:15:28.797",
"lastModified": "2024-11-01T15:15:28.797",
"vulnStatus": "Received",
"lastModified": "2024-11-01T20:24:53.730",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{

Some files were not shown because too many files have changed in this diff Show More