admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-07 19:16:29 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-Update: 2024-06-13T22:00:18.562370+00:00

Browse Source
This commit is contained in:
cad-safe-bot 2024-06-13 22:03:10 +00:00
parent 38590af273
commit b621285e78
65 changed files with 2355 additions and 604 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

102
CVE-2024/CVE-2024-204xx/CVE-2024-20404.json
View File

@ -2,8 +2,8 @@
"id": "CVE-2024-20404",
"sourceIdentifier": "ykramarz@cisco.com",
"published": "2024-06-05T17:15:11.790",
"lastModified": "2024-06-06T14:17:35.017",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-06-13T20:25:46.837",
"vulnStatus": "Analyzed",
"descriptions": [
{
"lang": "en",
@ -16,6 +16,26 @@
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 3.9,
"impactScore": 1.4
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -39,6 +59,16 @@
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-918"
}
]
},
{
"source": "ykramarz@cisco.com",
"type": "Secondary",
@ -50,10 +80,76 @@
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:*:*:*:*:*:*:*:*",
"versionEndExcluding": "11.6\\(1\\)",
"matchCriteriaId": "4E2816BE-3DC9-4248-90EF-AB5E2AF3CB49"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):-:*:*:*:*:*:*",
"matchCriteriaId": "7E507E31-71FA-437D-B325-48281650CFBA"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):es4:*:*:*:*:*:*",
"matchCriteriaId": "D917999F-E9AF-40C2-969A-36C8D5934590"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):es5:*:*:*:*:*:*",
"matchCriteriaId": "83BC183B-4CB6-47FB-9AAA-78E5E75BEB3D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):es6:*:*:*:*:*:*",
"matchCriteriaId": "93E2DBF0-FAF3-40A7-8BA4-9A56CD6D8939"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):es7:*:*:*:*:*:*",
"matchCriteriaId": "A071AD17-9134-43D0-A3C3-FF7348AA0DE4"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:11.6\\(1\\):es8:*:*:*:*:*:*",
"matchCriteriaId": "0EBC41A8-BE9B-4F19-A287-52A9DFEF2162"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:12.6\\(2\\):-:*:*:*:*:*:*",
"matchCriteriaId": "8C98A1AA-4F49-4DD8-B4F4-6194E487BBE9"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:12.6\\(2\\):es01:*:*:*:*:*:*",
"matchCriteriaId": "CCCF715C-5DDF-4586-AF7B-C2C3579F6041"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:cisco:finesse:12.6\\(2\\):es02:*:*:*:*:*:*",
"matchCriteriaId": "2C21D0F8-E157-4094-98BF-0CCCE0505CA3"
}
]
}
]
}
],
"references": [
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-finesse-ssrf-rfi-Um7wT8Ew",
"source": "ykramarz@cisco.com"
"source": "ykramarz@cisco.com",
"tags": [
"Vendor Advisory"
]
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29778.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29778",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:51.857",
"lastModified": "2024-06-13T21:15:51.857",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In ProtocolPsDedicatedBearInfoAdapter::processQosSession of protocolpsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29780.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29780",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:51.950",
"lastModified": "2024-06-13T21:15:51.950",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In hwbcc_ns_deprivilege of trusty/user/base/lib/hwbcc/client/hwbcc.c, there is a possible uninitialized stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29781.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29781",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:52.027",
"lastModified": "2024-06-13T21:15:52.027",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In ss_AnalyzeOssReturnResUssdArgIe of ss_OssAsnManagement.c, there is a possible out of bounds read due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29784.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29784",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:52.110",
"lastModified": "2024-06-13T21:15:52.110",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In prepare_response of lwis_periodic_io.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29785.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29785",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:52.180",
"lastModified": "2024-06-13T21:15:52.180",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In aur_get_state of aurora.c, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29786.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29786",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:52.257",
"lastModified": "2024-06-13T21:15:52.257",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In pktproc_fill_data_addr_without_bm of link_rx_pktproc.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-297xx/CVE-2024-29787.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-29787",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:52.340",
"lastModified": "2024-06-13T21:15:52.340",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In lwis_process_transactions_in_queue of lwis_transaction.c, there is a possible use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

43
CVE-2024/CVE-2024-300xx/CVE-2024-30057.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2024-30057",
"sourceIdentifier": "secure@microsoft.com",
"published": "2024-06-13T20:15:12.457",
"lastModified": "2024-06-13T20:15:12.457",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Edge for iOS Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.5
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30057",
"source": "secure@microsoft.com"
}
]
}

43
CVE-2024/CVE-2024-300xx/CVE-2024-30058.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2024-30058",
"sourceIdentifier": "secure@microsoft.com",
"published": "2024-06-13T20:15:12.670",
"lastModified": "2024-06-13T20:15:12.670",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Edge (Chromium-based) Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 2.5
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30058",
"source": "secure@microsoft.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32891.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32891",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:53.690",
"lastModified": "2024-06-13T21:15:53.690",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In sec_media_unprotect of media.c, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32892.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32892",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:53.770",
"lastModified": "2024-06-13T21:15:53.770",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In handle_init of goodix/main/main.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32893.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32893",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:53.847",
"lastModified": "2024-06-13T21:15:53.847",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In _s5e9865_mif_set_rate of exynos_dvfs.c, there is a possible out of bounds read due to improper casting. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32894.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32894",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:53.923",
"lastModified": "2024-06-13T21:15:53.923",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In bc_get_converted_received_bearer of bc_utilities.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32895.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32895",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:53.997",
"lastModified": "2024-06-13T21:15:53.997",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In BCMFASTPATH of dhd_msgbuf.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32896.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32896",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.080",
"lastModified": "2024-06-13T21:15:54.080",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "there is a possible way to bypass due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32897.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32897",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.150",
"lastModified": "2024-06-13T21:15:54.150",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In ProtocolCdmaCallWaitingIndAdapter::GetCwInfo() of protocolsmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32898.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32898",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.223",
"lastModified": "2024-06-13T21:15:54.223",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In ProtocolCellIdentityParserV4::Parse() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-328xx/CVE-2024-32899.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32899",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.287",
"lastModified": "2024-06-13T21:15:54.287",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In gpu_pm_power_off_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a race condition. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32900.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32900",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.357",
"lastModified": "2024-06-13T21:15:54.357",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In lwis_fence_signal of lwis_debug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from hal_camera_default SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32901.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32901",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.430",
"lastModified": "2024-06-13T21:15:54.430",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In v4l2_smfc_qbuf of smfc-v4l2-ioctls.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32902.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32902",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.503",
"lastModified": "2024-06-13T21:15:54.503",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Remote prevention of access to cellular service with no user interaction (for example, crashing the cellular radio service with a malformed packet)"
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32903.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32903",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.583",
"lastModified": "2024-06-13T21:15:54.583",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In prepare_response_locked of lwis_transaction.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32904.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32904",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.657",
"lastModified": "2024-06-13T21:15:54.657",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In ProtocolVsimOperationAdapter() of protocolvsimadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User Interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32905.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32905",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.730",
"lastModified": "2024-06-13T21:15:54.730",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In circ_read of link_device_memory_legacy.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32906.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32906",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.810",
"lastModified": "2024-06-13T21:15:54.810",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In AcvpOnMessage of avcp.cpp, there is a possible EOP due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32907.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32907",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.877",
"lastModified": "2024-06-13T21:15:54.877",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In memcall_add of memlog.c, there is a possible buffer overflow due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32908.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32908",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:54.957",
"lastModified": "2024-06-13T21:15:54.957",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In sec_media_protect of media.c, there is a possible permission bypass due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32909.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32909",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.027",
"lastModified": "2024-06-13T21:15:55.027",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In handle_msg of main.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32910.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32910",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.103",
"lastModified": "2024-06-13T21:15:55.103",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In handle_msg_shm_map_req of trusty/user/base/lib/spi/srv/tipc/tipc.c, there is a possible stack data disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32911.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32911",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.173",
"lastModified": "2024-06-13T21:15:55.173",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "There is a possible escalation of privilege due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32912.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32912",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.250",
"lastModified": "2024-06-13T21:15:55.250",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "there is a possible persistent Denial of Service due to test/debugging code left in a production build. This could lead to local denial of service of impaired use of the device with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32913.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32913",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.327",
"lastModified": "2024-06-13T21:15:55.327",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32914.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32914",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.393",
"lastModified": "2024-06-13T21:15:55.393",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In tpu_get_int_state of tpu.c, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32915.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32915",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.467",
"lastModified": "2024-06-13T21:15:55.467",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In CellInfoListParserV2::FillCellInfo() of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with baseband firmware compromise required. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32916.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32916",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.533",
"lastModified": "2024-06-13T21:15:55.533",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In fvp_freq_histogram_init of fvp.c, there is a possible Information Disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32917.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32917",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.603",
"lastModified": "2024-06-13T21:15:55.603",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In pl330_dma_from_peri_start() of fp_spi_dma.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32918.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32918",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.683",
"lastModified": "2024-06-13T21:15:55.683",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Permission Bypass allowing attackers to disable HDCP 2.2 encryption by not completing the HDCP Key Exchange initialization steps"
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32919.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32919",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.757",
"lastModified": "2024-06-13T21:15:55.757",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In lwis_add_completion_fence of lwis_fence.c, there is a possible escalation of privilege due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32920.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32920",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.830",
"lastModified": "2024-06-13T21:15:55.830",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In set_secure_reg of sac_handler.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure of 4 bytes of stack memory with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32921.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32921",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.900",
"lastModified": "2024-06-13T21:15:55.900",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In lwis_initialize_transaction_fences of lwis_fence.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32922.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32922",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:55.970",
"lastModified": "2024-06-13T21:15:55.970",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a logic error in the code. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32923.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32923",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.040",
"lastModified": "2024-06-13T21:15:56.040",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "there is a possible cellular denial of service due to a logic error in the code. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32924.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32924",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.113",
"lastModified": "2024-06-13T21:15:56.113",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In DeregAcceptProcINT of cn_NrmmStateDeregInit.cpp, there is a possible denial of service due to a logic error in the code. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32925.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32925",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.187",
"lastModified": "2024-06-13T21:15:56.187",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In dhd_prot_txstatus_process of dhd_msgbuf.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32926.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32926",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.253",
"lastModified": "2024-06-13T21:15:56.253",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "there is a possible information disclosure due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32929.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32929",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.320",
"lastModified": "2024-06-13T21:15:56.320",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In gpu_slc_get_region of pixel_gpu_slc.c, there is a possible EoP due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-05-01",
"source": "dsap-vuln-management@google.com"
}
]
}

20
CVE-2024/CVE-2024-329xx/CVE-2024-32930.json Normal file
View File

@ -0,0 +1,20 @@
{
"id": "CVE-2024-32930",
"sourceIdentifier": "dsap-vuln-management@google.com",
"published": "2024-06-13T21:15:56.390",
"lastModified": "2024-06-13T21:15:56.390",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In plugin_ipc_handler of slc_plugin.c, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure of 4 bytes of stack memory with no additional execution privileges needed. User interaction is not needed for exploitation."
}
],
"metrics": {},
"references": [
{
"url": "https://source.android.com/security/bulletin/pixel/2024-06-01",
"source": "dsap-vuln-management@google.com"
}
]
}

2
CVE-2024/CVE-2024-362xx/CVE-2024-36265.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-36265",
"sourceIdentifier": "security@apache.org",
"published": "2024-06-12T15:15:52.247",
"lastModified": "2024-06-13T18:36:09.010",
"lastModified": "2024-06-13T21:15:57.170",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{

43
CVE-2024/CVE-2024-380xx/CVE-2024-38083.json Normal file
View File

@ -0,0 +1,43 @@
{
"id": "CVE-2024-38083",
"sourceIdentifier": "secure@microsoft.com",
"published": "2024-06-13T20:15:15.157",
"lastModified": "2024-06-13T20:15:15.157",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Microsoft Edge (Chromium-based) Spoofing Vulnerability"
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "secure@microsoft.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"references": [
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38083",
"source": "secure@microsoft.com"
}
]
}

24
CVE-2024/CVE-2024-383xx/CVE-2024-38312.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2024-38312",
"sourceIdentifier": "security@mozilla.org",
"published": "2024-06-13T20:15:15.370",
"lastModified": "2024-06-13T20:15:15.370",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "When browsing private tabs, some data related to location history or webpage thumbnails could be persisted incorrectly within the sandboxed app bundle after app termination This vulnerability affects Firefox for iOS < 127."
}
],
"metrics": {},
"references": [
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878578",
"source": "security@mozilla.org"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2024-27/",
"source": "security@mozilla.org"
}
]
}

24
CVE-2024/CVE-2024-383xx/CVE-2024-38313.json Normal file
View File

@ -0,0 +1,24 @@
{
"id": "CVE-2024-38313",
"sourceIdentifier": "security@mozilla.org",
"published": "2024-06-13T20:15:15.450",
"lastModified": "2024-06-13T20:15:15.450",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "In certain scenarios a malicious website could attempt to display a fake location URL bar which could mislead users as to the actual website address This vulnerability affects Firefox for iOS < 127."
}
],
"metrics": {},
"references": [
{
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=1878489",
"source": "security@mozilla.org"
},
{
"url": "https://www.mozilla.org/security/advisories/mfsa2024-27/",
"source": "security@mozilla.org"
}
]
}

42
CVE-2024/CVE-2024-40xx/CVE-2024-4030.json
View File

@ -2,7 +2,7 @@
"id": "CVE-2024-4030",
"sourceIdentifier": "cna@python.org",
"published": "2024-05-07T21:15:09.467",
"lastModified": "2024-05-08T13:15:00.690",
"lastModified": "2024-06-13T20:15:15.570",
"vulnStatus": "Awaiting Analysis",
"descriptions": [
{
@ -28,6 +28,22 @@
}
],
"references": [
{
"url": "https://github.com/python/cpython/commit/35c799d79177b962ddace2fa068101465570a29a",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/5130731c9e779b97d00a24f54cdce73ce9975dfd",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/66f8bb76a15e64a1bb7688b177ed29e26230fdee",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/6d0850c4c8188035643586ab4d8ec2468abd699e",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/81939dad77001556c527485d31a2d0f4a759033e",
"source": "cna@python.org"
@ -36,6 +52,30 @@
"url": "https://github.com/python/cpython/commit/8ed546679524140d8282175411fd141fe7df070d",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/91e3669e01245185569d09e9e6e11641282971ee",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/94591dca510c796c7d40e9b4167ea56f2fdf28ca",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/c8f868dc52f98011d0f9b459b6487920bfb0ac4d",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/d86b49411753bf2c83291e3a14ae43fefded2f84",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/e1dfa978b1ad210d551385ad8073ec6154f53763",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/commit/eb29e2f5905da93333d1ce78bc98b151e763ff46",
"source": "cna@python.org"
},
{
"url": "https://github.com/python/cpython/issues/118486",
"source": "cna@python.org"

55
CVE-2024/CVE-2024-46xx/CVE-2024-4696.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-4696",
"sourceIdentifier": "psirt@lenovo.com",
"published": "2024-06-13T20:15:15.697",
"lastModified": "2024-06-13T20:15:15.697",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A privilege escalation vulnerability was reported in Lenovo Service Bridge prior to version 5.0.2.17 that could allow operating system commands to be executed if a specially crafted link is visited."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@lenovo.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "HIGH",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 1.6,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "psirt@lenovo.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-78"
}
]
}
],
"references": [
{
"url": "https://support.lenovo.com/us/en/product_security/LEN-163429",
"source": "psirt@lenovo.com"
}
]
}

50
CVE-2024/CVE-2024-57xx/CVE-2024-5758.json
View File

@ -2,54 +2,14 @@
"id": "CVE-2024-5758",
"sourceIdentifier": "security@wordfence.com",
"published": "2024-06-08T07:15:08.630",
"lastModified": "2024-06-10T02:52:08.267",
"vulnStatus": "Awaiting Analysis",
"lastModified": "2024-06-13T21:15:57.543",
"vulnStatus": "Rejected",
"descriptions": [
{
"lang": "en",
"value": "The Post Grid Gutenberg Blocks and WordPress Blog Plugin \u2013 PostX plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the filterMobileText parameter in all versions up to, and including, 4.0.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."
"value": "Rejected reason: ** REJECT ** Duplicate of CVE-2024-4305. Please use CVE-2024-4305 instead."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security@wordfence.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE",
"baseScore": 6.4,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 3.1,
"impactScore": 2.7
}
]
},
"references": [
{
"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3088956%40ultimate-post%2Ftrunk&old=3076390%40ultimate-post%2Ftrunk&sfp_email=&sfph_mail=",
"source": "security@wordfence.com"
},
{
"url": "https://research.cleantalk.org/cve-2024-4305/",
"source": "security@wordfence.com"
},
{
"url": "https://wpscan.com/vulnerability/635be98d-4c17-4e75-871f-9794d85a2eb1/",
"source": "security@wordfence.com"
},
{
"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/4dcc3f47-8504-4aa6-af60-03edeaa39fd7?source=cve",
"source": "security@wordfence.com"
}
]
"metrics": {},
"references": []
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5924.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5924",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:16.000",
"lastModified": "2024-06-13T20:15:16.000",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Dropbox Desktop Folder Sharing Mark-of-the-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Dropbox Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the handling of shared folders. When syncing files from a shared folder belonging to an untrusted account, the Dropbox desktop application does not apply the Mark-of-the-Web to the local files. An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. Was ZDI-CAN-23991."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-693"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-677/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5947.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5947",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:16.277",
"lastModified": "2024-06-13T20:15:16.277",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Configuration Backup Missing Authentication Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based UI. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to disclose stored credentials, leading to further compromise. Was ZDI-CAN-22679."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-671/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5948.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5948",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:16.497",
"lastModified": "2024-06-13T20:15:16.497",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Multipart Boundary Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of multipart boundaries. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-23170."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-121"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-672/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5949.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5949",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:16.710",
"lastModified": "2024-06-13T20:15:16.710",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Multipart Boundary Infinite Loop Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of multipart boundaries. The issue results from a logic error that can lead to an infinite loop. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-23171."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-835"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-673/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5950.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5950",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:16.923",
"lastModified": "2024-06-13T20:15:16.923",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Multipart Value Handling Stack-Based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of multipart form variables. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the device. Was ZDI-CAN-23172."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-121"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-674/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5951.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5951",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:17.140",
"lastModified": "2024-06-13T20:15:17.140",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Factory Reset Missing Authentication Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based UI. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-23173."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 2.8,
"impactScore": 4.2
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-675/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

55
CVE-2024/CVE-2024-59xx/CVE-2024-5952.json Normal file
View File

@ -0,0 +1,55 @@
{
"id": "CVE-2024-5952",
"sourceIdentifier": "zdi-disclosures@trendmicro.com",
"published": "2024-06-13T20:15:17.350",
"lastModified": "2024-06-13T20:15:17.350",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "Deep Sea Electronics DSE855 Restart Missing Authentication Denial-of-Service Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Deep Sea Electronics DSE855 devices. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the web-based UI. The issue results from the lack of authentication prior to allowing access to functionality. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-23174."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"attackVector": "ADJACENT_NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 1.4
}
]
},
"weaknesses": [
{
"source": "zdi-disclosures@trendmicro.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-306"
}
]
}
],
"references": [
{
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-676/",
"source": "zdi-disclosures@trendmicro.com"
}
]
}

92
CVE-2024/CVE-2024-59xx/CVE-2024-5976.json Normal file
View File

@ -0,0 +1,92 @@
{
"id": "CVE-2024-5976",
"sourceIdentifier": "cna@vuldb.com",
"published": "2024-06-13T21:15:57.683",
"lastModified": "2024-06-13T21:15:57.683",
"vulnStatus": "Received",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. Affected is the function log_employee of the file /classes/Master.php?f=log_employee. The manipulation of the argument employee_code leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-268422 is the identifier assigned to this vulnerability."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4
}
],
"cvssMetricV2": [
{
"source": "cna@vuldb.com",
"type": "Secondary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "cna@vuldb.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-89"
}
]
}
],
"references": [
{
"url": "https://github.com/Xu-Mingming/cve/blob/main/sql.md",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?ctiid.268422",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?id.268422",
"source": "cna@vuldb.com"
},
{
"url": "https://vuldb.com/?submit.355692",
"source": "cna@vuldb.com"
}
]
}

81
README.md
View File

@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
### Last Repository Update
```plain
2024-06-13T20:00:19.785812+00:00
2024-06-13T22:00:18.562370+00:00
```
### Most recent CVE Modification Timestamp synchronized with NVD
```plain
2024-06-13T19:36:21.350000+00:00
2024-06-13T21:15:57.683000+00:00
```
### Last Data Feed Release
@ -33,61 +33,48 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
### Total Number of included CVEs
```plain
253951
254010
```
### CVEs added in the last Commit
Recently added CVEs: `17`
Recently added CVEs: `59`
- [CVE-2024-36586](CVE-2024/CVE-2024-365xx/CVE-2024-36586.json) (`2024-06-13T19:15:51.863`)
- [CVE-2024-36587](CVE-2024/CVE-2024-365xx/CVE-2024-36587.json) (`2024-06-13T19:15:51.977`)
- [CVE-2024-36588](CVE-2024/CVE-2024-365xx/CVE-2024-36588.json) (`2024-06-13T19:15:52.067`)
- [CVE-2024-36589](CVE-2024/CVE-2024-365xx/CVE-2024-36589.json) (`2024-06-13T19:15:52.157`)
- [CVE-2024-36760](CVE-2024/CVE-2024-367xx/CVE-2024-36760.json) (`2024-06-13T18:15:10.440`)
- [CVE-2024-37022](CVE-2024/CVE-2024-370xx/CVE-2024-37022.json) (`2024-06-13T18:15:10.547`)
- [CVE-2024-37029](CVE-2024/CVE-2024-370xx/CVE-2024-37029.json) (`2024-06-13T18:15:10.790`)
- [CVE-2024-37630](CVE-2024/CVE-2024-376xx/CVE-2024-37630.json) (`2024-06-13T18:15:11.030`)
- [CVE-2024-37631](CVE-2024/CVE-2024-376xx/CVE-2024-37631.json) (`2024-06-13T19:15:52.270`)
- [CVE-2024-37632](CVE-2024/CVE-2024-376xx/CVE-2024-37632.json) (`2024-06-13T19:15:52.357`)
- [CVE-2024-37633](CVE-2024/CVE-2024-376xx/CVE-2024-37633.json) (`2024-06-13T19:15:52.443`)
- [CVE-2024-37634](CVE-2024/CVE-2024-376xx/CVE-2024-37634.json) (`2024-06-13T19:15:52.537`)
- [CVE-2024-37635](CVE-2024/CVE-2024-376xx/CVE-2024-37635.json) (`2024-06-13T19:15:52.630`)
- [CVE-2024-38282](CVE-2024/CVE-2024-382xx/CVE-2024-38282.json) (`2024-06-13T18:15:11.147`)
- [CVE-2024-38283](CVE-2024/CVE-2024-382xx/CVE-2024-38283.json) (`2024-06-13T18:15:11.283`)
- [CVE-2024-38284](CVE-2024/CVE-2024-382xx/CVE-2024-38284.json) (`2024-06-13T18:15:11.420`)
- [CVE-2024-38285](CVE-2024/CVE-2024-382xx/CVE-2024-38285.json) (`2024-06-13T18:15:11.547`)
- [CVE-2024-32916](CVE-2024/CVE-2024-329xx/CVE-2024-32916.json) (`2024-06-13T21:15:55.533`)
- [CVE-2024-32917](CVE-2024/CVE-2024-329xx/CVE-2024-32917.json) (`2024-06-13T21:15:55.603`)
- [CVE-2024-32918](CVE-2024/CVE-2024-329xx/CVE-2024-32918.json) (`2024-06-13T21:15:55.683`)
- [CVE-2024-32919](CVE-2024/CVE-2024-329xx/CVE-2024-32919.json) (`2024-06-13T21:15:55.757`)
- [CVE-2024-32920](CVE-2024/CVE-2024-329xx/CVE-2024-32920.json) (`2024-06-13T21:15:55.830`)
- [CVE-2024-32921](CVE-2024/CVE-2024-329xx/CVE-2024-32921.json) (`2024-06-13T21:15:55.900`)
- [CVE-2024-32922](CVE-2024/CVE-2024-329xx/CVE-2024-32922.json) (`2024-06-13T21:15:55.970`)
- [CVE-2024-32923](CVE-2024/CVE-2024-329xx/CVE-2024-32923.json) (`2024-06-13T21:15:56.040`)
- [CVE-2024-32924](CVE-2024/CVE-2024-329xx/CVE-2024-32924.json) (`2024-06-13T21:15:56.113`)
- [CVE-2024-32925](CVE-2024/CVE-2024-329xx/CVE-2024-32925.json) (`2024-06-13T21:15:56.187`)
- [CVE-2024-32926](CVE-2024/CVE-2024-329xx/CVE-2024-32926.json) (`2024-06-13T21:15:56.253`)
- [CVE-2024-32929](CVE-2024/CVE-2024-329xx/CVE-2024-32929.json) (`2024-06-13T21:15:56.320`)
- [CVE-2024-32930](CVE-2024/CVE-2024-329xx/CVE-2024-32930.json) (`2024-06-13T21:15:56.390`)
- [CVE-2024-38083](CVE-2024/CVE-2024-380xx/CVE-2024-38083.json) (`2024-06-13T20:15:15.157`)
- [CVE-2024-38312](CVE-2024/CVE-2024-383xx/CVE-2024-38312.json) (`2024-06-13T20:15:15.370`)
- [CVE-2024-38313](CVE-2024/CVE-2024-383xx/CVE-2024-38313.json) (`2024-06-13T20:15:15.450`)
- [CVE-2024-4696](CVE-2024/CVE-2024-46xx/CVE-2024-4696.json) (`2024-06-13T20:15:15.697`)
- [CVE-2024-5924](CVE-2024/CVE-2024-59xx/CVE-2024-5924.json) (`2024-06-13T20:15:16.000`)
- [CVE-2024-5947](CVE-2024/CVE-2024-59xx/CVE-2024-5947.json) (`2024-06-13T20:15:16.277`)
- [CVE-2024-5948](CVE-2024/CVE-2024-59xx/CVE-2024-5948.json) (`2024-06-13T20:15:16.497`)
- [CVE-2024-5949](CVE-2024/CVE-2024-59xx/CVE-2024-5949.json) (`2024-06-13T20:15:16.710`)
- [CVE-2024-5950](CVE-2024/CVE-2024-59xx/CVE-2024-5950.json) (`2024-06-13T20:15:16.923`)
- [CVE-2024-5951](CVE-2024/CVE-2024-59xx/CVE-2024-5951.json) (`2024-06-13T20:15:17.140`)
- [CVE-2024-5952](CVE-2024/CVE-2024-59xx/CVE-2024-5952.json) (`2024-06-13T20:15:17.350`)
- [CVE-2024-5976](CVE-2024/CVE-2024-59xx/CVE-2024-5976.json) (`2024-06-13T21:15:57.683`)
### CVEs modified in the last Commit
Recently modified CVEs: `487`
Recently modified CVEs: `4`
- [CVE-2024-5837](CVE-2024/CVE-2024-58xx/CVE-2024-5837.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5838](CVE-2024/CVE-2024-58xx/CVE-2024-5838.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5839](CVE-2024/CVE-2024-58xx/CVE-2024-5839.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5840](CVE-2024/CVE-2024-58xx/CVE-2024-5840.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5841](CVE-2024/CVE-2024-58xx/CVE-2024-5841.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5842](CVE-2024/CVE-2024-58xx/CVE-2024-5842.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5843](CVE-2024/CVE-2024-58xx/CVE-2024-5843.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5844](CVE-2024/CVE-2024-58xx/CVE-2024-5844.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5845](CVE-2024/CVE-2024-58xx/CVE-2024-5845.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5846](CVE-2024/CVE-2024-58xx/CVE-2024-5846.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5847](CVE-2024/CVE-2024-58xx/CVE-2024-5847.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5851](CVE-2024/CVE-2024-58xx/CVE-2024-5851.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5891](CVE-2024/CVE-2024-58xx/CVE-2024-5891.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5892](CVE-2024/CVE-2024-58xx/CVE-2024-5892.json) (`2024-06-13T18:36:09.013`)
- [CVE-2024-5893](CVE-2024/CVE-2024-58xx/CVE-2024-5893.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5894](CVE-2024/CVE-2024-58xx/CVE-2024-5894.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5895](CVE-2024/CVE-2024-58xx/CVE-2024-5895.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5896](CVE-2024/CVE-2024-58xx/CVE-2024-5896.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5897](CVE-2024/CVE-2024-58xx/CVE-2024-5897.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5898](CVE-2024/CVE-2024-58xx/CVE-2024-5898.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5905](CVE-2024/CVE-2024-59xx/CVE-2024-5905.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5906](CVE-2024/CVE-2024-59xx/CVE-2024-5906.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5907](CVE-2024/CVE-2024-59xx/CVE-2024-5907.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5908](CVE-2024/CVE-2024-59xx/CVE-2024-5908.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-5909](CVE-2024/CVE-2024-59xx/CVE-2024-5909.json) (`2024-06-13T18:36:09.010`)
- [CVE-2024-20404](CVE-2024/CVE-2024-204xx/CVE-2024-20404.json) (`2024-06-13T20:25:46.837`)
- [CVE-2024-36265](CVE-2024/CVE-2024-362xx/CVE-2024-36265.json) (`2024-06-13T21:15:57.170`)
- [CVE-2024-4030](CVE-2024/CVE-2024-40xx/CVE-2024-4030.json) (`2024-06-13T20:15:15.570`)
- [CVE-2024-5758](CVE-2024/CVE-2024-57xx/CVE-2024-5758.json) (`2024-06-13T21:15:57.543`)
## Download and Usage

1073
_state.csv
View File

File diff suppressed because it is too large Load Diff