From c9c5bcd47dde7a17f556411581955609b890dcc0 Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Fri, 16 Feb 2024 07:00:28 +0000 Subject: [PATCH] Auto-Update: 2024-02-16T07:00:24.638811+00:00 --- CVE-2019/CVE-2019-250xx/CVE-2019-25067.json | 37 +++++++++++++++++++-- README.md | 10 +++--- 2 files changed, 39 insertions(+), 8 deletions(-) diff --git a/CVE-2019/CVE-2019-250xx/CVE-2019-25067.json b/CVE-2019/CVE-2019-250xx/CVE-2019-25067.json index 2c701c0e56f..f812e500f26 100644 --- a/CVE-2019/CVE-2019-250xx/CVE-2019-25067.json +++ b/CVE-2019/CVE-2019-250xx/CVE-2019-25067.json @@ -2,12 +2,12 @@ "id": "CVE-2019-25067", "sourceIdentifier": "cna@vuldb.com", "published": "2022-06-09T17:15:08.313", - "lastModified": "2022-06-16T14:01:29.890", - "vulnStatus": "Analyzed", + "lastModified": "2024-02-16T05:15:08.247", + "vulnStatus": "Modified", "descriptions": [ { "lang": "en", - "value": "A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component API. The manipulation leads to Privilege Escalation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used." + "value": "A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component API. The manipulation leads to Remote Privilege Escalation. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-143949 was assigned to this vulnerability." }, { "lang": "es", @@ -80,6 +80,29 @@ "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false + }, + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", + "accessVector": "NETWORK", + "accessComplexity": "MEDIUM", + "authentication": "SINGLE", + "confidentialityImpact": "PARTIAL", + "integrityImpact": "PARTIAL", + "availabilityImpact": "PARTIAL", + "baseScore": 6.0 + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 6.8, + "impactScore": 6.4, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false } ] }, @@ -128,6 +151,14 @@ } ], "references": [ + { + "url": "https://github.com/containers/podman/issues/21628", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.143949", + "source": "cna@vuldb.com" + }, { "url": "https://vuldb.com/?id.143949", "source": "cna@vuldb.com", diff --git a/README.md b/README.md index 73dbab3dbc4..3098252fa5a 100644 --- a/README.md +++ b/README.md @@ -9,13 +9,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-02-16T05:00:24.361140+00:00 +2024-02-16T07:00:24.638811+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-02-16T04:15:08.090000+00:00 +2024-02-16T05:15:08.247000+00:00 ``` ### Last Data Feed Release @@ -34,15 +34,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `1` +Recently added CVEs: `0` -* [CVE-2023-6451](CVE-2023/CVE-2023-64xx/CVE-2023-6451.json) (`2024-02-16T04:15:08.090`) ### CVEs modified in the last Commit -Recently modified CVEs: `0` +Recently modified CVEs: `1` +* [CVE-2019-25067](CVE-2019/CVE-2019-250xx/CVE-2019-25067.json) (`2024-02-16T05:15:08.247`) ## Download and Usage