Auto-Update: 2025-04-22T10:00:19.164672+00:00

2025-05-06 18:52:58 +00:00 · 2025-04-22 10:03:51 +00:00 · 2025-04-22 10:03:51 +00:00 · ca6469be9b
commit ca6469be9b
parent 88ec3b4a0d
7 changed files with 212 additions and 20 deletions
--- a/CVE-2025/CVE-2025-264xx/CVE-2025-26413.json
+++ b/CVE-2025/CVE-2025-264xx/CVE-2025-26413.json
@ -0,0 +1,37 @@
+{
+  "id": "CVE-2025-26413",
+  "sourceIdentifier": "security@apache.org",
+  "published": "2025-04-22T08:15:28.853",
+  "lastModified": "2025-04-22T09:15:15.103",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Improper Input Validation vulnerability in Apache Kvrocks.\n\nThe SETRANGE command didn't check if the `offset` input is a positive integer and use it as an index\nof a string. So it will cause the server to crash due to its index is\u00a0 out of range.\nThis issue affects Apache Kvrocks: through 2.11.1.\n\nUsers are recommended to upgrade to version 2.12.0, which fixes the issue."
+    }
+  ],
+  "metrics": {},
+  "weaknesses": [
+    {
+      "source": "security@apache.org",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-20"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://lists.apache.org/thread/388743qrr8yq8qm0go8tls6rf1kog8dw",
+      "source": "security@apache.org"
+    },
+    {
+      "url": "http://www.openwall.com/lists/oss-security/2025/04/22/1",
+      "source": "af854a3a-2127-422b-91ae-364da2661108"
+    }
+  ]
+}
--- a/CVE-2025/CVE-2025-321xx/CVE-2025-32176.json
+++ b/CVE-2025/CVE-2025-321xx/CVE-2025-32176.json
@ -2,13 +2,13 @@
  "id": "CVE-2025-32176",
  "sourceIdentifier": "audit@patchstack.com",
  "published": "2025-04-04T16:15:26.817",
-  "lastModified": "2025-04-07T14:18:15.560",
+  "lastModified": "2025-04-22T09:15:15.270",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
-      "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator Gallery Blocks with Lightbox allows Stored XSS. This issue affects Gallery Blocks with Lightbox: from n/a through 3.2.5."
+      "value": "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in GalleryCreator Gallery Blocks with Lightbox allows Stored XSS.This issue affects Gallery Blocks with Lightbox: from n/a through 3.2.5."
    },
    {
      "lang": "es",
@ -42,7 +42,7 @@
  "weaknesses": [
    {
      "source": "audit@patchstack.com",
-      "type": "Primary",
+      "type": "Secondary",
      "description": [
        {
          "lang": "en",
--- a/CVE-2025/CVE-2025-35xx/CVE-2025-3518.json
+++ b/CVE-2025/CVE-2025-35xx/CVE-2025-3518.json
@ -0,0 +1,66 @@
+{
+  "id": "CVE-2025-3518",
+  "sourceIdentifier": "vulnerability@ncsc.ch",
+  "published": "2025-04-22T09:15:15.510",
+  "lastModified": "2025-04-22T09:15:15.510",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "It technically possible for a user to upload a file to a conversation despite the file upload functionality being disabled.\n\nThe file upload functionality can be enabled or disabled for specific use cases through configuration. In case the functionality is disabled for at least one use case, the system nevertheless allows files to be uploaded through direct API requests. During the upload file, interception and allowed file type rules are still applied correctly.\n\nIf file sharing is generally enabled, this issue is not of concern."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "vulnerability@ncsc.ch",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
+          "baseScore": 5.3,
+          "baseSeverity": "MEDIUM",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "attackRequirements": "NONE",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "vulnConfidentialityImpact": "NONE",
+          "vulnIntegrityImpact": "LOW",
+          "vulnAvailabilityImpact": "NONE",
+          "subConfidentialityImpact": "NONE",
+          "subIntegrityImpact": "LOW",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "NOT_DEFINED",
+          "Recovery": "NOT_DEFINED",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "NOT_DEFINED",
+          "providerUrgency": "NOT_DEFINED"
+        }
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.unblu.com/en/docs/latest/security-bulletins/#UBL-2025-002",
+      "source": "vulnerability@ncsc.ch"
+    }
+  ]
+}
--- a/CVE-2025/CVE-2025-35xx/CVE-2025-3519.json
+++ b/CVE-2025/CVE-2025-35xx/CVE-2025-3519.json
@ -0,0 +1,78 @@
+{
+  "id": "CVE-2025-3519",
+  "sourceIdentifier": "vulnerability@ncsc.ch",
+  "published": "2025-04-22T09:15:15.660",
+  "lastModified": "2025-04-22T09:15:15.660",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An authorization bypass\u00a0in\u00a0Unblu Spark allows a\u00a0participant of a conversation\u00a0to replace an existing, uploaded file.\n\nEvery uploaded file in Unblu gets assigned with a randomly generated Universally Unique ID (UUID). In case a participant of this or another conversation gets access to such a file ID, it can be used to replace the file without changing the file name and details or the name of the user who uploaded the file. During the upload, file interception and allowed file type rules are still applied correctly."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV40": [
+      {
+        "source": "vulnerability@ncsc.ch",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "4.0",
+          "vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
+          "baseScore": 7.0,
+          "baseSeverity": "HIGH",
+          "attackVector": "NETWORK",
+          "attackComplexity": "HIGH",
+          "attackRequirements": "PRESENT",
+          "privilegesRequired": "LOW",
+          "userInteraction": "NONE",
+          "vulnConfidentialityImpact": "NONE",
+          "vulnIntegrityImpact": "HIGH",
+          "vulnAvailabilityImpact": "NONE",
+          "subConfidentialityImpact": "NONE",
+          "subIntegrityImpact": "HIGH",
+          "subAvailabilityImpact": "NONE",
+          "exploitMaturity": "NOT_DEFINED",
+          "confidentialityRequirement": "NOT_DEFINED",
+          "integrityRequirement": "NOT_DEFINED",
+          "availabilityRequirement": "NOT_DEFINED",
+          "modifiedAttackVector": "NOT_DEFINED",
+          "modifiedAttackComplexity": "NOT_DEFINED",
+          "modifiedAttackRequirements": "NOT_DEFINED",
+          "modifiedPrivilegesRequired": "NOT_DEFINED",
+          "modifiedUserInteraction": "NOT_DEFINED",
+          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
+          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
+          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
+          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
+          "modifiedSubIntegrityImpact": "NOT_DEFINED",
+          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
+          "Safety": "NOT_DEFINED",
+          "Automatable": "NOT_DEFINED",
+          "Recovery": "NOT_DEFINED",
+          "valueDensity": "NOT_DEFINED",
+          "vulnerabilityResponseEffort": "NOT_DEFINED",
+          "providerUrgency": "NOT_DEFINED"
+        }
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "vulnerability@ncsc.ch",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-639"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.unblu.com/en/docs/latest/security-bulletins/#UBL-2025-001",
+      "source": "vulnerability@ncsc.ch"
+    }
+  ]
+}
--- a/CVE-2025/CVE-2025-38xx/CVE-2025-3814.json
+++ b/CVE-2025/CVE-2025-38xx/CVE-2025-3814.json
@ -9,6 +9,10 @@
    {
      "lang": "en",
      "value": "The Tax Switch for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018class-name\u2019 parameter in all versions up to, and including, 1.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."
+    },
+    {
+      "lang": "es",
+      "value": "El complemento Tax Switch para WooCommerce de WordPress es vulnerable a cross-site scripting almacenado a trav\u00e9s del par\u00e1metro 'class-name' en todas las versiones hasta la 1.4.2 incluida, debido a una depuraci\u00f3n de entrada y un escape de salida insuficientes. Esto permite a atacantes autenticados, con acceso de colaborador o superior, inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutar\u00e1n al acceder un usuario a una p\u00e1gina inyectada."
    }
  ],
  "metrics": {
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2025-04-22T08:00:20.246034+00:00
+2025-04-22T10:00:19.164672+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2025-04-22T06:15:45.210000+00:00
+2025-04-22T09:15:15.660000+00:00
 ```

 ### Last Data Feed Release
@ -33,24 +33,24 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs

 ```plain
-291022
+291025
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `4`
+Recently added CVEs: `3`

- [CVE-2024-13569](CVE-2024/CVE-2024-135xx/CVE-2024-13569.json) (`2025-04-22T06:15:44.120`)
- [CVE-2025-2594](CVE-2025/CVE-2025-25xx/CVE-2025-2594.json) (`2025-04-22T06:15:44.860`)
- [CVE-2025-2839](CVE-2025/CVE-2025-28xx/CVE-2025-2839.json) (`2025-04-22T06:15:44.973`)
- [CVE-2025-3814](CVE-2025/CVE-2025-38xx/CVE-2025-3814.json) (`2025-04-22T06:15:45.210`)
+- [CVE-2025-26413](CVE-2025/CVE-2025-264xx/CVE-2025-26413.json) (`2025-04-22T08:15:28.853`)
+- [CVE-2025-3518](CVE-2025/CVE-2025-35xx/CVE-2025-3518.json) (`2025-04-22T09:15:15.510`)
+- [CVE-2025-3519](CVE-2025/CVE-2025-35xx/CVE-2025-3519.json) (`2025-04-22T09:15:15.660`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `1`
+Recently modified CVEs: `2`

- [CVE-2025-22077](CVE-2025/CVE-2025-220xx/CVE-2025-22077.json) (`2025-04-22T06:15:44.683`)
+- [CVE-2025-32176](CVE-2025/CVE-2025-321xx/CVE-2025-32176.json) (`2025-04-22T09:15:15.270`)
+- [CVE-2025-3814](CVE-2025/CVE-2025-38xx/CVE-2025-3814.json) (`2025-04-22T06:15:45.210`)


 ## Download and Usage
@ -192,4 +192,8 @@ We want to preserve ease of use by reconstructing these data sources.

 ## Non-Endorsement Clause

-This project uses and redistributes data from the NVD API but is not endorsed or certified by the NVD.
+This project uses and redistributes data from the NVD API but is not endorsed or certified by the NVD.
+
+## Bot Source Code
+
+The bot's source code is available at [fkie-cad/nvd\_json\_bot](https://github.com/fkie-cad/nvd_json_bot).
--- a/_state.csv
+++ b/_state.csv
@ -248079,7 +248079,7 @@ CVE-2024-13565,0,0,684f7f6c469aa690c31498d8006cc3528a7f9ba92e597c468d835d0a7ab8e
 CVE-2024-13566,0,0,4e1012bf67cdbac097d1c63a1c7fd79c8a8116508864b50fb7c66cdc833178a3,2025-01-31T09:15:06.847000
 CVE-2024-13567,0,0,d123d65fa99071e0741ab501c15c4c7f9d688ac84bc56954eb217f3ce4092780,2025-04-01T20:26:11.547000
 CVE-2024-13568,0,0,9e74afb56722f02929d754afa7c3b344f0fb3d262b0b29f693d93e682755b19b,2025-03-01T05:15:14.883000
-CVE-2024-13569,1,1,93e38ac3ad46507fa98f415da897dc4c3c83d13a1b96c6d608ea7ff38b467b16,2025-04-22T06:15:44.120000
+CVE-2024-13569,0,0,93e38ac3ad46507fa98f415da897dc4c3c83d13a1b96c6d608ea7ff38b467b16,2025-04-22T06:15:44.120000
 CVE-2024-1357,0,0,25eaf5b978f8da82b4d3e5ed8aa890834adc21c061c9c9c169613a72fe6996b1,2024-11-21T08:50:24.283000
 CVE-2024-13570,0,0,5f3f1655b91dc3bee949d16de77a481687b9936ecee52594dcd7e9a641c4eac8,2025-02-20T16:12:22.823000
 CVE-2024-13571,0,0,ab309a8c78e09a2ce738fdc24b971e3cca9be1cecd7a9446e1d144bb91a81bc0,2025-02-26T16:15:15.210000
@ -283978,7 +283978,7 @@ CVE-2025-22073,0,0,1011b1983c78355d02123f7c88dfc6182e9722c50b1fa6a835a8fbaf3084f
 CVE-2025-22074,0,0,c93b26d255a98622f3c64207f2f2068cdbbb7943477ed1bda9847c2aed7aca12,2025-04-17T20:22:16.240000
 CVE-2025-22075,0,0,261a98e89208109572cff4ef6745cb89aaeaf045a6efabf16dc812a41d8ddf6b,2025-04-17T20:22:16.240000
 CVE-2025-22076,0,0,d420dac94d6fe51cc4ff1a0eb9628b40a00756768d7df0795a7580a2fb35e174,2025-04-17T20:22:16.240000
-CVE-2025-22077,0,1,c7a678e89d0b2f171bdad8743afc5df7cf0b68ca7d64da82ffcc8e05d2c128d2,2025-04-22T06:15:44.683000
+CVE-2025-22077,0,0,c7a678e89d0b2f171bdad8743afc5df7cf0b68ca7d64da82ffcc8e05d2c128d2,2025-04-22T06:15:44.683000
 CVE-2025-22078,0,0,26f7b68d0cdad5a890aa75dadfa17672e8c28f9f0bf4ecb4fdd0f808542f5350,2025-04-17T20:22:16.240000
 CVE-2025-22079,0,0,364458579769c3e0f2ccd2c4af19c4b4e0f96f4d7196e9e43e8a4f54c705c689,2025-04-17T20:22:16.240000
 CVE-2025-2208,0,0,99b9d91a36ada917eec10dfce1128ade8f30ac7ffcb2e43a5105e2922f45ad1f,2025-03-11T21:15:54.117000
@ -286750,7 +286750,7 @@ CVE-2025-25928,0,0,4d0126a70ece07e33b30b79d6fb0071d9ae75a48eb252843c096446d3c2cb
 CVE-2025-25929,0,0,6bf2d742d037270fd862a805d51ec3ddd6ef1eaaac8534caa6d76c7b5e4ebb4d,2025-03-12T16:15:23.767000
 CVE-2025-2593,0,0,1b6e06a0ab7f9f28a3291450afbbc8dc96810beccd94ade76b2912bb384868f8,2025-04-01T20:23:07.257000
 CVE-2025-25939,0,0,b8c954bd00c1572438e1260084236f900e4329b0f9362ba172af96a5853d2ee9,2025-03-06T12:25:31.947000
-CVE-2025-2594,1,1,d06536a3c9f86cb707b40fdb7ea96e2ddf9927fa049feedfd08971fc778e6032,2025-04-22T06:15:44.860000
+CVE-2025-2594,0,0,d06536a3c9f86cb707b40fdb7ea96e2ddf9927fa049feedfd08971fc778e6032,2025-04-22T06:15:44.860000
 CVE-2025-25940,0,0,0c729de242bc4ae51f81d332fedc09616e9f113b2b488846046c92f3a5ddefa6,2025-03-12T19:15:39.967000
 CVE-2025-25942,0,0,abb06ac2462106029cbb8bb08119f5129d89323ab66d1de7f80d7b48f0130201,2025-02-20T15:15:14.587000
 CVE-2025-25943,0,0,ddbf4f2120cdf8c0c6ec76a602b8a3405d44d5883b4cc9347335166be4d0cf63,2025-02-20T15:15:14.743000
@ -286930,6 +286930,7 @@ CVE-2025-26409,0,0,cdf29866235215f5068aacbcbdb6f999e9c9f7adf8baf249758a0e54e8048
 CVE-2025-2641,0,0,0c4e7f6e917c2684e1ef81919020337c8afbfd73d5a46107cea6f98fc25ffc5c,2025-04-02T14:32:40.757000
 CVE-2025-26410,0,0,e0a8c1ecc38adad5db47008cfe5d8287500ec3cbba2c1f9a4a60a8e1051c525e,2025-03-18T19:15:50.450000
 CVE-2025-26411,0,0,3c8f066d5451ad6ef36a27d64d17719d6f654697fa56337f49dfc83e42e73333,2025-03-14T18:15:31.947000
+CVE-2025-26413,1,1,d68238d88bef36d18757460ed40d13b2b2e1eb042cec850a83b92c85334bbe30,2025-04-22T09:15:15.103000
 CVE-2025-2642,0,0,9fd74d08c30eb46678d329dd538a5586185726ca4d8ec1276ca17b4f6bd06bab,2025-04-02T13:48:31.510000
 CVE-2025-2643,0,0,f96a1e9165c8c6b99a098f4d86d5cf57a75b6fe768e009b644ffd8b873a80653,2025-04-02T13:42:29.387000
 CVE-2025-2644,0,0,6ca4f7abbe58e9b22566e3f05f3eadc09a0b0dd9a1ead419e5c203f89ddafe7c,2025-04-02T13:30:34.347000
@ -288033,7 +288034,7 @@ CVE-2025-28361,0,0,012842a41606e730430b254a67bbb658386b3833897674145b51c035a4841
 CVE-2025-28367,0,0,f4622890a6e2177cbcbd53f4213304d59b6c0d2acdfc9dc1a0a7bf5c7a4c62c3,2025-04-21T16:15:54.373000
 CVE-2025-2837,0,0,b89aeb2a53f8a50fdc7d1cb971618f78d6548d3dfb914df0b41cb0d9a2a5f82a,2025-03-27T16:45:27.850000
 CVE-2025-2838,0,0,ad5519332c14610c417f2ebe0957fac238c08deca06808872c71584919e4dfa3,2025-03-27T16:45:27.850000
-CVE-2025-2839,1,1,82cb65b96fd519741554a8160952fd9740fba6f399df7b365f83333b41842206,2025-04-22T06:15:44.973000
+CVE-2025-2839,0,0,82cb65b96fd519741554a8160952fd9740fba6f399df7b365f83333b41842206,2025-04-22T06:15:44.973000
 CVE-2025-28395,0,0,e2a008eff6d871d94e498e18fdcd7ec1a8104377f0bfd0c36d8d69a8cfbea062,2025-04-15T12:52:46.433000
 CVE-2025-28398,0,0,a80aa3350f7ebc843f0b185d49e6b66d7edf0d8201a54a2ee3a02548dd1b1270,2025-04-15T12:51:12.750000
 CVE-2025-28399,0,0,d8ae7f3e952903ea28f89076fdcb864bb2d9ad71c7e0bfc36d4140c72a7df9d9,2025-04-16T15:16:09.757000
@ -289969,7 +289970,7 @@ CVE-2025-32172,0,0,11cd7d2270261e17b7053bda5f9b1345341ef15e2db1bda76b11be154cfb4
 CVE-2025-32173,0,0,6ce70522322cc23964d3151030980eb8f41f4afc9ad44f8df3ff94a0364712cc,2025-04-07T14:18:15.560000
 CVE-2025-32174,0,0,e1ca325aa212653e9002ffd1256861de954387b33b68f3ac5badf60b46c10dd8,2025-04-07T14:18:15.560000
 CVE-2025-32175,0,0,216a996747c6e25763b7e62f8e5b005b014e5dd0af6bccc7d58db739fcf38852,2025-04-07T14:18:15.560000
-CVE-2025-32176,0,0,10a3c909334e3fb6bc34ddfbd5d4814f05e518d7634aa5ff85a777cf818272a6,2025-04-07T14:18:15.560000
+CVE-2025-32176,0,1,6159199ced4d1cc4cc3fc0a4b90bac4e5cc8fe8b49b458ef45302e363899f7fd,2025-04-22T09:15:15.270000
 CVE-2025-32177,0,0,5421d91f07d2d127d019747a3f9da6a81b9de3ec00f222f0047063dbcd68001b,2025-04-07T14:18:15.560000
 CVE-2025-32178,0,0,f4356b18673933a5717ebcb4f61fc7f6619aff8d61f40c6a6d6d698282497ddf,2025-04-07T14:18:15.560000
 CVE-2025-32179,0,0,69ff8c557b664411b6521be65ad34b2b830276fe6b94886ffd74ded06aafb4ed,2025-04-07T14:18:15.560000
@ -290651,6 +290652,8 @@ CVE-2025-3489,0,0,59309d25f9f42981fc918bf9e175fc55c67d2cd139e3967ead123a01110b7a
 CVE-2025-3495,0,0,fe640c81a3ed6a86c53f35442fa10e181d645418d808dffc6fff69a3880ca71e,2025-04-16T13:25:37.340000
 CVE-2025-3509,0,0,578735ff0d7174d4283b552c1ccab9d92c1a2ab0ec5ddb56de1fee20129f4e8b,2025-04-21T14:23:45.950000
 CVE-2025-3512,0,0,036d013cd0e3204c7e29f8f12826d9befccf940571ea0ad101dc3475585d72f8,2025-04-11T15:39:52.920000
+CVE-2025-3518,1,1,aed74824ae5ea30abf2e88e630b3553afdefe2bb2a1563f28551842233d09e6a,2025-04-22T09:15:15.510000
+CVE-2025-3519,1,1,3abcc56fc9fa4dddff51fd4465ee9d76bbf6c624c51fbb4ad08710b5ff9d87ce,2025-04-22T09:15:15.660000
 CVE-2025-3520,0,0,be35fd038c4a5e22088fd0e9352f3a187df9abda8d0ecfa9c4571aec785dc913,2025-04-21T14:23:45.950000
 CVE-2025-3522,0,0,d7b10d589112af206a2a97a80b31b8312cbafe8f15fc0b775a5c292039712cf3,2025-04-15T19:16:08.057000
 CVE-2025-3523,0,0,9e0b214a1ab217ceac11021882f71acf6e83d545f10dd5d4b8cac5015db5f14f,2025-04-15T18:39:27.967000
@ -290806,7 +290809,7 @@ CVE-2025-3807,0,0,af5b149b4d9b3a1ad51711ad822d2a4577361ac3493f47accf76f1d1ca2b61
 CVE-2025-3808,0,0,e24cd26de1a0798c7deb0307b5d30a0d75bc7706a966e2ceb72ebe92e3982a45,2025-04-21T14:23:45.950000
 CVE-2025-3809,0,0,9bf22538349ba13c47b1891d7b2996c2fd3db61524a4966f3cb78c7876eca705,2025-04-21T14:23:45.950000
 CVE-2025-38104,0,0,aa4d841712d0c5b7862f9376f02a6295924e0da9d4fe57dd0330ac232dc5656d,2025-04-21T14:23:45.950000
-CVE-2025-3814,1,1,40609f02da5b858ba92c008a135200ab4261328e7ad8a112901de176096798dd,2025-04-22T06:15:45.210000
+CVE-2025-3814,0,1,51e6fbb115d5737337ba8a780476e33feff418c53ea86f5e2f607b97cd56285c,2025-04-22T06:15:45.210000
 CVE-2025-38152,0,0,f393aa46be24a56633e7c209d76b084191cc2a700ba37622928e6b051d7db37c,2025-04-21T14:23:45.950000
 CVE-2025-3816,0,0,2c7118896e88e7a78374a795d0f070a862b67eda49b16df7b5267133d9f38e1d,2025-04-21T14:23:45.950000
 CVE-2025-3817,0,0,99700d87b77ea68ecf153af4a97af5eaea6c941a8ac06da569f9d2a75d0aa917,2025-04-21T14:23:45.950000