Auto-Update: 2024-06-16T18:00:18.631656+00:00

2025-05-08 11:37:26 +00:00 · 2024-06-16 18:03:09 +00:00 · 2024-06-16 18:03:09 +00:00 · d5814b3c6c
commit d5814b3c6c
parent bd797a2295
9 changed files with 169 additions and 18 deletions
--- a/CVE-2024/CVE-2024-30xx/CVE-2024-3049.json
+++ b/CVE-2024/CVE-2024-30xx/CVE-2024-3049.json
@ -2,7 +2,7 @@
  "id": "CVE-2024-3049",
  "sourceIdentifier": "secalert@redhat.com",
  "published": "2024-06-06T06:15:09.550",
-  "lastModified": "2024-06-16T03:15:08.520",
+  "lastModified": "2024-06-16T16:15:10.040",
  "vulnStatus": "Modified",
  "descriptions": [
    {
@ -248,6 +248,10 @@
        "Issue Tracking"
      ]
    },
+    {
+      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ERCFM3HXFJKLEMMWU3CZLPKH5LZAEDAN/",
+      "source": "secalert@redhat.com"
+    },
    {
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KPK5BHYOB7CFFRQAN55YV5LH44PWHMQD/",
      "source": "secalert@redhat.com"
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38461.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38461.json
@ -0,0 +1,28 @@
+{
+  "id": "CVE-2024-38461",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.537",
+  "lastModified": "2024-06-16T16:15:09.537",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "irodsServerMonPerf in iRODS before 4.3.2 attempts to proceed with use of a path even if it is not a directory."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/irods/irods/issues/7652",
+      "source": "cve@mitre.org"
+    },
+    {
+      "url": "https://github.com/irods/irods/releases/tag/4.3.2",
+      "source": "cve@mitre.org"
+    },
+    {
+      "url": "https://irods.org/2024/05/irods-4-3-2-is-released",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38462.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38462.json
@ -0,0 +1,32 @@
+{
+  "id": "CVE-2024-38462",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.627",
+  "lastModified": "2024-06-16T16:15:09.627",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "iRODS before 4.3.2 provides an msiSendMail function with a problematic dependency on the mail binary, such as in the mailMS.cpp#L94-L106 reference."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/irods/irods/blob/97eb33f130349db5e01a4b85e89dd1da81460345/server/re/src/mailMS.cpp#L94-L106",
+      "source": "cve@mitre.org"
+    },
+    {
+      "url": "https://github.com/irods/irods/issues/7562",
+      "source": "cve@mitre.org"
+    },
+    {
+      "url": "https://github.com/irods/irods/issues/7651",
+      "source": "cve@mitre.org"
+    },
+    {
+      "url": "https://irods.org/2024/05/irods-4-3-2-is-released/",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38465.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38465.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2024-38465",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.723",
+  "lastModified": "2024-06-16T16:15:09.723",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Shenzhen Guoxin Synthesis image system before 8.3.0 allows username enumeration because of the response discrepancy of incorrect versus error."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/Pumpkin-ito/Cve-Vuln/blob/main/Guosen%20synthetic%20imaging%20system%20vulnerability.pdf",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38466.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38466.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2024-38466",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.803",
+  "lastModified": "2024-06-16T16:15:09.803",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Shenzhen Guoxin Synthesis image system before 8.3.0 has a 123456Qw default password."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/Pumpkin-ito/Cve-Vuln/blob/main/Guosen%20synthetic%20imaging%20system%20vulnerability.pdf",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38467.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38467.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2024-38467",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.877",
+  "lastModified": "2024-06-16T16:15:09.877",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized user information retrieval via the queryUser API."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/Pumpkin-ito/Cve-Vuln/blob/main/Guosen%20synthetic%20imaging%20system%20vulnerability.pdf",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-384xx/CVE-2024-38468.json
+++ b/CVE-2024/CVE-2024-384xx/CVE-2024-38468.json
@ -0,0 +1,20 @@
+{
+  "id": "CVE-2024-38468",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-06-16T16:15:09.960",
+  "lastModified": "2024-06-16T16:15:09.960",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Shenzhen Guoxin Synthesis image system before 8.3.0 allows unauthorized password resets via the resetPassword API."
+    }
+  ],
+  "metrics": {},
+  "references": [
+    {
+      "url": "https://github.com/Pumpkin-ito/Cve-Vuln/blob/main/Guosen%20synthetic%20imaging%20system%20vulnerability.pdf",
+      "source": "cve@mitre.org"
+    }
+  ]
+}
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2024-06-16T16:00:18.769188+00:00
+2024-06-16T18:00:18.631656+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2024-06-16T15:15:51.910000+00:00
+2024-06-16T16:15:10.040000+00:00
 ```

 ### Last Data Feed Release
@ -33,25 +33,26 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs

 ```plain
-254234
+254240
 ```

 ### CVEs added in the last Commit

 Recently added CVEs: `6`

- [CVE-2024-38448](CVE-2024/CVE-2024-384xx/CVE-2024-38448.json) (`2024-06-16T14:15:09.180`)
- [CVE-2024-38454](CVE-2024/CVE-2024-384xx/CVE-2024-38454.json) (`2024-06-16T15:15:51.613`)
- [CVE-2024-38457](CVE-2024/CVE-2024-384xx/CVE-2024-38457.json) (`2024-06-16T15:15:51.703`)
- [CVE-2024-38458](CVE-2024/CVE-2024-384xx/CVE-2024-38458.json) (`2024-06-16T15:15:51.770`)
- [CVE-2024-38459](CVE-2024/CVE-2024-384xx/CVE-2024-38459.json) (`2024-06-16T15:15:51.840`)
- [CVE-2024-38460](CVE-2024/CVE-2024-384xx/CVE-2024-38460.json) (`2024-06-16T15:15:51.910`)
+- [CVE-2024-38461](CVE-2024/CVE-2024-384xx/CVE-2024-38461.json) (`2024-06-16T16:15:09.537`)
+- [CVE-2024-38462](CVE-2024/CVE-2024-384xx/CVE-2024-38462.json) (`2024-06-16T16:15:09.627`)
+- [CVE-2024-38465](CVE-2024/CVE-2024-384xx/CVE-2024-38465.json) (`2024-06-16T16:15:09.723`)
+- [CVE-2024-38466](CVE-2024/CVE-2024-384xx/CVE-2024-38466.json) (`2024-06-16T16:15:09.803`)
+- [CVE-2024-38467](CVE-2024/CVE-2024-384xx/CVE-2024-38467.json) (`2024-06-16T16:15:09.877`)
+- [CVE-2024-38468](CVE-2024/CVE-2024-384xx/CVE-2024-38468.json) (`2024-06-16T16:15:09.960`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `0`
+Recently modified CVEs: `1`

+- [CVE-2024-3049](CVE-2024/CVE-2024-30xx/CVE-2024-3049.json) (`2024-06-16T16:15:10.040`)


 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -248827,7 +248827,7 @@ CVE-2024-30486,0,0,3b668ae931cda4b6a387bfa69ea17dffa696817ef5a0dd2b2ba0b8d1d89d0
 CVE-2024-30487,0,0,8478a9894c02433324d52a7694bbe43e86c58bc36ce6feb0280d7b18225d7d5b,2024-04-01T01:12:59.077000
 CVE-2024-30488,0,0,9fdeb2b805850984cf4d5d3f20362f356c5feecfdc17015a244efcf21ce430a4,2024-04-01T01:12:59.077000
 CVE-2024-30489,0,0,a540270477b853fde36fa10dfe995d2d2e2733bc4b87077bcb9c4c6ebae67f39,2024-04-01T01:12:59.077000
-CVE-2024-3049,0,0,59f4944ac4c4f0b7226fa838e9eacceaf9b4ccf44dac0859715beb08a09b6555,2024-06-16T03:15:08.520000
+CVE-2024-3049,0,1,e18abeadbb0f505e21e1d2e6b397182713fdb3112ae09ecd6e17466ba3e1a4b1,2024-06-16T16:15:10.040000
 CVE-2024-30490,0,0,90b7ec0455290f5d2e36c376f09e8aa64ea00d396ba819e3726d0e96e7b15d7a,2024-04-01T01:12:59.077000
 CVE-2024-30491,0,0,b49d75f845cb12239329721ac75b384e508f42c19c755d45b7137bd1b7ebec86,2024-04-01T01:12:59.077000
 CVE-2024-30492,0,0,d40dabecb8ac11d6b8ece8b02edecd34ab567f2bff5c23fac9f75367d1b0fc90,2024-04-01T01:12:59.077000
@ -252858,14 +252858,20 @@ CVE-2024-3844,0,0,557b2843dd1fca85a530c46acabf2e2b3fe4cb4e29b4ec8be3ca0b11ef9703
 CVE-2024-38440,0,0,a18ffcbbed8e266eb1ceb2ad2437a28d7bfe76d8a053c114d6ba6d2ed1fdfac9,2024-06-16T13:15:53.147000
 CVE-2024-38441,0,0,348fc94587506d4373fec554cbbfb2c7d34bbef507b72db9bf3cd003db9b081f,2024-06-16T13:15:53.230000
 CVE-2024-38443,0,0,196e5e6d36d5ea199876ddebcae9add646b153d92d87e6c6f7c5637b975c3cce,2024-06-16T13:15:53.483000
-CVE-2024-38448,1,1,f289aeacea6a352072f980d04ac562954c7f740f98db53ef60f2d985813b6c5d,2024-06-16T14:15:09.180000
+CVE-2024-38448,0,0,f289aeacea6a352072f980d04ac562954c7f740f98db53ef60f2d985813b6c5d,2024-06-16T14:15:09.180000
 CVE-2024-3845,0,0,0eb4004f99da1c2122444a8d1de5d3db39129e713bf386d7b60bb455af744c00,2024-05-03T03:16:29.210000
-CVE-2024-38454,1,1,5b83e79bfa28150676c4c320846abc0beeedc0a1ffd737b3df24dacc3ba018d8,2024-06-16T15:15:51.613000
-CVE-2024-38457,1,1,c9058472dcc946e7065b1cba6afd0ec443e6c72b23a6b27cbe2a5ff247122344,2024-06-16T15:15:51.703000
-CVE-2024-38458,1,1,6528694facbd236d8eb554b081238da6fb7e4014342ab7e8a0557720ffd0b049,2024-06-16T15:15:51.770000
-CVE-2024-38459,1,1,9ae9f07f1a6052ea8a4d71c88bd4f0e212fa4fb8790c00513f0396a7ec2d12bd,2024-06-16T15:15:51.840000
+CVE-2024-38454,0,0,5b83e79bfa28150676c4c320846abc0beeedc0a1ffd737b3df24dacc3ba018d8,2024-06-16T15:15:51.613000
+CVE-2024-38457,0,0,c9058472dcc946e7065b1cba6afd0ec443e6c72b23a6b27cbe2a5ff247122344,2024-06-16T15:15:51.703000
+CVE-2024-38458,0,0,6528694facbd236d8eb554b081238da6fb7e4014342ab7e8a0557720ffd0b049,2024-06-16T15:15:51.770000
+CVE-2024-38459,0,0,9ae9f07f1a6052ea8a4d71c88bd4f0e212fa4fb8790c00513f0396a7ec2d12bd,2024-06-16T15:15:51.840000
 CVE-2024-3846,0,0,c48e0a8a684c17ee6ebfa3dd6ef492735a7e1f61d2741ebafccef32d97787cb1,2024-05-03T03:16:29.250000
-CVE-2024-38460,1,1,384f632748c06a15ca753a2db70c9c338d4f8ebb21eddbd6eaf85a9432371045,2024-06-16T15:15:51.910000
+CVE-2024-38460,0,0,384f632748c06a15ca753a2db70c9c338d4f8ebb21eddbd6eaf85a9432371045,2024-06-16T15:15:51.910000
+CVE-2024-38461,1,1,bb00ff4740bb3fc47778b2b24e21d0914ac78b21844c15989b71433683eec504,2024-06-16T16:15:09.537000
+CVE-2024-38462,1,1,190105b4c23a82cefaa94d8fa6f8b82b713975eccceca139a4d7a627e0cfc2ce,2024-06-16T16:15:09.627000
+CVE-2024-38465,1,1,71cdcc1d49ee2f5fd4c22147448a7774a391859ad20253a03b5015b8024a9634,2024-06-16T16:15:09.723000
+CVE-2024-38466,1,1,4e261240096565ebde4b9a62fc723332cae9aaebeaffc95832906457fb80a512,2024-06-16T16:15:09.803000
+CVE-2024-38467,1,1,6b9897f965d5efd5761981a28450545ad3462ac40422bd8b67e0296559160777,2024-06-16T16:15:09.877000
+CVE-2024-38468,1,1,e99373c102546f297c2613d458f2edbc699d1dd5fafc302831c43ff20de70d1c,2024-06-16T16:15:09.960000
 CVE-2024-3847,0,0,a2146e655749d60cf9631f855db42a3d44cf07cd9a542fd1035e46bb9a6304c5,2024-05-03T03:16:29.293000
 CVE-2024-3848,0,0,cff2d1cd97f0b1f2183f9bb4edcf4fc45d9e2b8ab251b9953f6af6105249c0ec,2024-05-16T13:03:05.353000
 CVE-2024-3849,0,0,d4181d6192aab2f4a2b324451fbda7660fbd9621eb95f5f54a642a6a3d1e7d46,2024-05-02T18:00:37.360000