diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11605.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11605.json new file mode 100644 index 00000000000..0839428858f --- /dev/null +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11605.json @@ -0,0 +1,21 @@ +{ + "id": "CVE-2024-11605", + "sourceIdentifier": "contact@wpscan.com", + "published": "2024-12-27T06:15:22.820", + "lastModified": "2024-12-27T06:15:22.820", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The wp-publications WordPress plugin through 1.2 does not escape filenames before outputting them back in the page, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://wpscan.com/vulnerability/91c5ee70-2ff5-46cd-a0f5-54987fc2e060/", + "source": "contact@wpscan.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11644.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11644.json new file mode 100644 index 00000000000..6be835b9cd2 --- /dev/null +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11644.json @@ -0,0 +1,21 @@ +{ + "id": "CVE-2024-11644", + "sourceIdentifier": "contact@wpscan.com", + "published": "2024-12-27T06:15:23.047", + "lastModified": "2024-12-27T06:15:23.047", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The WP-SVG WordPress plugin through 0.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://wpscan.com/vulnerability/5b6a80f1-369c-4dd2-877e-60b724084819/", + "source": "contact@wpscan.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11645.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11645.json new file mode 100644 index 00000000000..3b4840a4fc7 --- /dev/null +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11645.json @@ -0,0 +1,21 @@ +{ + "id": "CVE-2024-11645", + "sourceIdentifier": "contact@wpscan.com", + "published": "2024-12-27T06:15:23.157", + "lastModified": "2024-12-27T06:15:23.157", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The float block WordPress plugin through 1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://wpscan.com/vulnerability/7771a76b-bc8c-426f-a125-5bd74ccf2845/", + "source": "contact@wpscan.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-118xx/CVE-2024-11842.json b/CVE-2024/CVE-2024-118xx/CVE-2024-11842.json new file mode 100644 index 00000000000..fb5bec99f6a --- /dev/null +++ b/CVE-2024/CVE-2024-118xx/CVE-2024-11842.json @@ -0,0 +1,21 @@ +{ + "id": "CVE-2024-11842", + "sourceIdentifier": "contact@wpscan.com", + "published": "2024-12-27T06:15:23.260", + "lastModified": "2024-12-27T06:15:23.260", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack" + } + ], + "metrics": {}, + "references": [ + { + "url": "https://wpscan.com/vulnerability/2545f054-b6ca-4ee5-ac6f-f42193db21b1/", + "source": "contact@wpscan.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-119xx/CVE-2024-11921.json b/CVE-2024/CVE-2024-119xx/CVE-2024-11921.json new file mode 100644 index 00000000000..b205953e482 --- /dev/null +++ b/CVE-2024/CVE-2024-119xx/CVE-2024-11921.json @@ -0,0 +1,21 @@ +{ + "id": "CVE-2024-11921", + "sourceIdentifier": "contact@wpscan.com", + "published": "2024-12-27T06:15:23.357", + "lastModified": "2024-12-27T06:15:23.357", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The GiveWP WordPress plugin before 3.19.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://wpscan.com/vulnerability/5f196294-5ba9-45b6-a27c-ab1702cc001f/", + "source": "contact@wpscan.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-129xx/CVE-2024-12979.json b/CVE-2024/CVE-2024-129xx/CVE-2024-12979.json new file mode 100644 index 00000000000..d956fcae43a --- /dev/null +++ b/CVE-2024/CVE-2024-129xx/CVE-2024-12979.json @@ -0,0 +1,145 @@ +{ + "id": "CVE-2024-12979", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-12-27T05:15:07.130", + "lastModified": "2024-12-27T05:15:07.130", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in code-projects Job Recruitment 1.0 and classified as problematic. This issue affects the function cn_update of the file /_parse/_all_edits.php. The manipulation of the argument cname leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 6.9, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "NONE", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "baseScore": 5.0, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "NONE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE" + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 10.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + }, + { + "lang": "en", + "value": "CWE-94" + } + ] + } + ], + "references": [ + { + "url": "https://code-projects.org/", + "source": "cna@vuldb.com" + }, + { + "url": "https://github.com/705298066/cve/blob/main/xss-1.md", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.289355", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.289355", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.469180", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-129xx/CVE-2024-12980.json b/CVE-2024/CVE-2024-129xx/CVE-2024-12980.json new file mode 100644 index 00000000000..e310fe57212 --- /dev/null +++ b/CVE-2024/CVE-2024-129xx/CVE-2024-12980.json @@ -0,0 +1,145 @@ +{ + "id": "CVE-2024-12980", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-12-27T05:15:07.353", + "lastModified": "2024-12-27T05:15:07.353", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in code-projects Job Recruitment 1.0. It has been classified as problematic. Affected is the function fln_update of the file /_parse/_all_edits.php. The manipulation of the argument fname/lname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 6.9, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "NONE", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "baseScore": 5.0, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "NONE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE" + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 10.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + }, + { + "lang": "en", + "value": "CWE-94" + } + ] + } + ], + "references": [ + { + "url": "https://code-projects.org/", + "source": "cna@vuldb.com" + }, + { + "url": "https://github.com/705298066/cve/blob/main/xss-2.md", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.289356", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.289356", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.469181", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-129xx/CVE-2024-12981.json b/CVE-2024/CVE-2024-129xx/CVE-2024-12981.json new file mode 100644 index 00000000000..5a6a8c24ab1 --- /dev/null +++ b/CVE-2024/CVE-2024-129xx/CVE-2024-12981.json @@ -0,0 +1,145 @@ +{ + "id": "CVE-2024-12981", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-12-27T06:15:23.463", + "lastModified": "2024-12-27T06:15:23.463", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in CodeAstro Car Rental System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /bookingconfirm.php. The manipulation of the argument driver_id_from_dropdown leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 5.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "LOW", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "LOW", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 6.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", + "baseScore": 6.5, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "SINGLE", + "confidentialityImpact": "PARTIAL", + "integrityImpact": "PARTIAL", + "availabilityImpact": "PARTIAL" + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 8.0, + "impactScore": 6.4, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-74" + }, + { + "lang": "en", + "value": "CWE-89" + } + ] + } + ], + "references": [ + { + "url": "https://codeastro.com/", + "source": "cna@vuldb.com" + }, + { + "url": "https://github.com/CharilYang/cve/issues/1", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.289357", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.289357", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.469156", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-129xx/CVE-2024-12982.json b/CVE-2024/CVE-2024-129xx/CVE-2024-12982.json new file mode 100644 index 00000000000..4936279ab90 --- /dev/null +++ b/CVE-2024/CVE-2024-129xx/CVE-2024-12982.json @@ -0,0 +1,141 @@ +{ + "id": "CVE-2024-12982", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-12-27T06:15:23.680", + "lastModified": "2024-12-27T06:15:23.680", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in PHPGurukul Blood Bank & Donor Management System 2.4. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /bbdms/admin/update-contactinfo.php. The manipulation of the argument Address leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 5.1, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "NONE", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N", + "baseScore": 2.4, + "baseSeverity": "LOW", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 0.9, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:M/C:N/I:P/A:N", + "baseScore": 3.3, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "MULTIPLE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE" + }, + "baseSeverity": "LOW", + "exploitabilityScore": 6.4, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + }, + { + "lang": "en", + "value": "CWE-94" + } + ] + } + ], + "references": [ + { + "url": "https://phpgurukul.com/", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.289358", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.289358", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.469202", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-565xx/CVE-2024-56519.json b/CVE-2024/CVE-2024-565xx/CVE-2024-56519.json new file mode 100644 index 00000000000..382b18c87f6 --- /dev/null +++ b/CVE-2024/CVE-2024-565xx/CVE-2024-56519.json @@ -0,0 +1,29 @@ +{ + "id": "CVE-2024-56519", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-12-27T05:15:07.677", + "lastModified": "2024-12-27T05:15:07.677", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in TCPDF before 6.8.0. setSVGStyles does not sanitize the SVG font-family attribute." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://github.com/tecnickcom/TCPDF/commit/c9f41cbb84880bdb4fc3e0a9d287214d1ac4d7f4", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0", + "source": "cve@mitre.org" + }, + { + "url": "https://tcpdf.org", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-565xx/CVE-2024-56520.json b/CVE-2024/CVE-2024-565xx/CVE-2024-56520.json new file mode 100644 index 00000000000..bae007407b3 --- /dev/null +++ b/CVE-2024/CVE-2024-565xx/CVE-2024-56520.json @@ -0,0 +1,37 @@ +{ + "id": "CVE-2024-56520", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-12-27T05:15:07.837", + "lastModified": "2024-12-27T05:15:07.837", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://github.com/tecnickcom/TCPDF/commit/a0a02efe487cc39bd5223359e916dbeafb5cd6fe", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/tc-lib-pdf-font/commit/30012e333ae611c514ec2dc7cb370bbf4da4e677", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/tc-lib-pdf-font/compare/2.6.2...2.6.4", + "source": "cve@mitre.org" + }, + { + "url": "https://tcpdf.org", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-565xx/CVE-2024-56521.json b/CVE-2024/CVE-2024-565xx/CVE-2024-56521.json new file mode 100644 index 00000000000..ad0ede3567a --- /dev/null +++ b/CVE-2024/CVE-2024-565xx/CVE-2024-56521.json @@ -0,0 +1,41 @@ +{ + "id": "CVE-2024-56521", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-12-27T05:15:07.977", + "lastModified": "2024-12-27T05:15:07.977", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in TCPDF before 6.8.0. If libcurl is used, CURLOPT_SSL_VERIFYHOST and CURLOPT_SSL_VERIFYPEER are set unsafely." + } + ], + "metrics": {}, + "weaknesses": [ + { + "source": "cve@mitre.org", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-295" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/tecnickcom/TCPDF/commit/aab43ab0a824e956276141a28a24c7c0be20f554", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0", + "source": "cve@mitre.org" + }, + { + "url": "https://tcpdf.org", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-565xx/CVE-2024-56522.json b/CVE-2024/CVE-2024-565xx/CVE-2024-56522.json new file mode 100644 index 00000000000..e4d738c35ae --- /dev/null +++ b/CVE-2024/CVE-2024-565xx/CVE-2024-56522.json @@ -0,0 +1,33 @@ +{ + "id": "CVE-2024-56522", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-12-27T05:15:08.130", + "lastModified": "2024-12-27T05:15:08.130", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in TCPDF before 6.8.0. unserializeTCPDFtag uses != (aka loose comparison) and does not use a constant-time function to compare TCPDF tag hashes." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://github.com/tecnickcom/TCPDF/commit/d54b97cec33f4f1a5ad81119a82085cad93cec89", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0", + "source": "cve@mitre.org" + }, + { + "url": "https://tcpdf.org", + "source": "cve@mitre.org" + }, + { + "url": "https://www.php.net/manual/en/types.comparisons.php", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-565xx/CVE-2024-56527.json b/CVE-2024/CVE-2024-565xx/CVE-2024-56527.json new file mode 100644 index 00000000000..01349218972 --- /dev/null +++ b/CVE-2024/CVE-2024-565xx/CVE-2024-56527.json @@ -0,0 +1,29 @@ +{ + "id": "CVE-2024-56527", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-12-27T06:15:23.880", + "lastModified": "2024-12-27T06:15:23.880", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in TCPDF before 6.8.0. The Error function lacks an htmlspecialchars call for the error message." + } + ], + "metrics": {}, + "references": [ + { + "url": "https://github.com/tecnickcom/TCPDF/commit/11778aaa2d9e30a9ae1c1ee97ff349344f0ad6e1", + "source": "cve@mitre.org" + }, + { + "url": "https://github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0", + "source": "cve@mitre.org" + }, + { + "url": "https://tcpdf.org", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index 1649e558e04..e04e9421594 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-12-27T05:00:19.127241+00:00 +2024-12-27T07:00:19.828903+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-12-27T04:15:05.603000+00:00 +2024-12-27T06:15:23.880000+00:00 ``` ### Last Data Feed Release @@ -33,21 +33,33 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -274744 +274758 ``` ### CVEs added in the last Commit -Recently added CVEs: `1` +Recently added CVEs: `14` -- [CVE-2024-12978](CVE-2024/CVE-2024-129xx/CVE-2024-12978.json) (`2024-12-27T04:15:05.603`) +- [CVE-2024-11605](CVE-2024/CVE-2024-116xx/CVE-2024-11605.json) (`2024-12-27T06:15:22.820`) +- [CVE-2024-11644](CVE-2024/CVE-2024-116xx/CVE-2024-11644.json) (`2024-12-27T06:15:23.047`) +- [CVE-2024-11645](CVE-2024/CVE-2024-116xx/CVE-2024-11645.json) (`2024-12-27T06:15:23.157`) +- [CVE-2024-11842](CVE-2024/CVE-2024-118xx/CVE-2024-11842.json) (`2024-12-27T06:15:23.260`) +- [CVE-2024-11921](CVE-2024/CVE-2024-119xx/CVE-2024-11921.json) (`2024-12-27T06:15:23.357`) +- [CVE-2024-12979](CVE-2024/CVE-2024-129xx/CVE-2024-12979.json) (`2024-12-27T05:15:07.130`) +- [CVE-2024-12980](CVE-2024/CVE-2024-129xx/CVE-2024-12980.json) (`2024-12-27T05:15:07.353`) +- [CVE-2024-12981](CVE-2024/CVE-2024-129xx/CVE-2024-12981.json) (`2024-12-27T06:15:23.463`) +- [CVE-2024-12982](CVE-2024/CVE-2024-129xx/CVE-2024-12982.json) (`2024-12-27T06:15:23.680`) +- [CVE-2024-56519](CVE-2024/CVE-2024-565xx/CVE-2024-56519.json) (`2024-12-27T05:15:07.677`) +- [CVE-2024-56520](CVE-2024/CVE-2024-565xx/CVE-2024-56520.json) (`2024-12-27T05:15:07.837`) +- [CVE-2024-56521](CVE-2024/CVE-2024-565xx/CVE-2024-56521.json) (`2024-12-27T05:15:07.977`) +- [CVE-2024-56522](CVE-2024/CVE-2024-565xx/CVE-2024-56522.json) (`2024-12-27T05:15:08.130`) +- [CVE-2024-56527](CVE-2024/CVE-2024-565xx/CVE-2024-56527.json) (`2024-12-27T06:15:23.880`) ### CVEs modified in the last Commit -Recently modified CVEs: `1` +Recently modified CVEs: `0` -- [CVE-2024-9774](CVE-2024/CVE-2024-97xx/CVE-2024-9774.json) (`2024-12-27T03:15:04.790`) ## Download and Usage diff --git a/_state.csv b/_state.csv index 9594cc2d258..84bbe89c844 100644 --- a/_state.csv +++ b/_state.csv @@ -244378,6 +244378,7 @@ CVE-2024-11598,0,0,318e6fca1ca0986bcfcf3a32260c092c1328bda1390c2884d559a418d064b CVE-2024-11599,0,0,a26c993827526d1af73bfe90f868b9bfb9a722b6b2267b567215827aef919d86,2024-11-28T10:15:06.657000 CVE-2024-1160,0,0,12b04de1fea0a3119efc89b33ba5d2f3d172880f1becfa13297009e56b4efb45,2024-11-21T08:49:55.987000 CVE-2024-11601,0,0,51a555e6d26623f2054da12f000d146e4e1662608f2c3f75f4d4bafe7cada303,2024-11-22T06:15:19.830000 +CVE-2024-11605,1,1,4141913c0b2f19dfef8e60f71838dd2bbeb4a9af0ce35e3f896fb060c830d253,2024-12-27T06:15:22.820000 CVE-2024-11607,0,0,a3e7ab3b4bf71230b822320739f90a8a1c3aa363296a6626871d83ebf17a9ca5,2024-12-21T06:15:20.813000 CVE-2024-11608,0,0,8ddbc230a8730b76ffe6955779ba3c4d90ea8f23edd3f564c2db516009c0d0dc,2024-12-09T18:15:22.580000 CVE-2024-1161,0,0,68cc61ca71a85d6059ad02181ec1fb4a89655dbd3db8900d271e7a26ec14fb67,2024-11-21T08:49:56.127000 @@ -244398,6 +244399,8 @@ CVE-2024-11634,0,0,0e2d7b37ec82ce83fed6bdfe701bc5f2686fac239cb6656f7c455143c516f CVE-2024-11639,0,0,0210e46589d8e363ac9b295eb4432d5b1bb6755405d9d65212946ea82705ab83,2024-12-10T19:15:19.690000 CVE-2024-1164,0,0,ea75a9ac84fb05bc5899ed5764c236687fb5121f662769fb6e46971a20a2f34a,2024-11-21T08:49:56.530000 CVE-2024-11643,0,0,ae78ce4f54b48c77ffb4df12d001ddabc5e672affe5a377c6c988d0deb6a52af,2024-12-04T16:15:24.177000 +CVE-2024-11644,1,1,9101b54e62c5b68d511a7cec2ec5a92b23afb8e93b04e38ae4cb6f8d71d8f669,2024-12-27T06:15:23.047000 +CVE-2024-11645,1,1,fa79af82f9b8614a83fb965c4e80944ab2b8876ea8a401f6e3b8418a82b921ec,2024-12-27T06:15:23.157000 CVE-2024-11646,0,0,0ab6dee87b237852bbf12355ce0d89cfcc42d4de6a7d6f3a29942216f6fdc7dc,2024-11-25T16:49:56.377000 CVE-2024-11647,0,0,113c43c5842e50477f47583a57de8c41f4ace2d9d3cc0779127cac467b301941,2024-11-25T16:49:24.083000 CVE-2024-11648,0,0,7767a97f87e6ac5b52c62a9ab3e06af98c54488fb6fa6db87ff57d4b595863f5,2024-11-25T16:49:02.417000 @@ -244576,6 +244579,7 @@ CVE-2024-11839,0,0,c6c976e0661e60ecd7ad88e86bf60ee8d9fd80cc1c530b3d2b4318b3ad131 CVE-2024-1184,0,0,7b0789c4e91a5162e06df6289a54d1b7f2607f1e0a44e814477ad9c07a354474,2024-11-21T08:49:59.067000 CVE-2024-11840,0,0,4f72dc8e1aec5c10e4842e27b0438d261a566769857022259f6d9b1c51e882be,2024-12-11T11:15:06.453000 CVE-2024-11841,0,0,29b2d8ff488587d8a4e1b1dd2198cfdea87c7a6a53f626f6147622127a8032b7,2024-12-16T17:15:07.830000 +CVE-2024-11842,1,1,c4c03709a537feab608b8c618018e48b8b4d894ab535e4d76b834e0c8ded1e79,2024-12-27T06:15:23.260000 CVE-2024-11844,0,0,04412f8d1e89e121c8013622c692022d4f804bc36ac5e0beee05cf8987e8ae7f,2024-12-03T09:15:04.473000 CVE-2024-1185,0,0,4ecd1740115bf103fbc8dca69b2cfbb42ac9a6d23eecf86cdd29f9e498ced7fa,2024-11-21T08:49:59.223000 CVE-2024-11852,0,0,276252e08c0e0d308c8357ab0a7154101c6e504c013303bbf528c335164cda94,2024-12-22T02:15:16.510000 @@ -244632,6 +244636,7 @@ CVE-2024-11912,0,0,0aaa3071f593c52d1aa93372da39c5543ab6e6ea5c65e9bf469d02aec4ea5 CVE-2024-11914,0,0,fa4ae25ac8caf18cb116501f16c4447bae56afeb864dc904882202ad6cc9632f,2024-12-12T04:15:06.983000 CVE-2024-11918,0,0,f7031582b21494aaa2ccab4dd4ab92d52bf9f67c1445d9fb72b363b717cfc06b,2024-11-28T06:15:08.347000 CVE-2024-1192,0,0,6a3cef60785336a18d7ecf43232ad25f29b7ccd29fd6e48cd70df8d015114e42,2024-11-21T08:50:00.287000 +CVE-2024-11921,1,1,f50f41d0f4318736b7cb73c127721692ec45a6ac5801b579266c7a5f5958946f,2024-12-27T06:15:23.357000 CVE-2024-11925,0,0,77043a2dc07077ec38aa584033543217cc9fb39ce00751159aa83ba0aa54cc6b,2024-11-28T07:15:05.267000 CVE-2024-11926,0,0,12ad1d9fc49995c8eb92feee3b52ec9fafd14557b209a764d700401682560722,2024-12-18T12:15:09.107000 CVE-2024-11928,0,0,4eb81c3b991253e17b093831750d2f60d8030675796e16e7e29cc29429037a0b,2024-12-10T11:15:07.220000 @@ -245177,8 +245182,12 @@ CVE-2024-12969,0,0,4bbcd7139cc2c7f1babb3318390dc8531852894fa6d58b398e8d066bcc3c9 CVE-2024-1297,0,0,0d9e22e56ecef1715a16e9d7809dba48ba55def0e741f79f7098027ea7ebc7ff,2024-11-21T08:50:15.770000 CVE-2024-12976,0,0,881e367356f5af137bfa0b6f42d2733b95c2606d7a1d6ffba9137fbc1ec6d825,2024-12-27T02:15:06.063000 CVE-2024-12977,0,0,e0c792ee9d7dc7bc23cebbcafeadddd9c49d7359d6ea51dd9e4880db7f1cc233,2024-12-27T02:15:07.130000 -CVE-2024-12978,1,1,44c620eab0235bfac84c347c46b47d995addca4a0853a22295c1d04680f5ad15,2024-12-27T04:15:05.603000 +CVE-2024-12978,0,0,44c620eab0235bfac84c347c46b47d995addca4a0853a22295c1d04680f5ad15,2024-12-27T04:15:05.603000 +CVE-2024-12979,1,1,d19ccb6e4893fe1115af92b3a6a877045561af4a1fa80a64eb87260155e076e4,2024-12-27T05:15:07.130000 CVE-2024-1298,0,0,04246e35362f6f4b760051526529d0b042d99f56b78c06a26d303553264d4594,2024-11-21T08:50:15.890000 +CVE-2024-12980,1,1,bb0ee44365ac631330dc2574bc3d25821baf905a38d0c50b763cddb4e32a144c,2024-12-27T05:15:07.353000 +CVE-2024-12981,1,1,c44e3bfc83c2e97b51180987551bcf8310bfc671acb459959a94743959a4fd5e,2024-12-27T06:15:23.463000 +CVE-2024-12982,1,1,74b49aa83677bdccde5e83ce9b1d234e523fa114bdc4dc9b7bdaaa35b38234f5,2024-12-27T06:15:23.680000 CVE-2024-1299,0,0,c7f245e662ec35ddd87c48ae29ff03e74531f9ba7973bf15293ed4e82f111599,2024-12-11T20:23:27.497000 CVE-2024-1300,0,0,1449d51d635587092ee7e467b53bae80464f92cc07a6bda2595172832d29c1e4,2024-11-25T03:15:10.053000 CVE-2024-1301,0,0,a82904378c141da107f996cbfc3663893c64b71f2f3d06fe2a7b32b9cc0bfa85,2024-11-21T08:50:16.340000 @@ -271055,7 +271064,12 @@ CVE-2024-5649,0,0,92f21873e8ee5bd32fcc22cd04303aa3780b31222c125187737acc3fe33a1f CVE-2024-5650,0,0,e326c3216630004af5368334e17751b93c2144fc6e95ba439673319f24c5efbd,2024-11-21T09:48:05.557000 CVE-2024-5651,0,0,1b52d2c21baa1eebb0031be2e17eaf5cabf9f1b7ab486745a4d7c4c1e8ed2d60,2024-08-30T14:15:16.820000 CVE-2024-56510,0,0,628cf455c5d073351deb04857a30ea4a4964dad3ef3dc8716b118a8686175e7f,2024-12-26T21:15:06.743000 +CVE-2024-56519,1,1,eff34b522be262d74b6b60fd08fffa0cfbdfc4bdea937916892fd39272ff4c9e,2024-12-27T05:15:07.677000 CVE-2024-5652,0,0,1dda3b28a95a3027cca32754d8e2a9cb8bd181dca86e7b0a455abcf575817afc,2024-11-21T09:48:05.750000 +CVE-2024-56520,1,1,4a9aa9a1a3adcd1997d0b43db425637bc4984e59f1d448be2595594ab203989e,2024-12-27T05:15:07.837000 +CVE-2024-56521,1,1,97b68e3a5a928b0646ce77bf269259779b5065ddddc387966f52663153bd98a8,2024-12-27T05:15:07.977000 +CVE-2024-56522,1,1,932806003c80917db6a4613c79f24ada3f16757e896618a1b3cbf4f9e43c330c,2024-12-27T05:15:08.130000 +CVE-2024-56527,1,1,a95ede13f42e0f5c8d03401eae4d751f87e3519a7b965ab82dddf7167b4a00be,2024-12-27T06:15:23.880000 CVE-2024-5653,0,0,6a43b27cee3d2293652e8e6e2ccb4fc0236822263be85c5365c247a4f0b2a7b5,2024-11-21T09:48:05.873000 CVE-2024-5654,0,0,a36981ce1f77c761dfb14f4c731f47a8dfd22625db842c571518ed3950c72b86,2024-11-21T09:48:06.020000 CVE-2024-5655,0,0,0fa4e3b504ccc8e08941dc807198e5a29b07306b6e1d02090b484b1570bb08fd,2024-11-21T09:48:06.140000 @@ -274546,7 +274560,7 @@ CVE-2024-9767,0,0,80d36f7190a9ee1712fc0bac7af287f8aeae0caf94e9c8386dc03bfd7eb71f CVE-2024-9768,0,0,904cffc60d5e826fadde1f9279bf1637d0038b817b76c6a013f678cc172cfc96,2024-11-26T17:14:14.327000 CVE-2024-9769,0,0,c2696bf31f1ba7076083554371447a32b4e26b069c06f2ff37292495919c4490,2024-12-06T04:15:05.200000 CVE-2024-9772,0,0,00de6e2212e38deec5d85dcbb0fb26ecbb8065a78c6c2a56178e317ffc908e8d,2024-11-25T20:03:01.613000 -CVE-2024-9774,0,1,c8e49e7439b73477632267ef33f188046ee568d6a3b65a3e8a86838418a036fe,2024-12-27T03:15:04.790000 +CVE-2024-9774,0,0,c8e49e7439b73477632267ef33f188046ee568d6a3b65a3e8a86838418a036fe,2024-12-27T03:15:04.790000 CVE-2024-9775,0,0,67011f9891bd518291e230fce5bb1e646dc07c3ccf350d707077824dc265951b,2024-11-26T01:45:57.317000 CVE-2024-9776,0,0,691b7d4a970bfdfe6f45a48f305ac12244ac4e899e8a5e612ebd4c9c1703b9b5,2024-11-25T18:45:54.377000 CVE-2024-9777,0,0,93ee86692c4d166322b2f54769a2de3ae116ef1efe45b8b5542abe4611d31128,2024-11-29T20:57:53.423000