From dc616591a893eea2599967fff3b4733e165e614d Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Sat, 14 Jun 2025 22:03:56 +0000 Subject: [PATCH] Auto-Update: 2025-06-14T22:00:19.564056+00:00 --- CVE-2025/CVE-2025-28xx/CVE-2025-2814.json | 8 ++++++-- README.md | 12 +++++------- _state.csv | 8 ++++---- 3 files changed, 15 insertions(+), 13 deletions(-) diff --git a/CVE-2025/CVE-2025-28xx/CVE-2025-2814.json b/CVE-2025/CVE-2025-28xx/CVE-2025-2814.json index d355280edf3..bd1ac96b447 100644 --- a/CVE-2025/CVE-2025-28xx/CVE-2025-2814.json +++ b/CVE-2025/CVE-2025-28xx/CVE-2025-2814.json @@ -2,13 +2,13 @@ "id": "CVE-2025-2814", "sourceIdentifier": "9b29abf9-4ab0-4765-b253-1875cd9b441e", "published": "2025-04-13T00:15:14.997", - "lastModified": "2025-04-15T18:39:27.967", + "lastModified": "2025-06-14T21:15:18.687", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "Crypt::CBC versions between 1.21 and 3.04 for Perl may use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions.\n\nThis issue affects operating systems where \"/dev/urandom'\" is unavailable.\u00a0 In that case, Crypt::CBC will fallback to use the insecure rand() function." + "value": "Crypt::CBC versions between 1.21 and 3.05 for Perl may use the rand() function as the default source of entropy, which is not cryptographically secure, for cryptographic functions.\n\nThis issue affects operating systems where \"/dev/urandom'\" is unavailable.\u00a0 In that case, Crypt::CBC will fallback to use the insecure rand() function." }, { "lang": "es", @@ -62,6 +62,10 @@ } ], "references": [ + { + "url": "https://github.com/lstein/Lib-Crypt-CBC/commit/37111f7cd894bcec46156ba7f40a49c126ebf535.patch", + "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e" + }, { "url": "https://metacpan.org/dist/Crypt-CBC/source/lib/Crypt/CBC.pm#L777", "source": "9b29abf9-4ab0-4765-b253-1875cd9b441e" diff --git a/README.md b/README.md index d569e78bbff..f0530eee975 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2025-06-14T12:00:20.009647+00:00 +2025-06-14T22:00:19.564056+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2025-06-14T10:15:20.153000+00:00 +2025-06-14T21:15:18.687000+00:00 ``` ### Last Data Feed Release @@ -38,17 +38,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `3` +Recently added CVEs: `0` -- [CVE-2025-4667](CVE-2025/CVE-2025-46xx/CVE-2025-4667.json) (`2025-06-14T10:15:18.853`) -- [CVE-2025-5238](CVE-2025/CVE-2025-52xx/CVE-2025-5238.json) (`2025-06-14T10:15:19.987`) -- [CVE-2025-5337](CVE-2025/CVE-2025-53xx/CVE-2025-5337.json) (`2025-06-14T10:15:20.153`) ### CVEs modified in the last Commit -Recently modified CVEs: `0` +Recently modified CVEs: `1` +- [CVE-2025-2814](CVE-2025/CVE-2025-28xx/CVE-2025-2814.json) (`2025-06-14T21:15:18.687`) ## Download and Usage diff --git a/_state.csv b/_state.csv index d60f4816407..5bb4b3e2070 100644 --- a/_state.csv +++ b/_state.csv @@ -289947,7 +289947,7 @@ CVE-2025-28135,0,0,3c4c5b74864d84436149ac901c7ee84cc8a8d394ff1e3314e6ce4d35a081f CVE-2025-28136,0,0,4ba9dfb24e16dae37fd8e3115d7b2d99289e93af064e2897992c05393635f48c,2025-04-29T16:22:52.613000 CVE-2025-28137,0,0,ec40e8ba79e15a404d0b9652afa1eb5e0350ff93ad35f90b5a00c5deffd87322,2025-04-29T16:23:23.197000 CVE-2025-28138,0,0,1b34e50519727583c2509248c4a99e365feb1498de5e5962b10a3a7f43512fae,2025-04-15T15:16:08.067000 -CVE-2025-2814,0,0,09edb5ffe7a5c57b1d00366da83ea3795ad0b26d59e02444662429a90a7a208f,2025-04-15T18:39:27.967000 +CVE-2025-2814,0,1,68e5fbe2a837ddddd6d641c63dbda88fc8c95370964848bcaf4c7bdd6da2fd7a,2025-06-14T21:15:18.687000 CVE-2025-28142,0,0,de0490bd6ca8ceda5150a2c4ffec11d22c90c42d814c21c87b6888512bb5578e,2025-05-01T14:26:35.463000 CVE-2025-28143,0,0,c5c048baeda420d8c18be295686d33eec34412dc2d2c1fbbc0290583b5fcf8cd,2025-05-01T14:26:42.633000 CVE-2025-28144,0,0,a35b2ea11052f819d9bed5e80c90fde4501d11aa8a4a4051af5276d86d48e0f5,2025-05-02T18:43:48.103000 @@ -295645,7 +295645,7 @@ CVE-2025-46656,0,0,88d2e959cac4cda5103c704a18b5a278dfdfbb63d41e023dbd311e14a8416 CVE-2025-46657,0,0,4b6d658b20503b01465fb89f1f4e404ee10732b42838e3f3a51606289348610b,2025-05-12T19:07:34.390000 CVE-2025-4666,0,0,06efc2a6f7aa23154d79ec0033eee1a4dc8e5e4c0dc18c9dfb8f84a56b8f61a1,2025-06-12T16:06:20.180000 CVE-2025-46661,0,0,7cead739e8fdbba0910b220a6a991cddda4fef2ad210bf90609b23607a61811c,2025-05-12T19:30:05.340000 -CVE-2025-4667,1,1,5518358a17bd9b2ab6bdd252fc3af44a2e80f7273fb6098ee5a34853f17e7603,2025-06-14T10:15:18.853000 +CVE-2025-4667,0,0,5518358a17bd9b2ab6bdd252fc3af44a2e80f7273fb6098ee5a34853f17e7603,2025-06-14T10:15:18.853000 CVE-2025-46672,0,0,709afab665ee0752391e30a79a351f5c75745da06d0812adb7adf96e8ee837e0,2025-05-29T15:48:16.540000 CVE-2025-46673,0,0,d9f236b7d4dcd48ec96327716bded636b95944fd7cc42e606d5697ba15c5f0c8,2025-05-29T14:02:33.393000 CVE-2025-46674,0,0,8465e84979e06c9a2535077f19bb1f5777bc76163e52345034a1eab99086e4e9,2025-05-29T14:02:03.690000 @@ -297412,7 +297412,7 @@ CVE-2025-5232,0,0,1b45026e75247a7322427bb058f27ed5717a2e44e9ed2a15532ca07a8f6c71 CVE-2025-5233,0,0,855cd0db949c4ef9f22b57e99b3e8fba673f9cb6cc8fcfffa5855b46e4c1dbad,2025-06-13T03:15:52.003000 CVE-2025-5235,0,0,9f99135aac66ddf72cbc0dbdd83c4db7648e86e689f203314291273a812d09e8,2025-06-04T18:29:21.090000 CVE-2025-5236,0,0,21b3f9a42248749cfd7dac46ffac19b1b1d972c6879013b8f47a703a60b1c09a,2025-06-04T18:30:22.220000 -CVE-2025-5238,1,1,644d4508b15f0bef28c27e50b70a28b07542f081aec66098b96ce5dd53a30898,2025-06-14T10:15:19.987000 +CVE-2025-5238,0,0,644d4508b15f0bef28c27e50b70a28b07542f081aec66098b96ce5dd53a30898,2025-06-14T10:15:19.987000 CVE-2025-5239,0,0,7898c1e396cfbf8baf8b107169103de7dd241d1dc63468b7841c136fc0bb5fc9,2025-06-06T14:06:58.193000 CVE-2025-5242,0,0,3430448059313f76ae0f8dcef9fc481fd3cfce1823da3d8abe54d77d5e6c274d,2025-06-07T23:15:22.130000 CVE-2025-5244,0,0,f16a7ad73436a8b188ea427e076cb6d66c3866f0d06770cfebf2ea7a2f86cb34,2025-05-28T15:01:30.720000 @@ -297474,7 +297474,7 @@ CVE-2025-5332,0,0,e1def175621c4e1d1942302bd613c0906cf0d988637a95edef4cbf91efd49e CVE-2025-5334,0,0,3b25ffa10fa68a37bf0e18657dc7cc96e971a33e8fade936cdd130170872987d,2025-06-10T19:15:35.243000 CVE-2025-5335,0,0,5abfb5e74bc6ec2f8ed9b95f56ffcbd4f93dcd183997df85e24502ad95934637,2025-06-12T16:06:39.330000 CVE-2025-5336,0,0,66f58ed710d27f4b2bf2e01a754073917852be9e5d922753d5aff62957bbdb9f,2025-06-14T09:15:23.527000 -CVE-2025-5337,1,1,fb81a59ed7eb176274ef27e0e4d9ad517c7e5e9aaa135dbc61f94f53fe093bdf,2025-06-14T10:15:20.153000 +CVE-2025-5337,0,0,fb81a59ed7eb176274ef27e0e4d9ad517c7e5e9aaa135dbc61f94f53fe093bdf,2025-06-14T10:15:20.153000 CVE-2025-5340,0,0,9b48da383be5dfbe2bc488480a2be183877451ec75241964210e2e3aad9a2ceb,2025-06-04T14:54:33.783000 CVE-2025-5341,0,0,2f7555dddd47395f556aef803e272926d99b2be1a7b798f5f5a29577ec1f1191,2025-06-05T20:12:23.777000 CVE-2025-5353,0,0,a9d9e9f405a59eeaccd7ee5466c700cdd9eae2ba20f2bc9c98c5c42953abdf75,2025-06-12T16:06:39.330000