From dc6fc870624c40a3c1e2d643a3ae39c3ca6521da Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Thu, 12 Sep 2024 12:03:19 +0000 Subject: [PATCH] Auto-Update: 2024-09-12T12:00:19.385516+00:00 --- CVE-2023/CVE-2023-490xx/CVE-2023-49069.json | 4 ++-- README.md | 13 +++++-------- _state.csv | 10 +++++----- 3 files changed, 12 insertions(+), 15 deletions(-) diff --git a/CVE-2023/CVE-2023-490xx/CVE-2023-49069.json b/CVE-2023/CVE-2023-490xx/CVE-2023-49069.json index 1288a508824..82614c1f560 100644 --- a/CVE-2023/CVE-2023-490xx/CVE-2023-49069.json +++ b/CVE-2023/CVE-2023-490xx/CVE-2023-49069.json @@ -2,13 +2,13 @@ "id": "CVE-2023-49069", "sourceIdentifier": "productcert@siemens.com", "published": "2024-09-10T10:15:08.947", - "lastModified": "2024-09-10T12:09:50.377", + "lastModified": "2024-09-12T11:15:15.173", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.14.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.2 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.6 (All versions < V10.6.12 only if the basic authentication mechanism is used by the application), Mendix Runtime V8 (All versions only if the basic authentication mechanism is used by the application), Mendix Runtime V9 (All versions < V9.24.26 only if the basic authentication mechanism is used by the application). The authentication mechanism of affected applications contains an observable response discrepancy vulnerability when validating usernames. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames." + "value": "A vulnerability has been identified in Mendix Runtime V10 (All versions < V10.14.0 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.12 (All versions < V10.12.2 only if the basic authentication mechanism is used by the application), Mendix Runtime V10.6 (All versions < V10.6.12 only if the basic authentication mechanism is used by the application), Mendix Runtime V8 (All versions < V8.18.31 only if the basic authentication mechanism is used by the application), Mendix Runtime V9 (All versions < V9.24.26 only if the basic authentication mechanism is used by the application). The authentication mechanism of affected applications contains an observable response discrepancy vulnerability when validating usernames. This could allow unauthenticated remote attackers to distinguish between valid and invalid usernames." }, { "lang": "es", diff --git a/README.md b/README.md index a2e066b4452..8848f7c898f 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-09-12T10:00:38.571703+00:00 +2024-09-12T12:00:19.385516+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-09-12T09:15:06.077000+00:00 +2024-09-12T11:15:15.173000+00:00 ``` ### Last Data Feed Release @@ -38,18 +38,15 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `4` +Recently added CVEs: `0` -- [CVE-2024-2010](CVE-2024/CVE-2024-20xx/CVE-2024-2010.json) (`2024-09-12T09:15:05.210`) -- [CVE-2024-8522](CVE-2024/CVE-2024-85xx/CVE-2024-8522.json) (`2024-09-12T09:15:05.480`) -- [CVE-2024-8529](CVE-2024/CVE-2024-85xx/CVE-2024-8529.json) (`2024-09-12T09:15:05.720`) -- [CVE-2024-8622](CVE-2024/CVE-2024-86xx/CVE-2024-8622.json) (`2024-09-12T09:15:06.077`) ### CVEs modified in the last Commit -Recently modified CVEs: `0` +Recently modified CVEs: `1` +- [CVE-2023-49069](CVE-2023/CVE-2023-490xx/CVE-2023-49069.json) (`2024-09-12T11:15:15.173`) ## Download and Usage diff --git a/_state.csv b/_state.csv index 3dbf588a00a..8ed9e0ce539 100644 --- a/_state.csv +++ b/_state.csv @@ -236618,7 +236618,7 @@ CVE-2023-49060,0,0,0f125d0d07dbe270a6f07b57aa641d1848f31c22fb855ca4bf11b4d5b4ef2 CVE-2023-49061,0,0,dc7136ec78ed5cf0b1889d9e499076dc7861b57a74e858b10a634425002df41f,2023-11-28T19:45:33.650000 CVE-2023-49062,0,0,1d72476c88fb45368b58247aec1688b0093de275b1093249720b62193de89ed0,2023-12-04T19:46:20.953000 CVE-2023-49068,0,0,182c6949abe2a827480e4301e5ed188cb126ad03424cd6905a2140b6a730140b,2023-12-01T13:53:23.050000 -CVE-2023-49069,0,0,72cd9601407d01de420331536695fd645b9d4f647b999936934dbe640c617168,2024-09-10T12:09:50.377000 +CVE-2023-49069,0,1,62d865d4a658b9739ae2022a8230c20829ca750d7eb0c28ff0c914cca64aa0b5,2024-09-12T11:15:15.173000 CVE-2023-4907,0,0,ee7fec7a11df58ff005b9b63ad49a50bb70f5f4e575258375cd0f49a03cc2ad7,2024-01-31T17:15:17.750000 CVE-2023-49070,0,0,631766166232ba486ccd48cb00f4afe564eec8aa0b473067715b1f04d1a8cd4e,2023-12-29T18:15:39.103000 CVE-2023-49073,0,0,2a69c4407ae45adf60baf11d8aa993141dc3f78b1f8dc71c70987fff6214c4d6,2024-07-11T16:00:30.427000 @@ -243069,7 +243069,7 @@ CVE-2024-20087,0,0,2f5d7a31aa34aa82f766600cc0380d879410c6c21363c39a9c898fbc9d48e CVE-2024-20088,0,0,32cc03fb498193be949fe1ffa83586a9683f15b97311ca3d66ce33be6ac946fe,2024-09-05T14:27:24.840000 CVE-2024-20089,0,0,f13b8ab21b15dc030dc24d817cc35e46777b9ef3b81f1ca22a499430278aeff9,2024-09-05T14:28:02.713000 CVE-2024-2009,0,0,e315bb187496fdfbd237809339603453c22bbf947712d2f37b8c2f26c500e401,2024-05-17T02:37:59.337000 -CVE-2024-2010,1,1,588ba43c879552a6f0c540d140036c1137bd6ed00514c9ba4b90587c293fdafb,2024-09-12T09:15:05.210000 +CVE-2024-2010,0,0,588ba43c879552a6f0c540d140036c1137bd6ed00514c9ba4b90587c293fdafb,2024-09-12T09:15:05.210000 CVE-2024-2011,0,0,4150023a6f5b05ff7bb1f10e004dac522c292e22a6fa4bc68fed9003ca68fddf,2024-08-15T21:25:45.037000 CVE-2024-2012,0,0,02707995e28bba3e21e37a0cc9698bd91832709b25d71785b53bd5ea8c9a7518,2024-08-15T21:19:03.770000 CVE-2024-2013,0,0,00ec85b9018843d83179244785c9b4c96e5ba8e015239a21d2d4ac8bf1b712fa,2024-08-15T21:08:02.010000 @@ -262569,9 +262569,9 @@ CVE-2024-8504,0,0,e3d0352d19d0c9df25b7281c4df070771b7e9095eb887ab8e1eb94f72060aa CVE-2024-8509,0,0,72b678ade46a23d1db65e1dfb65526568e7875d83752ef0a47b4a7edfeaf5ddf,2024-09-09T19:15:14.837000 CVE-2024-8517,0,0,3800f6b128aab40f688c971c9a9e47c0b6a42cbdd5c8d94b7cf3eaf620f48fad,2024-09-09T16:15:03.053000 CVE-2024-8521,0,0,65485edaf907369f60ded6330bfa86fc3cb4b0554a8f781a990c000b1998cccb,2024-09-09T13:03:38.303000 -CVE-2024-8522,1,1,e4e18c805fa56920a4d514ee5520ff88229a771f1036ccd9a22d2f8dde2dc71d,2024-09-12T09:15:05.480000 +CVE-2024-8522,0,0,e4e18c805fa56920a4d514ee5520ff88229a771f1036ccd9a22d2f8dde2dc71d,2024-09-12T09:15:05.480000 CVE-2024-8523,0,0,97cab60ebb5ec07bfc3fbe69bde3146d8e6846c5d869fc10534b5a2c3c29806e,2024-09-09T13:03:38.303000 -CVE-2024-8529,1,1,4d4aa5adacc0146a208a310446e50ffa215b5afc7798e9b13d4a8b8569d0207a,2024-09-12T09:15:05.720000 +CVE-2024-8529,0,0,4d4aa5adacc0146a208a310446e50ffa215b5afc7798e9b13d4a8b8569d0207a,2024-09-12T09:15:05.720000 CVE-2024-8538,0,0,cdc95bc68a4038527ba5cf51b0a8358b05e3a1650fc8124f586021fbca5ad9b3,2024-09-09T13:03:38.303000 CVE-2024-8543,0,0,e190cfdf6def9f928d16ce7c20119d5fac7745c9206ec7d9500145321b367e4b,2024-09-10T12:09:50.377000 CVE-2024-8554,0,0,46c32adbe15332664cfc930fe8c32bff96db8190902ab789492b593fa03348f1,2024-09-10T13:52:23.250000 @@ -262610,7 +262610,7 @@ CVE-2024-8604,0,0,011a82fa33d28627d93910a4b1b240e8b61f649834230335b18a4a93ce8a99 CVE-2024-8605,0,0,05de9fb886966e208a1d4ea135c5ccec7205233c650e87f0027c612a99575815,2024-09-09T18:30:12.050000 CVE-2024-8610,0,0,473e0782947d4bb5808f93b8ea2243b42a4e82997b690a69a9a95368e1eef9c1,2024-09-10T12:09:50.377000 CVE-2024-8611,0,0,a2b44027b2072954b313d2459899e49857f8f44440a8eb23f45a13a7d9867cef,2024-09-10T12:09:50.377000 -CVE-2024-8622,1,1,1805d0bf632f80e3659814ccf81a6b34c8cd507cd6f046c11338a6f4fac51dbc,2024-09-12T09:15:06.077000 +CVE-2024-8622,0,0,1805d0bf632f80e3659814ccf81a6b34c8cd507cd6f046c11338a6f4fac51dbc,2024-09-12T09:15:06.077000 CVE-2024-8636,0,0,23f70499434b57456041aa391eb7cc6603534210128847805cb5db4da618bb8e,2024-09-11T16:26:11.920000 CVE-2024-8637,0,0,53816211fb44c2b9a228b7f5de1a2345e05c81ac2d065af97294bf55b710ee26,2024-09-11T16:26:11.920000 CVE-2024-8638,0,0,314a9e7775d91ca843659445b7937519b197feaea5ae0e102bfcc7cdf8b7bf50,2024-09-11T16:26:11.920000