Auto-Update: 2024-12-28T07:00:18.938464+00:00

2025-05-08 19:47:09 +00:00 · 2024-12-28 07:03:41 +00:00 · 2024-12-28 07:03:41 +00:00 · de841de3dc
commit de841de3dc
parent e49dbaded0
5 changed files with 112 additions and 8 deletions
--- a/CVE-2024/CVE-2024-437xx/CVE-2024-43705.json
+++ b/CVE-2024/CVE-2024-437xx/CVE-2024-43705.json
@ -0,0 +1,33 @@
+{
+  "id": "CVE-2024-43705",
+  "sourceIdentifier": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+  "published": "2024-12-28T05:15:07.360",
+  "lastModified": "2024-12-28T05:15:07.360",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Software installed and run as a non-privileged user can trigger the GPU kernel driver to write to arbitrary read-only system files that have been mapped into application memory."
+    }
+  ],
+  "metrics": {},
+  "weaknesses": [
+    {
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-280"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.imaginationtech.com/gpu-driver-vulnerabilities/",
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-469xx/CVE-2024-46972.json
+++ b/CVE-2024/CVE-2024-469xx/CVE-2024-46972.json
@ -0,0 +1,33 @@
+{
+  "id": "CVE-2024-46972",
+  "sourceIdentifier": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+  "published": "2024-12-28T05:15:08.497",
+  "lastModified": "2024-12-28T05:15:08.497",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions."
+    }
+  ],
+  "metrics": {},
+  "weaknesses": [
+    {
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-911"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.imaginationtech.com/gpu-driver-vulnerabilities/",
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-469xx/CVE-2024-46973.json
+++ b/CVE-2024/CVE-2024-469xx/CVE-2024-46973.json
@ -0,0 +1,33 @@
+{
+  "id": "CVE-2024-46973",
+  "sourceIdentifier": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+  "published": "2024-12-28T05:15:08.800",
+  "lastModified": "2024-12-28T05:15:08.800",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions."
+    }
+  ],
+  "metrics": {},
+  "weaknesses": [
+    {
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce",
+      "type": "Secondary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-416"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://www.imaginationtech.com/gpu-driver-vulnerabilities/",
+      "source": "367425dc-4d06-4041-9650-c2dc6aaa27ce"
+    }
+  ]
+}
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2024-12-28T00:55:19.475833+00:00
+2024-12-28T07:00:18.938464+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2024-12-28T00:15:29.727000+00:00
+2024-12-28T05:15:08.800000+00:00
 ```

 ### Last Data Feed Release
@ -27,26 +27,28 @@ Repository synchronizes with the NVD every 2 hours.
 Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest)

 ```plain
-2024-12-27T01:00:04.363374+00:00
+2024-12-28T01:00:04.368689+00:00
 ```

 ### Total Number of included CVEs

 ```plain
-275024
+275027
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `0`
+Recently added CVEs: `3`

+- [CVE-2024-43705](CVE-2024/CVE-2024-437xx/CVE-2024-43705.json) (`2024-12-28T05:15:07.360`)
+- [CVE-2024-46972](CVE-2024/CVE-2024-469xx/CVE-2024-46972.json) (`2024-12-28T05:15:08.497`)
+- [CVE-2024-46973](CVE-2024/CVE-2024-469xx/CVE-2024-46973.json) (`2024-12-28T05:15:08.800`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `1`
+Recently modified CVEs: `0`

- [CVE-2024-35260](CVE-2024/CVE-2024-352xx/CVE-2024-35260.json) (`2024-12-28T00:15:29.727`)


 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -257381,7 +257381,7 @@ CVE-2024-35254,0,0,0973352a78955e1008d161d71b8515ce181d81658087521aabcddd672b8cb
 CVE-2024-35255,0,0,581f31b36f75ac6f46c2d37b76c568a4621a453c4676f680bee3fd5ee48a9960,2024-11-21T09:20:01.923000
 CVE-2024-35256,0,0,fdf58bc15c9e5829b008eba0447eb31c7908d245ff677b68e36e7a51e7c32591,2024-11-21T09:20:02.097000
 CVE-2024-3526,0,0,00aba66344c4ad9a98adc51159299f69d8d607e96cdf6c69f58bf49990693859,2024-11-21T09:29:47.070000
-CVE-2024-35260,0,1,1197c85121ceac774d2666d680d224fce30d275cdec513f755e3a03db8f67451,2024-12-28T00:15:29.727000
+CVE-2024-35260,0,0,1197c85121ceac774d2666d680d224fce30d275cdec513f755e3a03db8f67451,2024-12-28T00:15:29.727000
 CVE-2024-35261,0,0,853243ae96986895a452e742ac88fbd64f946a14c2dfa4fbfbe67cdf2d85f617,2024-11-21T09:20:02.430000
 CVE-2024-35263,0,0,951083709f373b75c0d1b8dc0a3ecfb5290e69be2b6665942bcb07c45a716bd1,2024-11-21T09:20:02.580000
 CVE-2024-35264,0,0,b9590d3542cd7e753efff643842f5350608ad1d01a3bc98f08d12314503ba03c,2024-11-21T09:20:02.723000
@ -263606,6 +263606,7 @@ CVE-2024-43701,0,0,58213fd69d061c99a2baecf3bfc2d3de28885daea59715edf42f5d3058dc9
 CVE-2024-43702,0,0,026195b67973267c5f7e1b66b43eadfe3de1f0eaa8dad79a11b9df4d6c345a3b,2024-12-01T23:15:06.200000
 CVE-2024-43703,0,0,e564d47a3ea8e2e59e7c0c62fe5b37de767d270b87bc716325b902fc07b61a86,2024-12-01T23:15:06.383000
 CVE-2024-43704,0,0,82c22af109add6551b6eea89e99a6b50accfdf02d564899eae149615096d5dc8,2024-11-18T17:11:17.393000
+CVE-2024-43705,1,1,cb21b59e4546427fff554f6647e5e96da96c44005407a84cb09ac09a9f74a4d5,2024-12-28T05:15:07.360000
 CVE-2024-4371,0,0,e83d972dfd798c0045589442b000f085f252e3d21fb48583dd2590000a3618ae,2024-11-21T09:42:43.087000
 CVE-2024-43712,0,0,9ab3fe760e8f19464e8d37dd73b7335ae43d5382e27e4d6ab5795a2dd3e62314,2024-12-17T15:23:11.173000
 CVE-2024-43713,0,0,2351d2ccf5a9bdfa299b6fe1f3d7c7e3a4bbc01a6f8443c4348a36cf5880bc04,2024-12-17T14:55:13.953000
@ -265681,6 +265682,8 @@ CVE-2024-46966,0,0,9cdd2da38a787da29e0b07f0d6dcd10da33561e25fc912ee27f59b8909bf7
 CVE-2024-4697,0,0,6e9eec3fc18bbe27148fb3ae709181d18ecd5466c486132eee5af6541f60f69a,2024-11-21T09:43:23.923000
 CVE-2024-46970,0,0,47f126874782e42ba0255278170be39f81b73559fd27fec798ec0eacead9eab6,2024-09-20T13:23:29.700000
 CVE-2024-46971,0,0,13f5bf1ddf9e277ff0420700bae256c15735e36c1980e83ccf846d2d8d2585bf,2024-12-16T17:15:09.957000
+CVE-2024-46972,1,1,0e34573fc20dd373f66d1b8ed3f8cb5899ffa098578c43ffb6dff5bb8ae5f7ed,2024-12-28T05:15:08.497000
+CVE-2024-46973,1,1,02a2337fa0b045ad9b4cd6d6039c0ac1391b96261ec088c603010b855acfa89a,2024-12-28T05:15:08.800000
 CVE-2024-46976,0,0,4a868e4ee15a8784e07959c2ee26d78428d60c159c11da76b493608d7f56cb35,2024-09-23T18:27:05.920000
 CVE-2024-46977,0,0,fa1cd1ba8936d67d5921849fcc8f3d7b6f2a4d12d9e5b79d9c6367bb65d4c705,2024-10-31T14:15:05.870000
 CVE-2024-46978,0,0,5ad4a14bdb0dcc622f405a376b5dff5a37cfd5b77f4a078b27e4c7705de4bf3c,2024-09-20T12:30:17.483000