From ee1d1d30af7973adafb27b84f7649ac238bc3d33 Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Tue, 21 Jan 2025 05:03:45 +0000 Subject: [PATCH] Auto-Update: 2025-01-21T05:00:20.007751+00:00 --- CVE-2025/CVE-2025-03xx/CVE-2025-0354.json | 4 ++-- CVE-2025/CVE-2025-03xx/CVE-2025-0355.json | 4 ++-- CVE-2025/CVE-2025-03xx/CVE-2025-0356.json | 4 ++-- CVE-2025/CVE-2025-240xx/CVE-2025-24014.json | 6 +++++- README.md | 14 ++++++++------ _state.csv | 10 +++++----- 6 files changed, 24 insertions(+), 18 deletions(-) diff --git a/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json b/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json index ea99e537b05..76a63aee7c2 100644 --- a/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json +++ b/CVE-2025/CVE-2025-03xx/CVE-2025-0354.json @@ -2,13 +2,13 @@ "id": "CVE-2025-0354", "sourceIdentifier": "psirt-info@cyber.jp.nec.com", "published": "2025-01-15T08:15:26.330", - "lastModified": "2025-01-15T08:15:26.330", + "lastModified": "2025-01-21T04:15:07.147", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to inject an arbitrary script via the internet." + "value": "Cross-site scripting vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to inject an arbitrary script via the network." }, { "lang": "es", diff --git a/CVE-2025/CVE-2025-03xx/CVE-2025-0355.json b/CVE-2025/CVE-2025-03xx/CVE-2025-0355.json index ccfda2e961c..f00a75cd13e 100644 --- a/CVE-2025/CVE-2025-03xx/CVE-2025-0355.json +++ b/CVE-2025/CVE-2025-03xx/CVE-2025-0355.json @@ -2,13 +2,13 @@ "id": "CVE-2025-0355", "sourceIdentifier": "psirt-info@cyber.jp.nec.com", "published": "2025-01-15T08:15:26.493", - "lastModified": "2025-01-15T08:15:26.493", + "lastModified": "2025-01-21T04:15:07.877", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to get a Wi-Fi password via the internet." + "value": "Missing Authentication for Critical Function vulnerability in NEC Corporation Aterm WG2600HS Ver.1.7.2 and earlier, WF1200CRS Ver.1.6.0 and earlier, WG1200CRS Ver.1.5.0 and earlier, GB1200PE Ver.1.3.0 and earlier, WG2600HP4 Ver.1.4.2 and earlier, WG2600HM4 Ver.1.4.2 and earlier, WG2600HS2 Ver.1.3.2 and earlier, WX3000HP Ver.2.4.2 and earlier and WX4200D5 Ver.1.2.4 and earlier allows a attacker to get a Wi-Fi password via the network." }, { "lang": "es", diff --git a/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json b/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json index 8e4154f89fc..860b2683261 100644 --- a/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json +++ b/CVE-2025/CVE-2025-03xx/CVE-2025-0356.json @@ -2,13 +2,13 @@ "id": "CVE-2025-0356", "sourceIdentifier": "psirt-info@cyber.jp.nec.com", "published": "2025-01-15T08:15:26.650", - "lastModified": "2025-01-15T08:15:26.650", + "lastModified": "2025-01-21T04:15:07.980", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a attacker to execute arbitrary OS commands via the internet." + "value": "NEC Corporation Aterm WX1500HP Ver.1.4.2 and earlier and WX3600HP Ver.1.5.3 and earlier allows a attacker to execute arbitrary OS commands via the network." }, { "lang": "es", diff --git a/CVE-2025/CVE-2025-240xx/CVE-2025-24014.json b/CVE-2025/CVE-2025-240xx/CVE-2025-24014.json index 1a8e8623346..63decf78864 100644 --- a/CVE-2025/CVE-2025-240xx/CVE-2025-24014.json +++ b/CVE-2025/CVE-2025-240xx/CVE-2025-24014.json @@ -2,7 +2,7 @@ "id": "CVE-2025-24014", "sourceIdentifier": "security-advisories@github.com", "published": "2025-01-20T23:15:07.730", - "lastModified": "2025-01-21T01:15:08.993", + "lastModified": "2025-01-21T03:15:06.393", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -59,6 +59,10 @@ { "url": "http://www.openwall.com/lists/oss-security/2025/01/20/4", "source": "af854a3a-2127-422b-91ae-364da2661108" + }, + { + "url": "http://www.openwall.com/lists/oss-security/2025/01/21/1", + "source": "af854a3a-2127-422b-91ae-364da2661108" } ] } \ No newline at end of file diff --git a/README.md b/README.md index e6411f4c588..33bd60b58a8 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2025-01-21T03:00:19.196568+00:00 +2025-01-21T05:00:20.007751+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2025-01-21T01:15:08.993000+00:00 +2025-01-21T04:15:07.980000+00:00 ``` ### Last Data Feed Release @@ -38,16 +38,18 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `1` +Recently added CVEs: `0` -- [CVE-2024-45091](CVE-2024/CVE-2024-450xx/CVE-2024-45091.json) (`2025-01-21T01:15:07.890`) ### CVEs modified in the last Commit -Recently modified CVEs: `1` +Recently modified CVEs: `4` -- [CVE-2025-24014](CVE-2025/CVE-2025-240xx/CVE-2025-24014.json) (`2025-01-21T01:15:08.993`) +- [CVE-2025-0354](CVE-2025/CVE-2025-03xx/CVE-2025-0354.json) (`2025-01-21T04:15:07.147`) +- [CVE-2025-0355](CVE-2025/CVE-2025-03xx/CVE-2025-0355.json) (`2025-01-21T04:15:07.877`) +- [CVE-2025-0356](CVE-2025/CVE-2025-03xx/CVE-2025-0356.json) (`2025-01-21T04:15:07.980`) +- [CVE-2025-24014](CVE-2025/CVE-2025-240xx/CVE-2025-24014.json) (`2025-01-21T03:15:06.393`) ## Download and Usage diff --git a/_state.csv b/_state.csv index c3c4956c8a4..4974f3eef1f 100644 --- a/_state.csv +++ b/_state.csv @@ -265675,7 +265675,7 @@ CVE-2024-45086,0,0,2d2c1612ef6e5a8ce239cd3dcdf490449d1514d9bada7d0d52c5fd5141b8d CVE-2024-45087,0,0,5a1fbae564cbb4ee2c9e115b9e60e394ba12f02ef5cac53d3fcf17b309556986,2024-11-18T16:34:23.010000 CVE-2024-45088,0,0,1beec48fbebe975f8bc73123f865d04a7ed8df665a2d4af27f0cdfaad436655f,2024-11-18T16:33:34.060000 CVE-2024-4509,0,0,3524d641cd000812a310ff38fb9e15060d273c22d6c74437283905e2f7ceb2a8,2024-11-21T09:42:59.127000 -CVE-2024-45091,1,1,6cdef8024d06c1630553091c450d55c9ff1f847365483e1f1a505d53c62c5a65,2025-01-21T01:15:07.890000 +CVE-2024-45091,0,0,6cdef8024d06c1630553091c450d55c9ff1f847365483e1f1a505d53c62c5a65,2025-01-21T01:15:07.890000 CVE-2024-45096,0,0,6e04e4dc0b5cb194770300a49e24b05d1a72a2bb58de4b452fabe27ca897f070,2024-09-06T12:34:17.957000 CVE-2024-45097,0,0,86a5f6f58b36ff4d76801faef73b7a44c24bdd910aa639853fe61c2940eeaa37,2024-09-06T12:51:59.750000 CVE-2024-45098,0,0,beeee876795e27e2a560d9e6400141cf489497a78fea87df6979a5ea96e1eb85,2024-09-06T13:01:44.023000 @@ -277229,9 +277229,9 @@ CVE-2025-0346,0,0,3ca882ed5f0f6ff30f77b6214e7e7bdd383925e6a59aee9ebd80a0c7383e3b CVE-2025-0347,0,0,ec55ad444ba1a81cdc39b917c4d69e23fb6f894614506108703cecaf8b681d74,2025-01-09T10:15:07.170000 CVE-2025-0348,0,0,caf29c7d10aa1d0bc868897d1f5fe71d1c997b913af05adf015858af50a20840,2025-01-09T10:15:07.700000 CVE-2025-0349,0,0,5c5bde0373ec0c26c713a0d565cd6e4461e0dfe3c3d54fa435cc26640f811d63,2025-01-09T11:15:16.547000 -CVE-2025-0354,0,0,efce1f0b08ce1160a0847d2aa933618e48ac6c2332a3b9787b6299e335cc4681,2025-01-15T08:15:26.330000 -CVE-2025-0355,0,0,74a2220c407d4807ac858b34aeda75fee0408821f241c76d755b61749f4d86af,2025-01-15T08:15:26.493000 -CVE-2025-0356,0,0,b7b9d033ece755ec761d5c32be0fa6165ab2adbaf63cb741175769ef6f1d5b52,2025-01-15T08:15:26.650000 +CVE-2025-0354,0,1,428d38f2781814173c07276c3123b7894bf18887b24de42981453e8b9fe91fd5,2025-01-21T04:15:07.147000 +CVE-2025-0355,0,1,60139aab38184d5553deea3c96ee67451ff405f2b0f65acb32b8c01c91586866,2025-01-21T04:15:07.877000 +CVE-2025-0356,0,1,00c4e703b995e5d2c2e4f165848b6efa20e85198e0b810bdb74efa5802e75a40,2025-01-21T04:15:07.980000 CVE-2025-0369,0,0,60e0263b7bdd9bb8b2fbff594a1f912ed9cb257670ae53622ab1064bad30f4a5,2025-01-18T07:15:09.720000 CVE-2025-0390,0,0,a9cacf0ddfe16d7ce6aba119743e725f69b4f5561bb60e372a0dcb6744d412ca,2025-01-11T08:15:26.527000 CVE-2025-0391,0,0,ab8f7905746a492810fe86765faefb1fff997fc4d75bb4be776d20c58a35599f,2025-01-11T09:15:05.937000 @@ -278156,5 +278156,5 @@ CVE-2025-23963,0,0,b25e75626ec56255a41425e6f3edd3e3aea1c19b7ee658d0d0b26b28ec1f0 CVE-2025-23965,0,0,53fb1e10aaa7ebd57bd7f00633a90cd803f03e00b4bc8c44e50c428b42627500,2025-01-16T21:15:38.023000 CVE-2025-24010,0,0,b1ad142cb0e12a44fa76d1536c3ae8cc5dc1c93205ad3e19be582c3fc492507c,2025-01-20T16:15:28.730000 CVE-2025-24013,0,0,a013478a51520d1a805dca03a3a7f43a81c8ee1d4137efd7110dbaf0e05d94c6,2025-01-20T16:15:28.877000 -CVE-2025-24014,0,1,73893640b4e6f2d0efc62f92027e0d26aa42489da21003b95a8c42191e1bbdcf,2025-01-21T01:15:08.993000 +CVE-2025-24014,0,1,0c972738e3babcd39492772e29e55637e9d570d75dd7fbfa964ee94a33114b3d,2025-01-21T03:15:06.393000 CVE-2025-24337,0,0,07d30bbea6dfa209bcd4c6bc43756d477d6586721f50f7d7909041753d5deb68,2025-01-20T14:15:27.130000