diff --git a/CVE-2024/CVE-2024-277xx/CVE-2024-27776.json b/CVE-2024/CVE-2024-277xx/CVE-2024-27776.json new file mode 100644 index 00000000000..41b3622a210 --- /dev/null +++ b/CVE-2024/CVE-2024-277xx/CVE-2024-27776.json @@ -0,0 +1,55 @@ +{ + "id": "CVE-2024-27776", + "sourceIdentifier": "cna@cyber.gov.il", + "published": "2024-06-02T13:15:08.510", + "lastModified": "2024-06-02T13:15:08.510", + "vulnStatus": "Received", + "descriptions": [ + { + "lang": "en", + "value": "MileSight DeviceHub - \n\nCWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') may allow Unauthenticated RCE" + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cna@cyber.gov.il", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH", + "baseScore": 9.8, + "baseSeverity": "CRITICAL" + }, + "exploitabilityScore": 3.9, + "impactScore": 5.9 + } + ] + }, + "weaknesses": [ + { + "source": "cna@cyber.gov.il", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-22" + } + ] + } + ], + "references": [ + { + "url": "https://www.gov.il/en/Departments/faq/cve_advisories", + "source": "cna@cyber.gov.il" + } + ] +} \ No newline at end of file diff --git a/README.md b/README.md index cb6fd88d3aa..51680237744 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-06-02T12:00:38.104614+00:00 +2024-06-02T14:00:37.718392+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-06-02T11:15:07.390000+00:00 +2024-06-02T13:15:08.510000+00:00 ``` ### Last Data Feed Release @@ -33,15 +33,14 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -252368 +252369 ``` ### CVEs added in the last Commit -Recently added CVEs: `2` +Recently added CVEs: `1` -- [CVE-2024-2178](CVE-2024/CVE-2024-21xx/CVE-2024-2178.json) (`2024-06-02T11:15:07.390`) -- [CVE-2024-5587](CVE-2024/CVE-2024-55xx/CVE-2024-5587.json) (`2024-06-02T10:15:07.427`) +- [CVE-2024-27776](CVE-2024/CVE-2024-277xx/CVE-2024-27776.json) (`2024-06-02T13:15:08.510`) ### CVEs modified in the last Commit diff --git a/_state.csv b/_state.csv index 9ef49c099b7..d6c9a077ff5 100644 --- a/_state.csv +++ b/_state.csv @@ -242863,7 +242863,7 @@ CVE-2024-21773,0,0,345c45cc46b4a2bc7fbfc453c1eb1fa6c31eadeab4db3115f257eaa510aff CVE-2024-21774,0,0,1a683c4386593938143db88bd83b2bc14ad5e978ab332a4ec1c1701b534f41d6,2024-05-17T18:36:05.263000 CVE-2024-21775,0,0,fa85b83de8a974be53a1271d6ef4f5e89cdc5553455da07512cbacd5d2092435,2024-02-16T19:26:55.393000 CVE-2024-21777,0,0,44618f6eca8c187e802d1fb8a5513e5c3f7a7b0ff0972cb292dc18c9e5673eb1,2024-05-17T18:36:05.263000 -CVE-2024-2178,1,1,65178c91f028e8c9caabf7b8b32f8f74cb4389b2cd99cb674ec7fb5352ae61d5,2024-06-02T11:15:07.390000 +CVE-2024-2178,0,0,65178c91f028e8c9caabf7b8b32f8f74cb4389b2cd99cb674ec7fb5352ae61d5,2024-06-02T11:15:07.390000 CVE-2024-21780,0,0,206894ce9dfe6d8af29d8349b60ae2b1f1c1e4c0d8fd3377294811d2785206a2,2024-05-17T02:36:10.020000 CVE-2024-21782,0,0,a54768f93a9b07a30680122b1877fb41eae0f01a5d667d71a8861ee6fcf71d48,2024-02-14T18:04:45.380000 CVE-2024-21785,0,0,7e1dfc062139302ac105f55cd17f3473b4f4084526bd40a9261ab8229358552f,2024-05-29T13:15:48.977000 @@ -246589,6 +246589,7 @@ CVE-2024-27772,0,0,74af8eed731e5b425aab2727beacb117c28f87b19636f9d512e6f6e151c66 CVE-2024-27773,0,0,62fe67736848ea8328780066f441ea8ebe627c476f525b27318ac323bddd5d1e,2024-03-18T19:40:00.173000 CVE-2024-27774,0,0,6fe31e2c0003d4fab016c3154c886020f7c2bef625382f41f7a60dc74c0efad1,2024-03-18T19:40:00.173000 CVE-2024-27775,0,0,a887ec832dbcf6f0b1b703ebc438ac1eb2747b129f8cfe7b452debf6096772bf,2024-03-28T16:07:30.893000 +CVE-2024-27776,1,1,5e8bec267507d3a6e5a4bdfcc5b7fcd074b5cc04e6d4731dc61345f510078af3,2024-06-02T13:15:08.510000 CVE-2024-2778,0,0,42cbc20405f3ee35374ef4ea72808c22dd795c7f7e01e3e442c0f4aa51ec7373,2024-05-17T02:38:29.967000 CVE-2024-27789,0,0,68e55fc60c739900a6cd74c23e8202eb8ab5115250ba8dd1373addb21fa6b4f5,2024-05-14T16:13:02.773000 CVE-2024-2779,0,0,7d93945d439dc1c56122930b3da6852f346b5a9c5c7e988befb1c7629d43acd9,2024-05-17T02:38:30.057000 @@ -252366,4 +252367,4 @@ CVE-2024-5537,0,0,071475eb8c0f92cc8ea9522d658283ad0e8213ba6740ff46ee05e5b24c18c3 CVE-2024-5538,0,0,183cea799fa9410e329e72f326a10b8369aedcea9a5b7583a44bf33ecc305070,2024-05-31T11:15:09.923000 CVE-2024-5564,0,0,f7faa47ddc158f9856a111ddb265bd8c9a26316b66118569da1a6c1b8891e06c,2024-05-31T19:15:08.883000 CVE-2024-5565,0,0,ca2b275160a932f35493ef873c1e3b3376ac0de1d1f0359f5898f4a0c4303049,2024-05-31T19:14:47.793000 -CVE-2024-5587,1,1,b1c082d0bcefeab107a153e8b81daa5aa10d2ae53cef562508c8cd35c0053fe4,2024-06-02T10:15:07.427000 +CVE-2024-5587,0,0,b1c082d0bcefeab107a153e8b81daa5aa10d2ae53cef562508c8cd35c0053fe4,2024-06-02T10:15:07.427000