From f5eccab7d2ecf74c2b5b00a0e7f44f2317adca0d Mon Sep 17 00:00:00 2001 From: cad-safe-bot Date: Tue, 7 Jan 2025 03:03:46 +0000 Subject: [PATCH] Auto-Update: 2025-01-07T03:00:21.769231+00:00 --- CVE-2024/CVE-2024-249xx/CVE-2024-24992.json | 6 +++--- CVE-2024/CVE-2024-546xx/CVE-2024-54661.json | 20 ++++++++++++++++++-- README.md | 16 +++++++--------- _state.csv | 12 ++++++------ 4 files changed, 34 insertions(+), 20 deletions(-) diff --git a/CVE-2024/CVE-2024-249xx/CVE-2024-24992.json b/CVE-2024/CVE-2024-249xx/CVE-2024-24992.json index 87ae2a1c181..079ac367e55 100644 --- a/CVE-2024/CVE-2024-249xx/CVE-2024-24992.json +++ b/CVE-2024/CVE-2024-249xx/CVE-2024-24992.json @@ -2,13 +2,13 @@ "id": "CVE-2024-24992", "sourceIdentifier": "support@hackerone.com", "published": "2024-04-19T02:15:08.613", - "lastModified": "2024-11-21T09:00:05.983", + "lastModified": "2025-01-07T01:15:06.780", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM. " + "value": "A Path Traversal vulnerability in web component of Ivanti Avalanche before 6.4.3 allows a remote authenticated attacker to execute arbitrary commands as SYSTEM." }, { "lang": "es", @@ -53,7 +53,7 @@ ], "references": [ { - "url": "ZDI-CAN-22854https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed?language=en_US", + "url": "https://forums.ivanti.com/s/article/Avalanche-6-4-3-Security-Hardening-and-CVEs-addressed?language=en_US", "source": "support@hackerone.com" }, { diff --git a/CVE-2024/CVE-2024-546xx/CVE-2024-54661.json b/CVE-2024/CVE-2024-546xx/CVE-2024-54661.json index 5b74b2a6678..2e4b87af7be 100644 --- a/CVE-2024/CVE-2024-546xx/CVE-2024-54661.json +++ b/CVE-2024/CVE-2024-546xx/CVE-2024-54661.json @@ -2,13 +2,13 @@ "id": "CVE-2024-54661", "sourceIdentifier": "cve@mitre.org", "published": "2024-12-04T05:15:07.967", - "lastModified": "2024-12-04T15:15:17.580", + "lastModified": "2025-01-07T01:15:06.913", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ { "lang": "en", - "value": "readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file." + "value": "readline.sh in socat before1.8.0.2 relies on the /tmp/$USER/stderr2 file." }, { "lang": "es", @@ -39,7 +39,23 @@ } ] }, + "weaknesses": [ + { + "source": "cve@mitre.org", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-61" + } + ] + } + ], "references": [ + { + "url": "http://www.dest-unreach.org/socat/contrib/socat-secadv9.html", + "source": "cve@mitre.org" + }, { "url": "https://repo.or.cz/socat.git/blob/6ff391324d2d3b9f6bfb58e7d16a20be43b47af7:/readline.sh#l29", "source": "cve@mitre.org" diff --git a/README.md b/README.md index 27fffb1c36d..bd545887b1a 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2025-01-07T00:55:21.930746+00:00 +2025-01-07T03:00:21.769231+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2025-01-06T23:15:07.770000+00:00 +2025-01-07T01:15:06.913000+00:00 ``` ### Last Data Feed Release @@ -27,7 +27,7 @@ Repository synchronizes with the NVD every 2 hours. Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/releases/latest) ```plain -2025-01-06T01:00:04.358115+00:00 +2025-01-07T01:00:04.380562+00:00 ``` ### Total Number of included CVEs @@ -38,18 +38,16 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### CVEs added in the last Commit -Recently added CVEs: `4` +Recently added CVEs: `0` -- [CVE-2024-54764](CVE-2024/CVE-2024-547xx/CVE-2024-54764.json) (`2025-01-06T23:15:06.510`) -- [CVE-2024-54767](CVE-2024/CVE-2024-547xx/CVE-2024-54767.json) (`2025-01-06T23:15:07.513`) -- [CVE-2024-55553](CVE-2024/CVE-2024-555xx/CVE-2024-55553.json) (`2025-01-06T23:15:07.637`) -- [CVE-2025-21620](CVE-2025/CVE-2025-216xx/CVE-2025-21620.json) (`2025-01-06T23:15:07.770`) ### CVEs modified in the last Commit -Recently modified CVEs: `0` +Recently modified CVEs: `2` +- [CVE-2024-24992](CVE-2024/CVE-2024-249xx/CVE-2024-24992.json) (`2025-01-07T01:15:06.780`) +- [CVE-2024-54661](CVE-2024/CVE-2024-546xx/CVE-2024-54661.json) (`2025-01-07T01:15:06.913`) ## Download and Usage diff --git a/_state.csv b/_state.csv index b77ed0c3e8b..db352c24c02 100644 --- a/_state.csv +++ b/_state.csv @@ -250003,7 +250003,7 @@ CVE-2024-24989,0,0,47235b2a829b48983692a66465ee23949950254e8806e809055cb12909af6 CVE-2024-2499,0,0,58df8167ded63ef11aaf8fbfc99b0704fcf662a903d318b087b95eac1c8b0467,2024-11-21T09:09:53.297000 CVE-2024-24990,0,0,2e71c7b065f4e6a1008eadb9235e495f55c4b8557060386a7a771ac2cc1951ab,2024-11-21T09:00:05.750000 CVE-2024-24991,0,0,ab571423a1a6309b0495c9db088adb19784d1783badb8b28c84a771e894ba6a8,2024-11-21T09:00:05.867000 -CVE-2024-24992,0,0,0879079e08316fe24f7316a641b70acfd619ac8800ee7531e9c3c60684cfed66,2024-11-21T09:00:05.983000 +CVE-2024-24992,0,1,7e6c184fe11d55e75cf8acbe2688410429d81c016034216dd125188eaae17636,2025-01-07T01:15:06.780000 CVE-2024-24993,0,0,705a08374da6010fc88afad1a4ae031351a7f03de838c5465f09adbda3ac0c72,2024-11-21T09:00:06.103000 CVE-2024-24994,0,0,d5fa27d8c94a2d607fb5891b23235d287f859792d3db8dfcbd3aad8f2c8f6749,2024-11-21T09:00:06.213000 CVE-2024-24995,0,0,bd458f0919161b900cd48d7020c00c84097b82150d627380f7837bd5ffd2aba0,2024-11-21T09:00:06.323000 @@ -271255,7 +271255,7 @@ CVE-2024-5463,0,0,357d166209285de4e8f9b5c7c2d63d7eb415952b3a9d1476d831eb91162afa CVE-2024-5464,0,0,255f781a5f94f0faf95d7c73d6b2015838426915e8e0274a4b6257e37377ce5d,2024-11-21T09:47:43.990000 CVE-2024-5465,0,0,d854caa252ac359088449fa3628f1e50a198f1dced6d951af90835f292847339,2024-11-21T09:47:44.140000 CVE-2024-5466,0,0,bd8eca91ebf8acc552049523b9652cf94021fa13aaf76627ede5f76950f6758d,2024-12-19T20:21:12.243000 -CVE-2024-54661,0,0,ea173308d01492e6ad07a3ec27afc15cbcb8638753fa723cdd20d4babce89e4a,2024-12-04T15:15:17.580000 +CVE-2024-54661,0,1,13e4cca9a8df33a1723e5327d2d34e809c611fe62aeebc75663d0c80abb5d0eb,2025-01-07T01:15:06.913000 CVE-2024-54662,0,0,40063869c5984ddcfcaf82116b2fa9ee6b8ef71c24c68deda4080eb1ea805f5c,2024-12-18T16:15:14.220000 CVE-2024-54663,0,0,f5353753ee157eb79c3a456bcb90fa176ea7107dfe149747714f2e06d4f48033,2024-12-31T19:15:47.500000 CVE-2024-54664,0,0,d20f70ea69f653338f16a7f1cc2d57f70600da4ca2ed7cb633c4eef98563304e,2024-12-04T15:15:18.093000 @@ -271279,8 +271279,8 @@ CVE-2024-5475,0,0,3f93fbbe9009c236ea2c6da72827f7bd871ace2e1ffd3b439453d8900914ef CVE-2024-54750,0,0,a2b9bd793ac60105835f796550f4eca54ad7139b40ad2fdf283a28d5ab7647fe,2024-12-09T23:15:34.020000 CVE-2024-54751,0,0,1362ae63d46fa3e6e13ddf6e48994d99d3189782d67a09cf0bde552f8a9a1b0f,2024-12-11T16:15:14.910000 CVE-2024-54763,0,0,569e1b003ff4063f8b2d3c6abf3b92c3cfcf659be7b3e8d47a113001dd609ca8,2025-01-06T22:15:10.737000 -CVE-2024-54764,1,1,209c75bf142c690be0633df50e11eea12bb8b77d1b813f37310e8ad2ef7f5122,2025-01-06T23:15:06.510000 -CVE-2024-54767,1,1,1fe654f5aabb424e5a5c102fd0191494403a5180e32bb24b312196b061e8555f,2025-01-06T23:15:07.513000 +CVE-2024-54764,0,0,209c75bf142c690be0633df50e11eea12bb8b77d1b813f37310e8ad2ef7f5122,2025-01-06T23:15:06.510000 +CVE-2024-54767,0,0,1fe654f5aabb424e5a5c102fd0191494403a5180e32bb24b312196b061e8555f,2025-01-06T23:15:07.513000 CVE-2024-54774,0,0,4ed84230e45b966235391401edd82584405ef683a3e2fc4ff18ea7ccdbfb6480,2024-12-28T18:15:10.397000 CVE-2024-54775,0,0,3fdaf8fe1f78335459cdc17721da7bdc51023f16b45ae3c005b68536d3244569,2024-12-28T17:15:07.733000 CVE-2024-5478,0,0,db0e3beae9848430f36a4effd5045d24657a32915031caa2ccdcaa2667957312,2024-11-21T09:47:45.637000 @@ -271445,7 +271445,7 @@ CVE-2024-55547,0,0,9d23528e3e5c1a7b1f76563e1d474f90d9913c0e87c6f8fd8a14829ed85af CVE-2024-55548,0,0,b89e0a622aeff00dfd6cdc1dc1884c1956fa3e7da287ae36b11ba4d60647d05d,2024-12-10T20:15:21.643000 CVE-2024-5555,0,0,742073dac4de00aad4cb6df58c8d366b01298901468c1f8f2b3d987b01395142,2024-11-21T09:47:55.300000 CVE-2024-55550,0,0,083b12aa55fd376f21b90ec42869839cac3f2d3ae5f0c3d1ccf8b929f82d5435,2024-12-11T15:15:19.653000 -CVE-2024-55553,1,1,9fdb0c43bc4ef57af0f5d4f95d0af9f114be3998fba03fb0808090c0a3750a59,2025-01-06T23:15:07.637000 +CVE-2024-55553,0,0,9fdb0c43bc4ef57af0f5d4f95d0af9f114be3998fba03fb0808090c0a3750a59,2025-01-06T23:15:07.637000 CVE-2024-55554,0,0,09e3cdaa4a820daeb6598bb5a8faaf533e66285f3e6a4797b593c193d2a0933a,2024-12-17T17:15:09.843000 CVE-2024-55557,0,0,1c44f970be9c9162e2fd5fa3f9e1778bc69c31c3d5707dcbd0caa2e430754ba4,2024-12-17T16:15:25.900000 CVE-2024-5556,0,0,f573f07f74091c9ef49ab63e55c790d8f661c071a22a95c82ecfdf6c6886287c,2024-08-27T14:36:53.273000 @@ -275842,7 +275842,7 @@ CVE-2025-21615,0,0,fb1d1b59e0795bd682134b6fa4b1fdae854aaf92d872a6fbaa412cd39ddef CVE-2025-21616,0,0,427a588ff5c6e653dd8192f34f66e844819f0925a8e35d6c7a187fcff4345e80,2025-01-06T22:15:11.023000 CVE-2025-21617,0,0,1b5674c17538c133c12a05d0a22a69c96dc39356013d3a7f6803ed67351947a8,2025-01-06T20:15:39.453000 CVE-2025-21618,0,0,4c20ae4fc5c8b4aacd9f26687daa5f4af9af83a3837718673c9fc7ecd24be6c6,2025-01-06T17:15:47.660000 -CVE-2025-21620,1,1,66289b3b3f28df54a495a49470b309f007a7b7fd72e39a3c6fd58a9e688ab03c,2025-01-06T23:15:07.770000 +CVE-2025-21620,0,0,66289b3b3f28df54a495a49470b309f007a7b7fd72e39a3c6fd58a9e688ab03c,2025-01-06T23:15:07.770000 CVE-2025-22214,0,0,9f9cbba758088c6fe54f3b7aba457fa8b68f7e0bf397744585451dc526c7cea3,2025-01-02T04:15:06.277000 CVE-2025-22275,0,0,dc0905974c721b278910237158fbbf2db7a66a5bd4b529c9d9744ba0c53260f3,2025-01-03T07:15:25.297000 CVE-2025-22376,0,0,5718c706cab54399c824e81247fa8725e0b2da3334acc9f4e812565255340de1,2025-01-03T23:15:08.897000