Auto-Update: 2024-11-24T23:00:19.305059+00:00

CVE-2024/CVE-2024-539xx/CVE-2024-53909.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53909",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:03.817",
+  "lastModified": "2024-11-24T21:15:03.817",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24334. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53910.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53910",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:03.960",
+  "lastModified": "2024-11-24T21:15:03.960",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53911.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53911",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:04.087",
+  "lastModified": "2024-11-24T21:15:04.087",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24339. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53912.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53912",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:04.210",
+  "lastModified": "2024-11-24T21:15:04.210",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53913.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53913",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:04.333",
+  "lastModified": "2024-11-24T21:15:04.333",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24343. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53914.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53914",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:04.453",
+  "lastModified": "2024-11-24T21:15:04.453",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24344. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

CVE-2024/CVE-2024-539xx/CVE-2024-53915.json

@@ -0,0 +1,43 @@
+{
+  "id": "CVE-2024-53915",
+  "sourceIdentifier": "cve@mitre.org",
+  "published": "2024-11-24T21:15:04.580",
+  "lastModified": "2024-11-24T21:15:04.580",
+  "vulnStatus": "Received",
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "cve@mitre.org",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+          "baseScore": 9.8,
+          "baseSeverity": "CRITICAL",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "HIGH",
+          "availabilityImpact": "HIGH"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 5.9
+      }
+    ]
+  },
+  "references": [
+    {
+      "url": "https://www.veritas.com/content/support/en_US/security/VTS24-014",
+      "source": "cve@mitre.org"
+    }
+  ]
+}

README.md

@@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update
 
 ```plain
-2024-11-24T21:00:19.584647+00:00
+2024-11-24T23:00:19.305059+00:00
 ```
 
 ### Most recent CVE Modification Timestamp synchronized with NVD
 
 ```plain
-2024-11-24T20:15:05.407000+00:00
+2024-11-24T21:15:04.580000+00:00
 ```
 
 ### Last Data Feed Release
@@ -33,23 +33,26 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs
 
 ```plain
-271199
+271206
 ```
 
 ### CVEs added in the last Commit
 
-Recently added CVEs: `0`
+Recently added CVEs: `7`
 
+- [CVE-2024-53909](CVE-2024/CVE-2024-539xx/CVE-2024-53909.json) (`2024-11-24T21:15:03.817`)
+- [CVE-2024-53910](CVE-2024/CVE-2024-539xx/CVE-2024-53910.json) (`2024-11-24T21:15:03.960`)
+- [CVE-2024-53911](CVE-2024/CVE-2024-539xx/CVE-2024-53911.json) (`2024-11-24T21:15:04.087`)
+- [CVE-2024-53912](CVE-2024/CVE-2024-539xx/CVE-2024-53912.json) (`2024-11-24T21:15:04.210`)
+- [CVE-2024-53913](CVE-2024/CVE-2024-539xx/CVE-2024-53913.json) (`2024-11-24T21:15:04.333`)
+- [CVE-2024-53914](CVE-2024/CVE-2024-539xx/CVE-2024-53914.json) (`2024-11-24T21:15:04.453`)
+- [CVE-2024-53915](CVE-2024/CVE-2024-539xx/CVE-2024-53915.json) (`2024-11-24T21:15:04.580`)
 
 
 ### CVEs modified in the last Commit
 
-Recently modified CVEs: `4`
+Recently modified CVEs: `0`
 
-- [CVE-2024-53899](CVE-2024/CVE-2024-538xx/CVE-2024-53899.json) (`2024-11-24T19:15:05.010`)
-- [CVE-2024-53901](CVE-2024/CVE-2024-539xx/CVE-2024-53901.json) (`2024-11-24T19:15:05.193`)
-- [CVE-2024-7923](CVE-2024/CVE-2024-79xx/CVE-2024-7923.json) (`2024-11-24T19:15:05.933`)
-- [CVE-2024-9676](CVE-2024/CVE-2024-96xx/CVE-2024-9676.json) (`2024-11-24T20:15:05.407`)
 
 
 ## Download and Usage

_state.csv

@@ -267409,10 +267409,17 @@ CVE-2024-5385,0,0,5113296fe5b95e2ca5ffa573f35631b642d4f934e6e56cfebf21d51c8e50ce
 CVE-2024-5387,0,0,d7455745fd4e2043656d894120ace9fd562ab2b459405f5c80fb87774616ea6e,2024-06-03T19:15:09.500000
 CVE-2024-5388,0,0,88068f2d18329bc2e1ad4660154ccfa55826fed94a4e1660b5757c6715c273a8,2024-06-03T19:15:09.557000
 CVE-2024-5389,0,0,f6aaaf23dff2a1d7f90a7950cdbb76e8322ef8c0ff1bf8f6173fe4634d169b69,2024-07-09T19:15:13.853000
-CVE-2024-53899,0,1,d0ea7e267aee4a6d9fa16def146fbe335177ecebbeec6b6ff276e4832daa8b2b,2024-11-24T19:15:05.010000
+CVE-2024-53899,0,0,d0ea7e267aee4a6d9fa16def146fbe335177ecebbeec6b6ff276e4832daa8b2b,2024-11-24T19:15:05.010000
 CVE-2024-5390,0,0,577e03013c579fd5ea5c07b95a092cd4d32be3fa4130d25da9e61ffe468007ab,2024-06-04T19:21:08.020000
-CVE-2024-53901,0,1,a856ad898af1d7a6e4e72889b89fe64fdf720b1f2234f48473f413bd8403693c,2024-11-24T19:15:05.193000
+CVE-2024-53901,0,0,a856ad898af1d7a6e4e72889b89fe64fdf720b1f2234f48473f413bd8403693c,2024-11-24T19:15:05.193000
+CVE-2024-53909,1,1,3088b1d94fa62a2a08abbfaded2e1be32946005c6b18c9e11e2340ab7fb73585,2024-11-24T21:15:03.817000
 CVE-2024-5391,0,0,a7c29f93c1b76aed47351138468a6c5b251b9f9a4ad39cf688118719a36ed1c7,2024-06-07T20:15:12.687000
+CVE-2024-53910,1,1,a66d0431b9c389f61874e67620cdfa58438927f27e1c0d62eb28bb37722a44cc,2024-11-24T21:15:03.960000
+CVE-2024-53911,1,1,103a842ea8cc3e20ca2f8c8065176ad651861d8c1c004b269bdf30730af62374,2024-11-24T21:15:04.087000
+CVE-2024-53912,1,1,7ef48ae334126168c1eeaffa3133917043bbafcdfb94c93b4ab3f651615fe4f8,2024-11-24T21:15:04.210000
+CVE-2024-53913,1,1,a29c7c218a136f1fecf9c3f589cadee2966e4a90737bbc0405debe59301410fb,2024-11-24T21:15:04.333000
+CVE-2024-53914,1,1,c529e50e941dc99542189aa80a68611f9afe5b4cc5f417630606d1e061862668,2024-11-24T21:15:04.453000
+CVE-2024-53915,1,1,14bde47e14d46a3d8b22b8cc9e1dd800eb41ecd56c218acd1906711104b20d9e,2024-11-24T21:15:04.580000
 CVE-2024-5392,0,0,b24872fec717fdd1d01c0a9d16cd8dae85d0db85954b236e74ba95a5e5c8352c,2024-06-04T19:21:08.117000
 CVE-2024-5393,0,0,295d4f9eb57788d71849a73c0b5d6c4f89e92a1e7613c6c16abcfeb4329f6a42,2024-06-04T19:21:08.420000
 CVE-2024-5394,0,0,aaadf9a58796777f85dc2107a816ebb5c0ae4c9d890d2d8c3ab15382290e4f66,2024-06-04T19:21:08.527000
@@ -269624,7 +269631,7 @@ CVE-2024-7919,0,0,1863f3ded361827cbb07eac1eea3f3ab9748bf8576157da3db06c534b87a21
 CVE-2024-7920,0,0,03604c94082c1da3fc5c107dc3e686ed281b4a09d67a2a74662346c68cad27ae,2024-08-21T12:31:20.663000
 CVE-2024-7921,0,0,0f227aa56af57464e66f96a1f8f7af9df81009de406656147353a8e23b801955,2024-08-21T12:34:04.490000
 CVE-2024-7922,0,0,c7a8281cc30c452535b1935299b85a2bdb852d82530dc7a36d8d5dc42009e9db,2024-08-20T16:20:25.403000
-CVE-2024-7923,0,1,50cd8de403c990d941446d2eb9a1d569d9b819c5a55984739c0231290c2249f1,2024-11-24T19:15:05.933000
+CVE-2024-7923,0,0,50cd8de403c990d941446d2eb9a1d569d9b819c5a55984739c0231290c2249f1,2024-11-24T19:15:05.933000
 CVE-2024-7924,0,0,2cf76ea42b1644543678da9fb702b4f7d4bee65303ff016d26c15c306f799b7f,2024-08-20T16:07:26.443000
 CVE-2024-7925,0,0,34a7774a8c3accfc943090e80e03d9858b71da046812c3f4a53477aade0cc157,2024-08-20T16:06:31.663000
 CVE-2024-7926,0,0,f5e8a6b4f6e219cd0b3c12f926d226c104eacc6cf54d3757ecf364a295049d42,2024-09-04T18:42:49.977000
@@ -270941,7 +270948,7 @@ CVE-2024-9670,0,0,f306c0fbbcbde1e6a65006fd3bdd50d366f02be816ff2a6f00ef3348b3b763
 CVE-2024-9671,0,0,421f1b0ad6825ff096efd81ac122f33bafcdf7b21693a85f65613389bca55f89,2024-10-10T12:51:56.987000
 CVE-2024-9674,0,0,99b8206db3c3741ff50725aa3969c36280edf4a37082b6473da1336e00a39d59,2024-10-22T14:02:50.473000
 CVE-2024-9675,0,0,eca475b135003e7e06db8f69f6d2f142dd27c257379e7a0b16967a90dcf42a39,2024-11-13T08:15:03.170000
-CVE-2024-9676,0,1,2d4dfe68dcd6b64ddbe897411bad54b0333159227c305186e59fa47b6d248933,2024-11-24T20:15:05.407000
+CVE-2024-9676,0,0,2d4dfe68dcd6b64ddbe897411bad54b0333159227c305186e59fa47b6d248933,2024-11-24T20:15:05.407000
 CVE-2024-9677,0,0,944e049c847e061867c66e6b586a0cd99260b04bc2e2059d736567bf47cae00c,2024-10-23T15:12:34.673000
 CVE-2024-9680,0,0,aade85a65f2f99cc47c2fb834c470dcfc4a6380ab6735d9434c311360504724b,2024-11-19T17:29:12.207000
 CVE-2024-9681,0,0,5184b45d0c5be56c6e66f5f4d21584d3fd220046fb9bac6604ac868b54d81bd8,2024-11-06T18:17:17.287000