diff --git a/CVE-2019/CVE-2019-170xx/CVE-2019-17082.json b/CVE-2019/CVE-2019-170xx/CVE-2019-17082.json new file mode 100644 index 00000000000..65e8d2a13ed --- /dev/null +++ b/CVE-2019/CVE-2019-170xx/CVE-2019-17082.json @@ -0,0 +1,78 @@ +{ + "id": "CVE-2019-17082", + "sourceIdentifier": "security@opentext.com", + "published": "2024-11-26T20:15:19.957", + "lastModified": "2024-11-26T20:15:19.957", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "Missing Authentication for Critical Function vulnerability in OpenText\u2122 AccuRev for LDAP Integration allows Authentication Bypass. The vulnerability could allow\u00a0\n\na valid AccuRev username to gain access to AccuRev source control without knowing the user\u2019s password.\n\nThis issue affects AccuRev for LDAP Integration: 2017.1." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "security@opentext.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:N/R:I/V:C/RE:M/U:Red", + "baseScore": 9.0, + "baseSeverity": "CRITICAL", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "attackRequirements": "NONE", + "privilegesRequired": "NONE", + "userInteraction": "PASSIVE", + "vulnerableSystemConfidentiality": "HIGH", + "vulnerableSystemIntegrity": "HIGH", + "vulnerableSystemAvailability": "HIGH", + "subsequentSystemConfidentiality": "HIGH", + "subsequentSystemIntegrity": "HIGH", + "subsequentSystemAvailability": "HIGH", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "PRESENT", + "automatable": "NO", + "recovery": "IRRECOVERABLE", + "valueDensity": "CONCENTRATED", + "vulnerabilityResponseEffort": "MODERATE", + "providerUrgency": "RED" + } + } + ] + }, + "weaknesses": [ + { + "source": "security@opentext.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-306" + } + ] + } + ], + "references": [ + { + "url": "https://support.microfocus.com/kb/kmdoc.php?id=KM03544106", + "source": "security@opentext.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2022/CVE-2022-26xx/CVE-2022-2666.json b/CVE-2022/CVE-2022-26xx/CVE-2022-2666.json index 51c090b46d2..bea8880e98c 100644 --- a/CVE-2022/CVE-2022-26xx/CVE-2022-2666.json +++ b/CVE-2022/CVE-2022-26xx/CVE-2022-2666.json @@ -2,7 +2,7 @@ "id": "CVE-2022-2666", "sourceIdentifier": "cna@vuldb.com", "published": "2023-01-07T22:15:09.020", - "lastModified": "2024-05-17T02:08:47.357", + "lastModified": "2024-11-26T20:29:57.070", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ @@ -18,44 +18,44 @@ "metrics": { "cvssMetricV31": [ { - "source": "nvd@nist.gov", - "type": "Primary", + "source": "cna@vuldb.com", + "type": "Secondary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 6.3, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", - "privilegesRequired": "NONE", + "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "HIGH", - "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" }, - "exploitabilityScore": 3.9, - "impactScore": 5.9 + "exploitabilityScore": 2.8, + "impactScore": 3.4 }, { - "source": "cna@vuldb.com", - "type": "Secondary", + "source": "nvd@nist.gov", + "type": "Primary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", - "privilegesRequired": "LOW", + "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "LOW", - "integrityImpact": "LOW", - "availabilityImpact": "LOW", - "baseScore": 6.3, - "baseSeverity": "MEDIUM" + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" }, - "exploitabilityScore": 2.8, - "impactScore": 3.4 + "exploitabilityScore": 3.9, + "impactScore": 5.9 } ], "cvssMetricV2": [ @@ -65,13 +65,13 @@ "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", + "baseScore": 6.5, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", - "availabilityImpact": "PARTIAL", - "baseScore": 6.5 + "availabilityImpact": "PARTIAL" }, "baseSeverity": "MEDIUM", "exploitabilityScore": 8.0, @@ -87,7 +87,7 @@ "weaknesses": [ { "source": "cna@vuldb.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -105,8 +105,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:1.0:*:*:*:*:*:*:*", - "matchCriteriaId": "A0FA1DFF-3E84-4E0A-A16B-9888A9104374" + "criteria": "cpe:2.3:a:razormist:loan_management_system:1.0:*:*:*:*:*:*:*", + "matchCriteriaId": "B340CFE4-DBA8-40EB-B73D-1A294A9BB502" } ] } @@ -139,6 +139,32 @@ "Third Party Advisory", "VDB Entry" ] + }, + { + "url": "https://github.com/cxaqhq/Loan-Management-System-Sqlinjection", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://vuldb.com/?ctiid.205618", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Permissions Required", + "Third Party Advisory", + "VDB Entry" + ] + }, + { + "url": "https://vuldb.com/?id.205618", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Permissions Required", + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2022/CVE-2022-26xx/CVE-2022-2667.json b/CVE-2022/CVE-2022-26xx/CVE-2022-2667.json index 716f82a8a80..916f9797a66 100644 --- a/CVE-2022/CVE-2022-26xx/CVE-2022-2667.json +++ b/CVE-2022/CVE-2022-26xx/CVE-2022-2667.json @@ -2,8 +2,8 @@ "id": "CVE-2022-2667", "sourceIdentifier": "cna@vuldb.com", "published": "2022-08-05T11:15:08.133", - "lastModified": "2022-08-11T18:53:51.300", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:29:57.070", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -18,51 +18,51 @@ "metrics": { "cvssMetricV31": [ { - "source": "nvd@nist.gov", - "type": "Primary", + "source": "cna@vuldb.com", + "type": "Secondary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 6.3, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "HIGH", - "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 8.8, - "baseSeverity": "HIGH" + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" }, "exploitabilityScore": 2.8, - "impactScore": 5.9 + "impactScore": 3.4 }, { - "source": "cna@vuldb.com", - "type": "Secondary", + "source": "nvd@nist.gov", + "type": "Primary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 8.8, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "LOW", - "integrityImpact": "LOW", - "availabilityImpact": "LOW", - "baseScore": 6.3, - "baseSeverity": "MEDIUM" + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.8, - "impactScore": 3.4 + "impactScore": 5.9 } ] }, "weaknesses": [ { "source": "cna@vuldb.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -80,8 +80,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:-:*:*:*:*:*:*:*", - "matchCriteriaId": "12AD2335-A639-47DB-9105-E23D568E1AEE" + "criteria": "cpe:2.3:a:razormist:loan_management_system:-:*:*:*:*:*:*:*", + "matchCriteriaId": "92E972A5-FF23-4871-8AAC-80011C20FA32" } ] } @@ -103,6 +103,21 @@ "tags": [ "Third Party Advisory" ] + }, + { + "url": "https://github.com/cxaqhq/Loan-Management-System-Sqlinjection", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://vuldb.com/?id.205619", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2022/CVE-2022-27xx/CVE-2022-2766.json b/CVE-2022/CVE-2022-27xx/CVE-2022-2766.json index 83787c3349f..3bd3296f28b 100644 --- a/CVE-2022/CVE-2022-27xx/CVE-2022-2766.json +++ b/CVE-2022/CVE-2022-27xx/CVE-2022-2766.json @@ -2,8 +2,8 @@ "id": "CVE-2022-2766", "sourceIdentifier": "cna@vuldb.com", "published": "2022-08-11T10:15:08.420", - "lastModified": "2022-08-15T18:51:12.880", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:29:57.070", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -18,51 +18,51 @@ "metrics": { "cvssMetricV31": [ { - "source": "nvd@nist.gov", - "type": "Primary", + "source": "cna@vuldb.com", + "type": "Secondary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 7.3, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "HIGH", - "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" }, "exploitabilityScore": 3.9, - "impactScore": 5.9 + "impactScore": 3.4 }, { - "source": "cna@vuldb.com", - "type": "Secondary", + "source": "nvd@nist.gov", + "type": "Primary", "cvssData": { "version": "3.1", - "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", - "confidentialityImpact": "LOW", - "integrityImpact": "LOW", - "availabilityImpact": "LOW", - "baseScore": 7.3, - "baseSeverity": "HIGH" + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, - "impactScore": 3.4 + "impactScore": 5.9 } ] }, "weaknesses": [ { "source": "cna@vuldb.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -80,8 +80,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:-:*:*:*:*:*:*:*", - "matchCriteriaId": "12AD2335-A639-47DB-9105-E23D568E1AEE" + "criteria": "cpe:2.3:a:razormist:loan_management_system:-:*:*:*:*:*:*:*", + "matchCriteriaId": "92E972A5-FF23-4871-8AAC-80011C20FA32" } ] } @@ -104,6 +104,22 @@ "Third Party Advisory", "VDB Entry" ] + }, + { + "url": "https://github.com/Drun1baby/CVE_Pentest/blob/main/Loan%20Management%20System%20CMS/images/sql01.png", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://vuldb.com/?id.206162", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2022/CVE-2022-371xx/CVE-2022-37138.json b/CVE-2022/CVE-2022-371xx/CVE-2022-37138.json index ce7ca484405..eab1067a82e 100644 --- a/CVE-2022/CVE-2022-371xx/CVE-2022-37138.json +++ b/CVE-2022/CVE-2022-371xx/CVE-2022-37138.json @@ -2,8 +2,8 @@ "id": "CVE-2022-37138", "sourceIdentifier": "cve@mitre.org", "published": "2022-09-14T11:15:50.313", - "lastModified": "2022-09-16T03:19:20.900", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:29:57.070", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -30,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 5.9 @@ -60,8 +60,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:1.0:*:*:*:*:*:*:*", - "matchCriteriaId": "A0FA1DFF-3E84-4E0A-A16B-9888A9104374" + "criteria": "cpe:2.3:a:razormist:loan_management_system:1.0:*:*:*:*:*:*:*", + "matchCriteriaId": "B340CFE4-DBA8-40EB-B73D-1A294A9BB502" } ] } @@ -83,6 +83,21 @@ "tags": [ "Third Party Advisory" ] + }, + { + "url": "https://github.com/saitamang/POC-DUMP/blob/main/Loan%20Management%20System/README.md", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://www.sourcecodester.com/php/15529/loan-management-system-oop-php-mysqlijquery-free-source-code.html", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2022/CVE-2022-371xx/CVE-2022-37139.json b/CVE-2022/CVE-2022-371xx/CVE-2022-37139.json index ee8565db5db..3ce4d06b425 100644 --- a/CVE-2022/CVE-2022-371xx/CVE-2022-37139.json +++ b/CVE-2022/CVE-2022-371xx/CVE-2022-37139.json @@ -2,8 +2,8 @@ "id": "CVE-2022-37139", "sourceIdentifier": "cve@mitre.org", "published": "2022-09-14T11:15:50.460", - "lastModified": "2022-09-16T03:19:39.907", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:29:57.070", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 5.4, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -30,9 +32,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 5.4, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.3, "impactScore": 2.7 @@ -60,8 +60,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:1.0:*:*:*:*:*:*:*", - "matchCriteriaId": "A0FA1DFF-3E84-4E0A-A16B-9888A9104374" + "criteria": "cpe:2.3:a:razormist:loan_management_system:1.0:*:*:*:*:*:*:*", + "matchCriteriaId": "B340CFE4-DBA8-40EB-B73D-1A294A9BB502" } ] } @@ -83,6 +83,21 @@ "tags": [ "Third Party Advisory" ] + }, + { + "url": "https://github.com/saitamang/POC-DUMP/blob/main/Loan%20Management%20System/README.md", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://www.sourcecodester.com/php/15529/loan-management-system-oop-php-mysqlijquery-free-source-code.html", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-272xx/CVE-2023-27242.json b/CVE-2023/CVE-2023-272xx/CVE-2023-27242.json index 52863a0ec5c..be0224703f0 100644 --- a/CVE-2023/CVE-2023-272xx/CVE-2023-27242.json +++ b/CVE-2023/CVE-2023-272xx/CVE-2023-27242.json @@ -2,8 +2,8 @@ "id": "CVE-2023-27242", "sourceIdentifier": "cve@mitre.org", "published": "2023-03-24T12:15:07.090", - "lastModified": "2023-03-29T07:33:48.873", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:29:57.070", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 5.4, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +28,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 5.4, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.3, "impactScore": 2.7 @@ -56,8 +56,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:1.0:*:*:*:*:*:*:*", - "matchCriteriaId": "A0FA1DFF-3E84-4E0A-A16B-9888A9104374" + "criteria": "cpe:2.3:a:razormist:loan_management_system:1.0:*:*:*:*:*:*:*", + "matchCriteriaId": "B340CFE4-DBA8-40EB-B73D-1A294A9BB502" } ] } @@ -80,6 +80,22 @@ "Exploit", "Third Party Advisory" ] + }, + { + "url": "https://github.com/kaikai-11/Loan-Management-System", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] + }, + { + "url": "https://github.com/kaikai-11/Loan-Management-System/blob/main/README.md", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-274xx/CVE-2023-27469.json b/CVE-2023/CVE-2023-274xx/CVE-2023-27469.json index 21a143ddd11..bd510fc5418 100644 --- a/CVE-2023/CVE-2023-274xx/CVE-2023-27469.json +++ b/CVE-2023/CVE-2023-274xx/CVE-2023-27469.json @@ -2,8 +2,8 @@ "id": "CVE-2023-27469", "sourceIdentifier": "cve@mitre.org", "published": "2023-06-30T20:15:09.360", - "lastModified": "2023-07-07T23:55:51.067", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T19:15:19.773", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", + "baseScore": 7.1, + "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +28,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 7.1, - "baseSeverity": "HIGH" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.8, "impactScore": 5.2 @@ -45,6 +45,16 @@ "value": "NVD-CWE-noinfo" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-59" + } + ] } ], "configurations": [ @@ -79,6 +89,20 @@ "tags": [ "Vendor Advisory" ] + }, + { + "url": "https://malwarebytes.com", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Product" + ] + }, + { + "url": "https://www.malwarebytes.com/secure/cves/cve-2023-27469", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Vendor Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-291xx/CVE-2023-29147.json b/CVE-2023/CVE-2023-291xx/CVE-2023-29147.json index 8760b1fc05a..b034841d8ec 100644 --- a/CVE-2023/CVE-2023-291xx/CVE-2023-29147.json +++ b/CVE-2023/CVE-2023-291xx/CVE-2023-29147.json @@ -2,8 +2,8 @@ "id": "CVE-2023-29147", "sourceIdentifier": "cve@mitre.org", "published": "2023-06-30T21:15:08.920", - "lastModified": "2023-07-10T14:06:20.730", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:15:20.657", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", + "baseScore": 5.5, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +28,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", - "availabilityImpact": "NONE", - "baseScore": 5.5, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 1.8, "impactScore": 3.6 @@ -45,6 +45,16 @@ "value": "NVD-CWE-Other" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-290" + } + ] } ], "configurations": [ @@ -85,6 +95,20 @@ "tags": [ "Vendor Advisory" ] + }, + { + "url": "https://malwarebytes.com", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Product" + ] + }, + { + "url": "https://www.malwarebytes.com/secure/cves/cve-2023-29147", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Vendor Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-313xx/CVE-2023-31355.json b/CVE-2023/CVE-2023-313xx/CVE-2023-31355.json index e0c5151dd4a..0ec14a0b72a 100644 --- a/CVE-2023/CVE-2023-313xx/CVE-2023-31355.json +++ b/CVE-2023/CVE-2023-313xx/CVE-2023-31355.json @@ -2,8 +2,8 @@ "id": "CVE-2023-31355", "sourceIdentifier": "psirt@amd.com", "published": "2024-08-05T16:15:34.510", - "lastModified": "2024-08-06T16:30:24.547", - "vulnStatus": "Awaiting Analysis", + "lastModified": "2024-11-26T19:10:21.797", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", + "baseScore": 6.0, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -30,9 +32,27 @@ "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", - "availabilityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.5, + "impactScore": 4.0 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N", "baseScore": 6.0, - "baseSeverity": "MEDIUM" + "baseSeverity": "MEDIUM", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" }, "exploitabilityScore": 1.5, "impactScore": 4.0 @@ -49,12 +69,2435 @@ "value": "CWE-119" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-787" + } + ] } ], - "references": [ + "configurations": [ { - "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", - "source": "psirt@amd.com" + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3B590923-B6F9-48A2-9BA8-833E22DE2E43" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F44C8195-1621-4327-BBFA-8AFA36BED7AA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C1BED240-E334-4A8F-9070-D57D54B0ED2A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4A50B483-D20C-4BD4-94FA-01B8C9A904D5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "84E4A21E-DC60-4ABB-94AD-BDC785717A96" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7F98FF1A-3A2B-4CED-AEA2-9C4F2AC2D8C1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3C1D50EA-07CA-43E0-90A2-6AFE444A5381" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EE26D1A9-79F1-48B0-854F-84421A261E5C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "EDEAA93E-431A-4476-B431-5983296CCAAD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "88ACBFE2-C462-454E-9481-34BDF42237C8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "ED357082-5FDA-4E76-9903-ACE49D241195" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B02B61B7-7DD3-4164-8D32-EB961E981BC9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "68733A3D-95A9-45A7-B2D4-AD32439DAB08" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9000686A-DC2B-4561-9C32-E90890EB2EBA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "218E19EA-5493-475D-A51E-771BB281D5C2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71B9C24B-2C10-4826-A91B-E1C60665FBBE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "85514025-4FC5-4C5B-B6A6-7AC020E192F6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "678C5F58-8AE9-46FF-8F01-4CF394C87A2C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B5710382-A1D0-4E21-AC47-6F14CBE28329" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "180B3002-B3C5-48B5-8322-5B64B237C5B9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "E47E9840-6143-4355-BFB0-B402FDF16617" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D1766FF1-77A9-4293-B826-F6A8FBD7AFBF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "739AF0E3-62A6-43D0-8ECD-CF7720624613" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C474537-3006-41BA-8C3D-5C370E3ACECD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "AC0E511C-CC66-43BE-A907-027828C75403" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8E2B13CA-72F4-4CF6-9E12-62E6E9056A14" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5687A37A-3E72-4972-8F1A-A8266DE6A4A3" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "02D08121-DC57-47D7-8214-23A209F0AF08" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C462E4FF-2285-46E1-927B-C8FFB018BF35" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*", + "matchCriteriaId": "241E39FF-FE66-444C-A4C2-3D28C45341BE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "44C45AEA-6436-4012-9A0D-C591A64444A9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7473x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D07E922F-C1AB-469C-A1C1-9F9E58332DFC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "4FDB30FD-24BF-4597-97B5-7A3732673DD1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F8264DF4-47B4-4716-AE89-44AFA870D385" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "27A4A53B-F26C-44DF-BABB-C17357A7B549" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "52544912-FAA3-4025-A5FD-151B21CEC53B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F405F5CD-1255-4FD9-902C-45EF0D5C657A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "77A0A47B-74A1-4731-92A8-BC10FFE58ECF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D65F2DB9-51C0-40CA-B5C9-A85CF43A593D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EBF0AFED-588A-4EFB-8C90-9280BC3A6720" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "2432608F-0E9E-49D5-9A22-2A2A6E89489F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "237FB33B-BF08-4E3E-8E83-EB0AD2F12A4B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D9403D7F-0349-4CC8-B566-5054E4A96D83" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "98E1D79D-0CB0-4FD9-8A82-27CDFBFE07B2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F512316F-131F-4EAD-A7FA-CFE172AD4FA5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D02B1C69-BAA4-485B-BE22-46BE321F9E4E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B9DF39DE-83FC-4DD2-812A-F2D50AA85ADF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F05F9B7A-9777-461E-B88E-96592F87A49E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5DC68072-5AEA-4768-9CDB-57303996CA17" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A7DFCB62-6CDF-4AD2-9265-1887E5780CA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "8F396A75-7B5E-4544-92B9-7D4EFCD375B9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B7B5F0D8-2659-494C-8FB9-50A797CE0CA9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "FED2F309-48ED-4556-B562-3F01D7FB4141" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4D698D3E-BB05-4C65-90F4-8DAE275CD6A4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B79FF23A-6660-4513-A633-535B7543C8C9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2299ED50-B4D2-4BB3-AD87-56D552B84AE1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "7D6FFB29-9DFD-44FE-8AB5-32D8F765164F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F900BDD-F094-41A6-9A23-31F53DBA95D4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "482B19D4-3695-45A2-9CC7-1C0962414117" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "364B9EAB-E113-4370-ACDC-92BFD54BEF88" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A8ACBF4D-E173-477F-8E7C-33DA3C034AF0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "29BACF50-D9DB-4207-BF61-CACDCC3870E9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "486F652A-8DDA-4C01-B2DB-A4F981F56016" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B24580CA-3A31-4775-AD72-DF1DB6CB84C2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C5C40AD4-5F07-4F57-89DE-A0658464E4A1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E828D3FB-9EF3-40C4-B338-7BCF73C6EF37" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2602C520-8244-4BAA-A483-BC31A5305942" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "15981CBF-CB09-416E-AB31-54D650182EBD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B5088B73-27FC-4AA8-AB57-21EC0E0E7425" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DF4C36B4-CC5F-4A66-9294-71E0531E80F5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2CD662D4-8D44-42FE-971C-C501574F6744" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F4886768-DAFF-481E-894F-F8E816B36EB3" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B3AD7201-E73D-48FE-87F1-B62715700A70" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "46C7CC4B-3EC8-42D7-9AE9-F887D4DDF046" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BAEB0D25-E423-45EF-9E52-57DA7E594429" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A9241D42-1771-4528-8436-EE3FDE20C042" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "648F291B-0CE4-4D1D-8A5F-7DF66703C3B8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "5323D02F-E25A-460D-8DA1-F8C72E635E53" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "7E1BBA30-F9D1-4AD9-BAF7-F4D40D356C15" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9AF46284-ED2F-45F9-A4E8-221593FB7F49" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "43DCB063-0676-4615-93FC-64D98ACAAD57" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DEABF567-1E41-4FD2-876E-7D2689A01D51" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9734_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "492476F9-F8E1-47AB-AAF7-67AADA160678" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9734:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DE0954B5-9B6E-4C0E-905B-1E4B3FD50B04" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754s_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A89F3343-7DAC-4662-987E-7629610D3C32" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754s:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E74F229A-FDBD-4C3D-BE0B-9193E6E560ED" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "714CC372-0E0D-4075-94CD-4723BE694D2D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4EF0ED85-2FCF-4DCB-9C7F-0B5EC5EC574C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9184x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "CB2C6A30-90B5-4E74-A4CA-C69FCB4E1E99" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9184x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C3085B2-AFDA-4C34-A2B6-40D599F7E907" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9384x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B07058C5-3EDC-4615-B447-2438C534B0E0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9384x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E6DC6F07-2E27-48C3-BD60-81496C2D3C62" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9684x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E71A9FF8-E8A4-40C4-8DB1-D28AE4136988" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9684x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71A34603-6EB8-4D75-9391-8ADC35EA5EFE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "489653B2-F305-46B6-A4D6-DFE5DCC855C8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2761489D-AABE-4ADD-AE5B-B26C4424F18A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9174f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "47A571CB-8C43-4AFB-8115-29FDED7C5EEA" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9174f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D7811418-4B63-4CCA-B81F-379FF0277673" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9224_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6FF3AE7A-A653-444F-9CAF-DEF8C3F25F36" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9224:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B085546F-4791-4096-A019-738A37353165" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BD8E48F9-DEF9-43D4-8643-C1CC4D2EB3D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AFDF951D-9B67-49CE-AD4A-B1052A484E65" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9274f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E40AC063-BC83-49B5-81E9-56835D0B72D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9274f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "54EE0A4A-AA13-49CE-8825-407AD6B16B13" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9334_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "8A154914-D1C7-4549-815D-F1F693EE2B8F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9334:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6B1047C6-4627-4520-AFF7-5A0A623336F9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "79F0A749-9F6F-4D92-81A6-48C30F59A0EB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7A152B84-4935-4517-BD9D-37471C281BDA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F7A0D8BC-00E2-48EA-8F2D-C23968326032" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EF0F7101-1B8B-454B-879F-8635CB16D5C7" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9374f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "67A78FCF-5F78-41C5-B5D4-32815B76288E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9374f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "14BA8C50-B57A-4F6D-860B-790BD39249B0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6D51EFBB-2509-47C2-BA48-0FE151B993D0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F7FDDC36-A96D-419F-A4B5-8AEF9D5FEBE5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F9DF0D18-EC29-4E7F-8970-9D0355D0EDD5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "932E47BF-3831-4D72-9F26-89CA591692B8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9474f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A172EB43-4526-4A3E-881D-0B6CC72EEA34" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9474f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A1520823-129F-4F48-932B-1CA77D3446CC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "429B298B-C825-43F0-86CF-30385D4C56CD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E8FC239C-6B12-4F7C-A725-9D66AD39F7F6" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C4179752-A4AC-45DA-8A40-89217197D323" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A95FCDE4-82EF-4C54-A85D-960B36A46DD0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "4EFA7374-ED9E-4B25-B600-C34F02AFFCF9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A2BD9C75-AA02-47C1-94C7-BA5187B8CDF0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9634_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BCF05F1E-CF13-47BF-B7D7-2FD13E2A4E46" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9634:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C6C0B65-0C8C-4BCE-9B40-39B2EB5E5EA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "0AC9DE15-B2E8-4D9E-BC6D-1007C083D0B7" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "84209250-5078-4E8E-8532-98F652C12D79" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "ADE721FF-4323-4C32-91D6-AC085779E411" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "C150CC54-2F64-48E7-B996-F06247114BC4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "1F46B6E3-779A-48D3-9D66-9CC19B1C5060" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E5FCA13D-409D-4E0B-9CB1-72C6F255C145" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "849D773E-AB8F-4044-B791-C886662D8BBF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "375FC62D-D5B4-4698-A9E8-0AF00FEBBDE4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "2C34A942-5EA7-4CEA-A7CA-C0ADBCC65046" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2A4B2FBA-2F9E-44CF-A75A-9BCB30964153" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "30A546D8-3E31-4D4C-BAAC-607EAC46A4CC" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A273285D-0615-479C-BE60-D2A73532B39A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "D56DA98D-95C5-49E5-9174-DAE1ACEF706F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "92BF19E2-C264-48C3-BB38-A23C7DD67BB8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "E8379370-5081-4FB3-890C-2BF2D602095A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "93995EDA-88C5-41AE-8A56-08728027F2AF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "DF60A69F-21ED-441C-823C-291026E00715" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F04B63D-AF86-466A-B74D-B1C9B2682DCC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "552AAF13-377F-4A95-A580-7D906C6CB6A2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "0A737AAD-AA75-41F7-B6A6-1B17D984CED5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "FFE3AC64-538A-4E18-85CF-063F984D735E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "81287880-A2F0-4260-AA49-489DC2475118" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "6C559424-D75D-440E-8F92-C1AD1B66421B" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "07B6488C-8707-40B8-A867-87DDDE1B5625" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "7525E902-27DA-4A53-A018-53AF96AA73DB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6C8820F4-879C-4B9A-B10C-756DC6F35317" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "68E124D1-686C-416C-B9DD-B6380C355D92" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "FB7E7CEC-B263-4020-90E6-C0B77D8036D9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "E78BCF22-DC43-4A07-971B-CA6A76B23EEF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7CE47EE2-06B8-434F-BEC4-D2EB5B79AFB5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "C7F6F068-1F61-4EBB-A465-381D4EA696EF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "26C81497-519E-46A2-9F64-E80C82920E40" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "04591375-2E1D-4DBC-8C9B-2E4D4435F8ED" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "CFBD9E1E-437B-44E7-B148-88513DA7D50A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "57BE0E04-FC43-4437-B35F-F94DC8CC9EA6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A68F57A9-15AB-459C-8ACC-0BE565D230FD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "36D36B6C-DC77-4E12-AF09-180ACB86551A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8F6DCA27-D098-40B7-9778-B284044CA34B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "BE6BAF58-5538-43A9-A5A9-9C1CD420F6E2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9737ACC0-18DB-4061-A259-D32C16BDA238" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "A0B68719-100F-402A-B409-DDE9811B2359" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AE1C35D8-0C2A-4A63-9D1B-0983E0FDB7E1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "4CD6C041-14A7-459B-A3C9-1A6AB55F6006" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "30C72561-B0CE-4E51-AC5F-CD7EFDBCC5EE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "B3BAFE92-C577-4558-AE15-F3E6524701A4" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F27175DE-83A5-42DB-8F8A-886B1D886277" + } + ] + } + ] + } + ], + "references": [ + { + "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", + "source": "psirt@amd.com", + "tags": [ + "Broken Link" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-319xx/CVE-2023-31997.json b/CVE-2023/CVE-2023-319xx/CVE-2023-31997.json index fb690cc4c06..ff7212f18e2 100644 --- a/CVE-2023/CVE-2023-319xx/CVE-2023-31997.json +++ b/CVE-2023/CVE-2023-319xx/CVE-2023-31997.json @@ -2,8 +2,8 @@ "id": "CVE-2023-31997", "sourceIdentifier": "support@hackerone.com", "published": "2023-07-01T00:15:10.337", - "lastModified": "2023-07-11T16:19:54.627", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T19:15:20.320", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H", + "baseScore": 9.0, + "baseSeverity": "CRITICAL", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +28,7 @@ "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.0, - "baseSeverity": "CRITICAL" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.3, "impactScore": 6.0 @@ -45,6 +45,16 @@ "value": "NVD-CWE-noinfo" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-863" + } + ] } ], "configurations": [ @@ -88,6 +98,13 @@ "tags": [ "Issue Tracking" ] + }, + { + "url": "https://community.ui.com/releases/Security-Advisory-Bulletin-032-032/e57301f4-4f5e-4d9f-90bc-71f1923ed7a4", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Issue Tracking" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-334xx/CVE-2023-33466.json b/CVE-2023/CVE-2023-334xx/CVE-2023-33466.json index d7d725f591d..1f993ea5c1e 100644 --- a/CVE-2023/CVE-2023-334xx/CVE-2023-33466.json +++ b/CVE-2023/CVE-2023-334xx/CVE-2023-33466.json @@ -2,7 +2,7 @@ "id": "CVE-2023-33466", "sourceIdentifier": "cve@mitre.org", "published": "2023-06-29T15:15:09.483", - "lastModified": "2023-09-12T11:15:07.650", + "lastModified": "2024-11-26T19:15:20.670", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 8.8, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -30,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 8.8, - "baseSeverity": "HIGH" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.8, "impactScore": 5.9 @@ -49,6 +49,16 @@ "value": "NVD-CWE-noinfo" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-94" + } + ] } ], "configurations": [ @@ -85,6 +95,22 @@ { "url": "https://www.debian.org/security/2023/dsa-5473", "source": "cve@mitre.org" + }, + { + "url": "https://discourse.orthanc-server.org/t/security-advisory-for-orthanc-deployments-running-versions-before-1-12-0/3568", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Issue Tracking", + "Vendor Advisory" + ] + }, + { + "url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00009.html", + "source": "af854a3a-2127-422b-91ae-364da2661108" + }, + { + "url": "https://www.debian.org/security/2023/dsa-5473", + "source": "af854a3a-2127-422b-91ae-364da2661108" } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-364xx/CVE-2023-36487.json b/CVE-2023/CVE-2023-364xx/CVE-2023-36487.json index 255fb348419..168c180d9de 100644 --- a/CVE-2023/CVE-2023-364xx/CVE-2023-36487.json +++ b/CVE-2023/CVE-2023-364xx/CVE-2023-36487.json @@ -2,8 +2,8 @@ "id": "CVE-2023-36487", "sourceIdentifier": "cve@mitre.org", "published": "2023-06-29T17:15:09.813", - "lastModified": "2023-07-06T19:43:16.007", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:15:22.007", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -26,9 +28,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 5.9 @@ -45,6 +45,16 @@ "value": "NVD-CWE-noinfo" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-640" + } + ] } ], "configurations": [ @@ -87,6 +97,20 @@ "tags": [ "Release Notes" ] + }, + { + "url": "https://docu.ilias.de/ilias.php?ref_id=1719&obj_id=141694&obj_type=PageObject&cmd=layout&cmdClass=illmpresentationgui&cmdNode=13g&baseClass=ilLMPresentationGUI", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Release Notes" + ] + }, + { + "url": "https://docu.ilias.de/ilias.php?ref_id=1719&obj_id=141703&obj_type=PageObject&cmd=layout&cmdClass=illmpresentationgui&cmdNode=13g&baseClass=ilLMPresentationGUI", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Release Notes" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-372xx/CVE-2023-37256.json b/CVE-2023/CVE-2023-372xx/CVE-2023-37256.json index a59dfe40a7b..8297a7fd107 100644 --- a/CVE-2023/CVE-2023-372xx/CVE-2023-37256.json +++ b/CVE-2023/CVE-2023-372xx/CVE-2023-37256.json @@ -2,8 +2,8 @@ "id": "CVE-2023-37256", "sourceIdentifier": "cve@mitre.org", "published": "2023-06-29T16:15:10.087", - "lastModified": "2023-07-06T18:44:48.213", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T20:15:22.663", + "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { @@ -19,6 +19,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 6.1, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -26,9 +28,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 6.1, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.7 @@ -45,6 +45,16 @@ "value": "CWE-79" } ] + }, + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] } ], "configurations": [ @@ -73,6 +83,14 @@ "Exploit", "Issue Tracking" ] + }, + { + "url": "https://phabricator.wikimedia.org/T331311", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Exploit", + "Issue Tracking" + ] } ] } \ No newline at end of file diff --git a/CVE-2023/CVE-2023-72xx/CVE-2023-7299.json b/CVE-2023/CVE-2023-72xx/CVE-2023-7299.json index 46b94a6ba69..5a15dce7103 100644 --- a/CVE-2023/CVE-2023-72xx/CVE-2023-7299.json +++ b/CVE-2023/CVE-2023-72xx/CVE-2023-7299.json @@ -2,12 +2,17 @@ "id": "CVE-2023-7299", "sourceIdentifier": "cna@vuldb.com", "published": "2024-11-23T13:15:04.547", - "lastModified": "2024-11-23T13:15:04.547", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:12:43.750", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "A vulnerability was found in DataGear up to 4.60. It has been declared as critical. This vulnerability affects unknown code of the file /dataSet/resolveSql. The manipulation of the argument sql leads to sql injection. The attack can be initiated remotely. Upgrading to version 4.7.0 is able to address this issue. It is recommended to upgrade the affected component." + }, + { + "lang": "es", + "value": "Se ha detectado una vulnerabilidad en DataGear hasta la versi\u00f3n 4.60. Se ha declarado como cr\u00edtica. Esta vulnerabilidad afecta al c\u00f3digo desconocido del archivo /dataSet/resolveSql. La manipulaci\u00f3n del argumento sql provoca una inyecci\u00f3n SQL. El ataque puede iniciarse de forma remota. La actualizaci\u00f3n a la versi\u00f3n 4.7.0 puede solucionar este problema. Se recomienda actualizar el componente afectado." } ], "metrics": { @@ -75,6 +80,26 @@ }, "exploitabilityScore": 2.8, "impactScore": 3.4 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 3.9, + "impactScore": 5.9 } ], "cvssMetricV2": [ @@ -106,7 +131,7 @@ "weaknesses": [ { "source": "cna@vuldb.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -117,24 +142,64 @@ "value": "CWE-89" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-89" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:datagear:datagear:*:*:*:*:*:*:*:*", + "versionEndExcluding": "4.7.0", + "matchCriteriaId": "3E21B63E-035C-4D02-AF6A-0093D5407D1B" + } + ] + } + ] } ], "references": [ { "url": "https://github.com/datageartech/datagear/issues/29", - "source": "cna@vuldb.com" + "source": "cna@vuldb.com", + "tags": [ + "Exploit" + ] }, { "url": "https://vuldb.com/?ctiid.285658", - "source": "cna@vuldb.com" + "source": "cna@vuldb.com", + "tags": [ + "Permissions Required" + ] }, { "url": "https://vuldb.com/?id.285658", - "source": "cna@vuldb.com" + "source": "cna@vuldb.com", + "tags": [ + "Third Party Advisory" + ] }, { "url": "https://vuldb.com/?submit.442943", - "source": "cna@vuldb.com" + "source": "cna@vuldb.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-102xx/CVE-2024-10240.json b/CVE-2024/CVE-2024-102xx/CVE-2024-10240.json new file mode 100644 index 00000000000..6da420ee6d9 --- /dev/null +++ b/CVE-2024/CVE-2024-102xx/CVE-2024-10240.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-10240", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T20:15:24.487", + "lastModified": "2024-11-26T20:15:24.487", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7, all versions starting from 17.4 before 17.4.4, all versions starting from 17.5 before 17.5.2 in which an unauthenticated user may be able to read some information about an MR in a private project, under certain circumstances." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", + "baseScore": 5.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 3.9, + "impactScore": 1.4 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-497" + } + ] + } + ], + "references": [ + { + "url": "https://about.gitlab.com/releases/2024/11/13/patch-release-gitlab-17-5-2-released/#information-disclosure-through-an-api-endpoint", + "source": "cve@gitlab.com" + }, + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/493188", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-103xx/CVE-2024-10365.json b/CVE-2024/CVE-2024-103xx/CVE-2024-10365.json index e04cf7dbbc7..fae3a565b2f 100644 --- a/CVE-2024/CVE-2024-103xx/CVE-2024-10365.json +++ b/CVE-2024/CVE-2024-103xx/CVE-2024-10365.json @@ -2,13 +2,17 @@ "id": "CVE-2024-10365", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-20T07:15:06.870", - "lastModified": "2024-11-20T07:15:06.870", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:36:08.280", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": "The The Plus Addons for Elementor \u2013 Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.0.3 via the render function in modules/widgets/tp_carousel_anything.php, modules/widgets/tp_page_scroll.php, and other widgets. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive private, pending, and draft template data." + }, + { + "lang": "es", + "value": "El complemento The Plus Addons for Elementor \u2013 Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce para WordPress es vulnerable a la exposici\u00f3n de informaci\u00f3n confidencial en todas las versiones hasta la 6.0.3 incluida a trav\u00e9s de la funci\u00f3n de renderizado en modules/widgets/tp_carousel_anything.php, modules/widgets/tp_page_scroll.php y otros widgets. Esto permite que atacantes autenticados, con acceso de nivel de colaborador y superior, extraigan datos confidenciales privados, pendientes y de borrador de plantillas." } ], "metrics": { @@ -19,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", - "availabilityImpact": "NONE", - "baseScore": 4.3, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 1.4 @@ -38,23 +42,57 @@ "weaknesses": [ { "source": "security@wordfence.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-200" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "NVD-CWE-noinfo" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:posimyth:the_plus_addons_for_elementor:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "6.0.4", + "matchCriteriaId": "8558DE4E-43B8-4301-BBE5-5E6AA053B70D" + } + ] + } + ] } ], "references": [ { "url": "https://plugins.trac.wordpress.org/changeset/3186482/the-plus-addons-for-elementor-page-builder", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Patch" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f7ce1d19-25fa-434d-943b-d10c5cb2ec51?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-108xx/CVE-2024-10855.json b/CVE-2024/CVE-2024-108xx/CVE-2024-10855.json index 1af07889475..6fec877114e 100644 --- a/CVE-2024/CVE-2024-108xx/CVE-2024-10855.json +++ b/CVE-2024/CVE-2024-108xx/CVE-2024-10855.json @@ -2,13 +2,17 @@ "id": "CVE-2024-10855", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-20T07:15:07.853", - "lastModified": "2024-11-20T07:15:07.853", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:34:02.857", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": "The Image Optimizer, Resizer and CDN \u2013 Sirv plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to insufficient validation on the filename parameter of the sirv_upload_file_by_chunks() function and lack of in all versions up to, and including, 7.3.0. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary option values on the WordPress site. This can be leveraged to delete an option that would create an error on the site and deny service to legitimate users." + }, + { + "lang": "es", + "value": "El complemento Image Optimizer, Resizer and CDN \u2013 Sirv para WordPress es vulnerable a modificaciones no autorizadas de datos que pueden provocar una denegaci\u00f3n de servicio debido a una validaci\u00f3n insuficiente en el par\u00e1metro de nombre de archivo de la funci\u00f3n sirv_upload_file_by_chunks() y la falta de validaci\u00f3n en todas las versiones hasta la 7.3.0 incluida. Esto permite que atacantes autenticados, con acceso de nivel de colaborador y superior, eliminen valores de opciones arbitrarios en el sitio de WordPress. Esto se puede aprovechar para eliminar una opci\u00f3n que crear\u00eda un error en el sitio y denegar\u00eda el servicio a usuarios leg\u00edtimos." } ], "metrics": { @@ -19,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H", + "baseScore": 8.1, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -26,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 8.1, - "baseSeverity": "HIGH" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 2.8, "impactScore": 5.2 @@ -47,18 +51,45 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:sirv:sirv:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "7.3.1", + "matchCriteriaId": "EDA89393-9CD3-41E9-8094-C9F97224AFC3" + } + ] + } + ] + } + ], "references": [ { "url": "https://plugins.trac.wordpress.org/browser/sirv/tags/7.2.8/sirv.php#L4691", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Patch" + ] }, { "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3186406%40sirv&new=3186406%40sirv&sfp_email=&sfph_mail=", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Product" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d6ec09e5-4994-4d23-bf8e-26b64d5303fa?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-108xx/CVE-2024-10898.json b/CVE-2024/CVE-2024-108xx/CVE-2024-10898.json new file mode 100644 index 00000000000..43c41396f08 --- /dev/null +++ b/CVE-2024/CVE-2024-108xx/CVE-2024-10898.json @@ -0,0 +1,108 @@ +{ + "id": "CVE-2024-10898", + "sourceIdentifier": "security@wordfence.com", + "published": "2024-11-21T11:15:23.610", + "lastModified": "2024-11-26T20:32:20.217", + "vulnStatus": "Analyzed", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "The Contact Form 7 Email Add on plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.9 via the cf7_email_add_on_add_admin_template() function. This makes it possible for authenticated attackers, with Contributor-level access and above, to include and execute arbitrary PHP files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where php files can be uploaded and included." + }, + { + "lang": "es", + "value": "El complemento Contact Form 7 Email Add para WordPress es vulnerable a la inclusi\u00f3n de archivos locales en todas las versiones hasta la 1.9 incluida, a trav\u00e9s de la funci\u00f3n cf7_email_add_on_add_admin_template(). Esto permite que atacantes autenticados, con acceso de nivel de colaborador o superior, incluyan y ejecuten archivos PHP arbitrarios en el servidor, lo que permite la ejecuci\u00f3n de cualquier c\u00f3digo PHP en esos archivos. Esto se puede utilizar para eludir los controles de acceso, obtener datos confidenciales o lograr la ejecuci\u00f3n de c\u00f3digo en casos en los que se puedan cargar e incluir archivos PHP." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 8.8, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 2.8, + "impactScore": 5.9 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 8.8, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 2.8, + "impactScore": 5.9 + } + ] + }, + "weaknesses": [ + { + "source": "security@wordfence.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-98" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:krishaweb:contact_form_7_email_add_on:*:*:*:*:*:wordpress:*:*", + "versionEndIncluding": "1.9", + "matchCriteriaId": "4C02D5CB-52E8-4F07-A0A8-D55D844CB5E3" + } + ] + } + ] + } + ], + "references": [ + { + "url": "https://plugins.trac.wordpress.org/browser/cf7-email-add-on/trunk/include/class-cf7-email.php#L110", + "source": "security@wordfence.com", + "tags": [ + "Product" + ] + }, + { + "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d82efaa3-ea61-476c-ad1a-60585450c63a?source=cve", + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-111xx/CVE-2024-11145.json b/CVE-2024/CVE-2024-111xx/CVE-2024-11145.json new file mode 100644 index 00000000000..97f9965af2f --- /dev/null +++ b/CVE-2024/CVE-2024-111xx/CVE-2024-11145.json @@ -0,0 +1,104 @@ +{ + "id": "CVE-2024-11145", + "sourceIdentifier": "9119a7d8-5eab-497f-8521-727c672e3725", + "published": "2024-11-26T20:15:25.270", + "lastModified": "2024-11-26T20:15:25.270", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "Valor Apps Easy Folder Listing Pro has a deserialization vulnerability that allows an unauthenticated, remote attacker to execute arbitrary code with the privileges of the Joomla! application. Fixed in versions 3.8 and 4.5." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "9119a7d8-5eab-497f-8521-727c672e3725", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 9.3, + "baseSeverity": "CRITICAL", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "HIGH", + "vulnerableSystemIntegrity": "HIGH", + "vulnerableSystemAvailability": "HIGH", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "9119a7d8-5eab-497f-8521-727c672e3725", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 3.9, + "impactScore": 5.9 + } + ] + }, + "weaknesses": [ + { + "source": "9119a7d8-5eab-497f-8521-727c672e3725", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-502" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/cisagov/CSAF/blob/develop/csaf_files/IT/white/2024/va-24-331-01.json", + "source": "9119a7d8-5eab-497f-8521-727c672e3725" + }, + { + "url": "https://www.valorapps.com/web-products/easy-folder-listing-pro.html", + "source": "9119a7d8-5eab-497f-8521-727c672e3725" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-112xx/CVE-2024-11234.json b/CVE-2024/CVE-2024-112xx/CVE-2024-11234.json index 6b73f8b9294..733f3c892e3 100644 --- a/CVE-2024/CVE-2024-112xx/CVE-2024-11234.json +++ b/CVE-2024/CVE-2024-112xx/CVE-2024-11234.json @@ -2,12 +2,17 @@ "id": "CVE-2024-11234", "sourceIdentifier": "security@php.net", "published": "2024-11-24T01:15:03.987", - "lastModified": "2024-11-24T01:15:03.987", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:06:10.243", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, when using streams with configured proxy and \"request_fulluri\" option, the URI is not properly sanitized which can lead to HTTP request smuggling and allow the attacker to use the proxy to perform arbitrary HTTP requests originating from the server, thus potentially gaining access to resources not normally available to the external user." + }, + { + "lang": "es", + "value": "En las versiones de PHP 8.1.* anteriores a 8.1.31, 8.2.* anteriores a 8.2.26, 8.3.* anteriores a 8.3.14, cuando se utilizan flujos con proxy configurado y la opci\u00f3n \"request_fulluri\", la URI no se desinfecta correctamente, lo que puede provocar contrabando de solicitudes HTTP y permitir que el atacante use el proxy para realizar solicitudes HTTP arbitrarias que se originan en el servidor, obteniendo as\u00ed potencialmente acceso a recursos que normalmente no est\u00e1n disponibles para el usuario externo." } ], "metrics": { @@ -31,6 +36,26 @@ }, "exploitabilityScore": 2.2, "impactScore": 2.5 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N", + "baseScore": 7.2, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 3.9, + "impactScore": 2.7 } ] }, @@ -44,12 +69,59 @@ "value": "CWE-20" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-74" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "versionStartIncluding": "8.1.0", + "versionEndExcluding": "8.1.31", + "matchCriteriaId": "CE6E1B68-3EB9-4C67-97A6-226EA02CC2EA" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "versionStartIncluding": "8.2.0", + "versionEndExcluding": "8.2.26", + "matchCriteriaId": "C160D91A-CF97-4DD1-A34F-8B8C852B3CEC" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*", + "versionStartIncluding": "8.3.0", + "versionEndExcluding": "8.3.14", + "matchCriteriaId": "35B1BA7F-0EAE-4F40-ACA4-EBC5D63F609A" + } + ] + } + ] } ], "references": [ { "url": "https://github.com/php/php-src/security/advisories/GHSA-c5f2-jwm7-mmq2", - "source": "security@php.net" + "source": "security@php.net", + "tags": [ + "Exploit", + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-112xx/CVE-2024-11277.json b/CVE-2024/CVE-2024-112xx/CVE-2024-11277.json index ae3f2734636..e6668bb9a45 100644 --- a/CVE-2024/CVE-2024-112xx/CVE-2024-11277.json +++ b/CVE-2024/CVE-2024-112xx/CVE-2024-11277.json @@ -2,13 +2,17 @@ "id": "CVE-2024-11277", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-20T07:15:09.117", - "lastModified": "2024-11-20T07:15:09.117", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:59:50.643", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": "The 404 Solution plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via URLs in all versions up to, and including, 2.35.19 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link." + }, + { + "lang": "es", + "value": "El complemento 404 Solution para WordPress es vulnerable a Cross-Site Scripting reflejado a trav\u00e9s de URL en todas las versiones hasta la 2.35.19 incluida, debido a una desinfecci\u00f3n de entrada y un escape de salida insuficientes. Esto permite que atacantes no autenticados inyecten secuencias de comandos web arbitrarias en p\u00e1ginas que se ejecutan si logran enga\u00f1ar a un usuario para que realice una acci\u00f3n, como hacer clic en un enlace." } ], "metrics": { @@ -19,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 6.1, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -26,9 +32,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 6.1, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.7 @@ -47,14 +51,38 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ajexperience:404_solution:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "2.35.20", + "matchCriteriaId": "4B7E3D17-F874-4DF6-BDFD-27527E264F8D" + } + ] + } + ] + } + ], "references": [ { "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3191597%40404-solution&new=3191597%40404-solution&sfp_email=&sfph_mail=", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Patch" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/259f9ea3-ac24-4bea-8d0d-c635a68d9c98?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11668.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11668.json new file mode 100644 index 00000000000..b30070240de --- /dev/null +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11668.json @@ -0,0 +1,56 @@ +{ + "id": "CVE-2024-11668", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:22.027", + "lastModified": "2024-11-26T19:15:22.027", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab CE/EE affecting all versions from 16.11 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. Long-lived connections could potentially bypass authentication controls, allowing unauthorized access to streaming results." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N", + "baseScore": 4.2, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.6, + "impactScore": 2.5 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-613" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/456922", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11669.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11669.json new file mode 100644 index 00000000000..7c31239e2d4 --- /dev/null +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11669.json @@ -0,0 +1,56 @@ +{ + "id": "CVE-2024-11669", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:22.367", + "lastModified": "2024-11-26T19:15:22.367", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in GitLab CE/EE affecting all versions from 16.9.8 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. Certain API endpoints could potentially allow unauthorized access to sensitive data due to overly broad application of token scopes." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.2, + "impactScore": 5.2 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-863" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/501528", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-116xx/CVE-2024-11691.json b/CVE-2024/CVE-2024-116xx/CVE-2024-11691.json index 1a1f2922d2d..ab2debd937d 100644 --- a/CVE-2024/CVE-2024-116xx/CVE-2024-11691.json +++ b/CVE-2024/CVE-2024-116xx/CVE-2024-11691.json @@ -2,12 +2,13 @@ "id": "CVE-2024-11691", "sourceIdentifier": "security@mozilla.org", "published": "2024-11-26T14:15:18.633", - "lastModified": "2024-11-26T14:15:18.633", + "lastModified": "2024-11-26T19:15:22.673", "vulnStatus": "Received", + "cveTags": [], "descriptions": [ { "lang": "en", - "value": "An attacker could have caused memory corruption due to a flaw in Apple's GPU driver; this can be avoided by working around the flaw. \n*Note: This issue only affected macOS operating systems. Other operating systems are unaffected.* This vulnerability affects Firefox < 133, Firefox ESR < 128.5, Firefox ESR < 115.18, Thunderbird < 133, and Thunderbird < 128.5." + "value": "Certain WebGL operations on Apple silicon M series devices could have lead to an out-of-bounds write and memory corruption due to a flaw in Apple's GPU driver. \n*This bug only affected the application on Apple M series hardware. Other platforms were unaffected.* This vulnerability affects Firefox < 133, Firefox ESR < 128.5, Firefox ESR < 115.18, Thunderbird < 133, and Thunderbird < 128.5." } ], "metrics": {}, diff --git a/CVE-2024/CVE-2024-117xx/CVE-2024-11742.json b/CVE-2024/CVE-2024-117xx/CVE-2024-11742.json new file mode 100644 index 00000000000..9abe6d47f7d --- /dev/null +++ b/CVE-2024/CVE-2024-117xx/CVE-2024-11742.json @@ -0,0 +1,145 @@ +{ + "id": "CVE-2024-11742", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-11-26T20:15:25.703", + "lastModified": "2024-11-26T20:15:25.703", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability, which was classified as problematic, has been found in SourceCodester Best House Rental Management System 1.0. This issue affects some unknown processing of the file /rental/ajax.php?action=save_tenant. The manipulation of the argument lastname/firstname/middlename leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 5.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "NONE", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N", + "baseScore": 3.5, + "baseSeverity": "LOW", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.1, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N", + "baseScore": 4.0, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "SINGLE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE" + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 8.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + }, + { + "lang": "en", + "value": "CWE-94" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/YasserREED/YasserREED-CVEs/blob/main/Best%20house%20rental%20management%20system%20project%20in%20php/Stored%20Cross-Site%20Scripting%20(XSS).md", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.286139", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.286139", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.449683", + "source": "cna@vuldb.com" + }, + { + "url": "https://www.sourcecodester.com/", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-117xx/CVE-2024-11743.json b/CVE-2024/CVE-2024-117xx/CVE-2024-11743.json new file mode 100644 index 00000000000..bf5da54c07e --- /dev/null +++ b/CVE-2024/CVE-2024-117xx/CVE-2024-11743.json @@ -0,0 +1,145 @@ +{ + "id": "CVE-2024-11743", + "sourceIdentifier": "cna@vuldb.com", + "published": "2024-11-26T20:15:25.930", + "lastModified": "2024-11-26T20:15:25.930", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability, which was classified as problematic, was found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /rental/ajax.php?action=delete_user of the component POST Request Handler. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 6.9, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "NONE", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "vulnerableSystemConfidentiality": "NONE", + "vulnerableSystemIntegrity": "LOW", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ], + "cvssMetricV31": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ], + "cvssMetricV2": [ + { + "source": "cna@vuldb.com", + "type": "Secondary", + "cvssData": { + "version": "2.0", + "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", + "baseScore": 5.0, + "accessVector": "NETWORK", + "accessComplexity": "LOW", + "authentication": "NONE", + "confidentialityImpact": "NONE", + "integrityImpact": "PARTIAL", + "availabilityImpact": "NONE" + }, + "baseSeverity": "MEDIUM", + "exploitabilityScore": 10.0, + "impactScore": 2.9, + "acInsufInfo": false, + "obtainAllPrivilege": false, + "obtainUserPrivilege": false, + "obtainOtherPrivilege": false, + "userInteractionRequired": false + } + ] + }, + "weaknesses": [ + { + "source": "cna@vuldb.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-352" + }, + { + "lang": "en", + "value": "CWE-862" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/YasserREED/YasserREED-CVEs/blob/main/Best%20house%20rental%20management%20system%20project%20in%20php/Cross-Site%20Request%20Forgery%20(CSRF).md", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?ctiid.286140", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?id.286140", + "source": "cna@vuldb.com" + }, + { + "url": "https://vuldb.com/?submit.449697", + "source": "cna@vuldb.com" + }, + { + "url": "https://www.sourcecodester.com/", + "source": "cna@vuldb.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-118xx/CVE-2024-11828.json b/CVE-2024/CVE-2024-118xx/CVE-2024-11828.json new file mode 100644 index 00000000000..43a6f2273da --- /dev/null +++ b/CVE-2024/CVE-2024-118xx/CVE-2024-11828.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-11828", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:22.910", + "lastModified": "2024-11-26T19:15:22.910", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A denial of service (DoS) condition was discovered in GitLab CE/EE affecting all versions from 13.2.4 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. By leveraging this vulnerability an attacker could create a DoS condition by sending crafted API calls. This was a regression of an earlier patch." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "LOW" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-407" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/443559", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2380264", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-17xx/CVE-2024-1753.json b/CVE-2024/CVE-2024-17xx/CVE-2024-1753.json index d17ecb058e1..ccb18f8a807 100644 --- a/CVE-2024/CVE-2024-17xx/CVE-2024-1753.json +++ b/CVE-2024/CVE-2024-17xx/CVE-2024-1753.json @@ -2,8 +2,9 @@ "id": "CVE-2024-1753", "sourceIdentifier": "secalert@redhat.com", "published": "2024-03-18T15:15:41.170", - "lastModified": "2024-11-24T14:15:04.850", + "lastModified": "2024-11-26T20:15:26.237", "vulnStatus": "Awaiting Analysis", + "cveTags": [], "descriptions": [ { "lang": "en", @@ -41,7 +42,7 @@ "weaknesses": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -135,6 +136,10 @@ "url": "https://github.com/containers/podman/security/advisories/GHSA-874v-pj72-92f3", "source": "secalert@redhat.com" }, + { + "url": "https://pkg.go.dev/vuln/GO-2024-2658", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/errata/RHSA-2024:2049", "source": "af854a3a-2127-422b-91ae-364da2661108" diff --git a/CVE-2024/CVE-2024-219xx/CVE-2024-21978.json b/CVE-2024/CVE-2024-219xx/CVE-2024-21978.json index c2bc88aca69..82310e2d119 100644 --- a/CVE-2024/CVE-2024-219xx/CVE-2024-21978.json +++ b/CVE-2024/CVE-2024-219xx/CVE-2024-21978.json @@ -2,8 +2,8 @@ "id": "CVE-2024-21978", "sourceIdentifier": "psirt@amd.com", "published": "2024-08-05T16:15:35.193", - "lastModified": "2024-08-06T16:30:24.547", - "vulnStatus": "Awaiting Analysis", + "lastModified": "2024-11-26T19:13:33.683", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N", + "baseScore": 6.0, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -30,12 +32,30 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "NONE", - "baseScore": 6.0, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 0.8, "impactScore": 5.2 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", + "baseScore": 7.9, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.5, + "impactScore": 5.8 } ] }, @@ -49,12 +69,2435 @@ "value": "CWE-20" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "NVD-CWE-noinfo" + } + ] } ], - "references": [ + "configurations": [ { - "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", - "source": "psirt@amd.com" + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3B590923-B6F9-48A2-9BA8-833E22DE2E43" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F44C8195-1621-4327-BBFA-8AFA36BED7AA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C1BED240-E334-4A8F-9070-D57D54B0ED2A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4A50B483-D20C-4BD4-94FA-01B8C9A904D5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "84E4A21E-DC60-4ABB-94AD-BDC785717A96" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7F98FF1A-3A2B-4CED-AEA2-9C4F2AC2D8C1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3C1D50EA-07CA-43E0-90A2-6AFE444A5381" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EE26D1A9-79F1-48B0-854F-84421A261E5C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "EDEAA93E-431A-4476-B431-5983296CCAAD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "88ACBFE2-C462-454E-9481-34BDF42237C8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "ED357082-5FDA-4E76-9903-ACE49D241195" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B02B61B7-7DD3-4164-8D32-EB961E981BC9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "68733A3D-95A9-45A7-B2D4-AD32439DAB08" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9000686A-DC2B-4561-9C32-E90890EB2EBA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "218E19EA-5493-475D-A51E-771BB281D5C2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71B9C24B-2C10-4826-A91B-E1C60665FBBE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "85514025-4FC5-4C5B-B6A6-7AC020E192F6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "678C5F58-8AE9-46FF-8F01-4CF394C87A2C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B5710382-A1D0-4E21-AC47-6F14CBE28329" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "180B3002-B3C5-48B5-8322-5B64B237C5B9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "E47E9840-6143-4355-BFB0-B402FDF16617" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D1766FF1-77A9-4293-B826-F6A8FBD7AFBF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "739AF0E3-62A6-43D0-8ECD-CF7720624613" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C474537-3006-41BA-8C3D-5C370E3ACECD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "AC0E511C-CC66-43BE-A907-027828C75403" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8E2B13CA-72F4-4CF6-9E12-62E6E9056A14" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5687A37A-3E72-4972-8F1A-A8266DE6A4A3" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "02D08121-DC57-47D7-8214-23A209F0AF08" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C462E4FF-2285-46E1-927B-C8FFB018BF35" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*", + "matchCriteriaId": "241E39FF-FE66-444C-A4C2-3D28C45341BE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "44C45AEA-6436-4012-9A0D-C591A64444A9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7473x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D07E922F-C1AB-469C-A1C1-9F9E58332DFC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "4FDB30FD-24BF-4597-97B5-7A3732673DD1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F8264DF4-47B4-4716-AE89-44AFA870D385" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "27A4A53B-F26C-44DF-BABB-C17357A7B549" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "52544912-FAA3-4025-A5FD-151B21CEC53B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F405F5CD-1255-4FD9-902C-45EF0D5C657A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "77A0A47B-74A1-4731-92A8-BC10FFE58ECF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D65F2DB9-51C0-40CA-B5C9-A85CF43A593D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EBF0AFED-588A-4EFB-8C90-9280BC3A6720" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "2432608F-0E9E-49D5-9A22-2A2A6E89489F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "237FB33B-BF08-4E3E-8E83-EB0AD2F12A4B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D9403D7F-0349-4CC8-B566-5054E4A96D83" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "98E1D79D-0CB0-4FD9-8A82-27CDFBFE07B2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F512316F-131F-4EAD-A7FA-CFE172AD4FA5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D02B1C69-BAA4-485B-BE22-46BE321F9E4E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B9DF39DE-83FC-4DD2-812A-F2D50AA85ADF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F05F9B7A-9777-461E-B88E-96592F87A49E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5DC68072-5AEA-4768-9CDB-57303996CA17" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A7DFCB62-6CDF-4AD2-9265-1887E5780CA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "8F396A75-7B5E-4544-92B9-7D4EFCD375B9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B7B5F0D8-2659-494C-8FB9-50A797CE0CA9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "FED2F309-48ED-4556-B562-3F01D7FB4141" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4D698D3E-BB05-4C65-90F4-8DAE275CD6A4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B79FF23A-6660-4513-A633-535B7543C8C9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2299ED50-B4D2-4BB3-AD87-56D552B84AE1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "7D6FFB29-9DFD-44FE-8AB5-32D8F765164F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F900BDD-F094-41A6-9A23-31F53DBA95D4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "482B19D4-3695-45A2-9CC7-1C0962414117" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "364B9EAB-E113-4370-ACDC-92BFD54BEF88" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A8ACBF4D-E173-477F-8E7C-33DA3C034AF0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "29BACF50-D9DB-4207-BF61-CACDCC3870E9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "486F652A-8DDA-4C01-B2DB-A4F981F56016" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B24580CA-3A31-4775-AD72-DF1DB6CB84C2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C5C40AD4-5F07-4F57-89DE-A0658464E4A1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E828D3FB-9EF3-40C4-B338-7BCF73C6EF37" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2602C520-8244-4BAA-A483-BC31A5305942" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "15981CBF-CB09-416E-AB31-54D650182EBD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B5088B73-27FC-4AA8-AB57-21EC0E0E7425" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DF4C36B4-CC5F-4A66-9294-71E0531E80F5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2CD662D4-8D44-42FE-971C-C501574F6744" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F4886768-DAFF-481E-894F-F8E816B36EB3" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B3AD7201-E73D-48FE-87F1-B62715700A70" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "46C7CC4B-3EC8-42D7-9AE9-F887D4DDF046" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BAEB0D25-E423-45EF-9E52-57DA7E594429" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A9241D42-1771-4528-8436-EE3FDE20C042" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "648F291B-0CE4-4D1D-8A5F-7DF66703C3B8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "5323D02F-E25A-460D-8DA1-F8C72E635E53" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "7E1BBA30-F9D1-4AD9-BAF7-F4D40D356C15" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9AF46284-ED2F-45F9-A4E8-221593FB7F49" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "43DCB063-0676-4615-93FC-64D98ACAAD57" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DEABF567-1E41-4FD2-876E-7D2689A01D51" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9734_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "492476F9-F8E1-47AB-AAF7-67AADA160678" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9734:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DE0954B5-9B6E-4C0E-905B-1E4B3FD50B04" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754s_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A89F3343-7DAC-4662-987E-7629610D3C32" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754s:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E74F229A-FDBD-4C3D-BE0B-9193E6E560ED" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "714CC372-0E0D-4075-94CD-4723BE694D2D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4EF0ED85-2FCF-4DCB-9C7F-0B5EC5EC574C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9184x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "CB2C6A30-90B5-4E74-A4CA-C69FCB4E1E99" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9184x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C3085B2-AFDA-4C34-A2B6-40D599F7E907" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9384x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B07058C5-3EDC-4615-B447-2438C534B0E0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9384x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E6DC6F07-2E27-48C3-BD60-81496C2D3C62" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9684x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E71A9FF8-E8A4-40C4-8DB1-D28AE4136988" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9684x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71A34603-6EB8-4D75-9391-8ADC35EA5EFE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "489653B2-F305-46B6-A4D6-DFE5DCC855C8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2761489D-AABE-4ADD-AE5B-B26C4424F18A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9174f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "47A571CB-8C43-4AFB-8115-29FDED7C5EEA" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9174f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D7811418-4B63-4CCA-B81F-379FF0277673" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9224_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6FF3AE7A-A653-444F-9CAF-DEF8C3F25F36" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9224:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B085546F-4791-4096-A019-738A37353165" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BD8E48F9-DEF9-43D4-8643-C1CC4D2EB3D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AFDF951D-9B67-49CE-AD4A-B1052A484E65" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9274f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E40AC063-BC83-49B5-81E9-56835D0B72D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9274f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "54EE0A4A-AA13-49CE-8825-407AD6B16B13" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9334_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "8A154914-D1C7-4549-815D-F1F693EE2B8F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9334:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6B1047C6-4627-4520-AFF7-5A0A623336F9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "79F0A749-9F6F-4D92-81A6-48C30F59A0EB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7A152B84-4935-4517-BD9D-37471C281BDA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F7A0D8BC-00E2-48EA-8F2D-C23968326032" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EF0F7101-1B8B-454B-879F-8635CB16D5C7" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9374f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "67A78FCF-5F78-41C5-B5D4-32815B76288E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9374f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "14BA8C50-B57A-4F6D-860B-790BD39249B0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6D51EFBB-2509-47C2-BA48-0FE151B993D0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F7FDDC36-A96D-419F-A4B5-8AEF9D5FEBE5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F9DF0D18-EC29-4E7F-8970-9D0355D0EDD5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "932E47BF-3831-4D72-9F26-89CA591692B8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9474f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A172EB43-4526-4A3E-881D-0B6CC72EEA34" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9474f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A1520823-129F-4F48-932B-1CA77D3446CC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "429B298B-C825-43F0-86CF-30385D4C56CD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E8FC239C-6B12-4F7C-A725-9D66AD39F7F6" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C4179752-A4AC-45DA-8A40-89217197D323" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A95FCDE4-82EF-4C54-A85D-960B36A46DD0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "4EFA7374-ED9E-4B25-B600-C34F02AFFCF9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A2BD9C75-AA02-47C1-94C7-BA5187B8CDF0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9634_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BCF05F1E-CF13-47BF-B7D7-2FD13E2A4E46" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9634:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C6C0B65-0C8C-4BCE-9B40-39B2EB5E5EA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "0AC9DE15-B2E8-4D9E-BC6D-1007C083D0B7" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "84209250-5078-4E8E-8532-98F652C12D79" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "ADE721FF-4323-4C32-91D6-AC085779E411" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "C150CC54-2F64-48E7-B996-F06247114BC4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "1F46B6E3-779A-48D3-9D66-9CC19B1C5060" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E5FCA13D-409D-4E0B-9CB1-72C6F255C145" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "849D773E-AB8F-4044-B791-C886662D8BBF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "375FC62D-D5B4-4698-A9E8-0AF00FEBBDE4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "2C34A942-5EA7-4CEA-A7CA-C0ADBCC65046" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2A4B2FBA-2F9E-44CF-A75A-9BCB30964153" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "30A546D8-3E31-4D4C-BAAC-607EAC46A4CC" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A273285D-0615-479C-BE60-D2A73532B39A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "D56DA98D-95C5-49E5-9174-DAE1ACEF706F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "92BF19E2-C264-48C3-BB38-A23C7DD67BB8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "E8379370-5081-4FB3-890C-2BF2D602095A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "93995EDA-88C5-41AE-8A56-08728027F2AF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "DF60A69F-21ED-441C-823C-291026E00715" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F04B63D-AF86-466A-B74D-B1C9B2682DCC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "552AAF13-377F-4A95-A580-7D906C6CB6A2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "0A737AAD-AA75-41F7-B6A6-1B17D984CED5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "FFE3AC64-538A-4E18-85CF-063F984D735E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "81287880-A2F0-4260-AA49-489DC2475118" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "6C559424-D75D-440E-8F92-C1AD1B66421B" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "07B6488C-8707-40B8-A867-87DDDE1B5625" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "7525E902-27DA-4A53-A018-53AF96AA73DB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6C8820F4-879C-4B9A-B10C-756DC6F35317" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "68E124D1-686C-416C-B9DD-B6380C355D92" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "FB7E7CEC-B263-4020-90E6-C0B77D8036D9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "E78BCF22-DC43-4A07-971B-CA6A76B23EEF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7CE47EE2-06B8-434F-BEC4-D2EB5B79AFB5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "C7F6F068-1F61-4EBB-A465-381D4EA696EF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "26C81497-519E-46A2-9F64-E80C82920E40" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "04591375-2E1D-4DBC-8C9B-2E4D4435F8ED" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "CFBD9E1E-437B-44E7-B148-88513DA7D50A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "57BE0E04-FC43-4437-B35F-F94DC8CC9EA6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A68F57A9-15AB-459C-8ACC-0BE565D230FD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "36D36B6C-DC77-4E12-AF09-180ACB86551A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8F6DCA27-D098-40B7-9778-B284044CA34B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "BE6BAF58-5538-43A9-A5A9-9C1CD420F6E2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9737ACC0-18DB-4061-A259-D32C16BDA238" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "A0B68719-100F-402A-B409-DDE9811B2359" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AE1C35D8-0C2A-4A63-9D1B-0983E0FDB7E1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "4CD6C041-14A7-459B-A3C9-1A6AB55F6006" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "30C72561-B0CE-4E51-AC5F-CD7EFDBCC5EE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "B3BAFE92-C577-4558-AE15-F3E6524701A4" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F27175DE-83A5-42DB-8F8A-886B1D886277" + } + ] + } + ] + } + ], + "references": [ + { + "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", + "source": "psirt@amd.com", + "tags": [ + "Broken Link" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-219xx/CVE-2024-21980.json b/CVE-2024/CVE-2024-219xx/CVE-2024-21980.json index b98b103fdd3..ef7ba7964a2 100644 --- a/CVE-2024/CVE-2024-219xx/CVE-2024-21980.json +++ b/CVE-2024/CVE-2024-219xx/CVE-2024-21980.json @@ -2,8 +2,8 @@ "id": "CVE-2024-21980", "sourceIdentifier": "psirt@amd.com", "published": "2024-08-05T16:15:35.377", - "lastModified": "2024-08-06T16:30:24.547", - "vulnStatus": "Awaiting Analysis", + "lastModified": "2024-11-26T19:13:55.167", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", + "baseScore": 7.9, + "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -30,9 +32,27 @@ "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.5, + "impactScore": 5.8 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N", "baseScore": 7.9, - "baseSeverity": "HIGH" + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" }, "exploitabilityScore": 1.5, "impactScore": 5.8 @@ -49,12 +69,2435 @@ "value": "CWE-119" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-787" + } + ] } ], - "references": [ + "configurations": [ { - "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", - "source": "psirt@amd.com" + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3B590923-B6F9-48A2-9BA8-833E22DE2E43" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F44C8195-1621-4327-BBFA-8AFA36BED7AA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7203p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C1BED240-E334-4A8F-9070-D57D54B0ED2A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7203p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4A50B483-D20C-4BD4-94FA-01B8C9A904D5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "84E4A21E-DC60-4ABB-94AD-BDC785717A96" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7F98FF1A-3A2B-4CED-AEA2-9C4F2AC2D8C1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "3C1D50EA-07CA-43E0-90A2-6AFE444A5381" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EE26D1A9-79F1-48B0-854F-84421A261E5C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7303p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "EDEAA93E-431A-4476-B431-5983296CCAAD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7303p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "88ACBFE2-C462-454E-9481-34BDF42237C8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "ED357082-5FDA-4E76-9903-ACE49D241195" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B02B61B7-7DD3-4164-8D32-EB961E981BC9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "68733A3D-95A9-45A7-B2D4-AD32439DAB08" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9000686A-DC2B-4561-9C32-E90890EB2EBA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "218E19EA-5493-475D-A51E-771BB281D5C2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71B9C24B-2C10-4826-A91B-E1C60665FBBE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "85514025-4FC5-4C5B-B6A6-7AC020E192F6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "678C5F58-8AE9-46FF-8F01-4CF394C87A2C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B5710382-A1D0-4E21-AC47-6F14CBE28329" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "180B3002-B3C5-48B5-8322-5B64B237C5B9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "E47E9840-6143-4355-BFB0-B402FDF16617" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D1766FF1-77A9-4293-B826-F6A8FBD7AFBF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "739AF0E3-62A6-43D0-8ECD-CF7720624613" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C474537-3006-41BA-8C3D-5C370E3ACECD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "AC0E511C-CC66-43BE-A907-027828C75403" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8E2B13CA-72F4-4CF6-9E12-62E6E9056A14" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5687A37A-3E72-4972-8F1A-A8266DE6A4A3" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "02D08121-DC57-47D7-8214-23A209F0AF08" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "C462E4FF-2285-46E1-927B-C8FFB018BF35" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*", + "matchCriteriaId": "241E39FF-FE66-444C-A4C2-3D28C45341BE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "44C45AEA-6436-4012-9A0D-C591A64444A9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7473x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D07E922F-C1AB-469C-A1C1-9F9E58332DFC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "4FDB30FD-24BF-4597-97B5-7A3732673DD1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F8264DF4-47B4-4716-AE89-44AFA870D385" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "27A4A53B-F26C-44DF-BABB-C17357A7B549" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "52544912-FAA3-4025-A5FD-151B21CEC53B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F405F5CD-1255-4FD9-902C-45EF0D5C657A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "77A0A47B-74A1-4731-92A8-BC10FFE58ECF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D65F2DB9-51C0-40CA-B5C9-A85CF43A593D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EBF0AFED-588A-4EFB-8C90-9280BC3A6720" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "2432608F-0E9E-49D5-9A22-2A2A6E89489F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "237FB33B-BF08-4E3E-8E83-EB0AD2F12A4B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "D9403D7F-0349-4CC8-B566-5054E4A96D83" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "98E1D79D-0CB0-4FD9-8A82-27CDFBFE07B2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "F512316F-131F-4EAD-A7FA-CFE172AD4FA5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D02B1C69-BAA4-485B-BE22-46BE321F9E4E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7643p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B9DF39DE-83FC-4DD2-812A-F2D50AA85ADF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7643p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F05F9B7A-9777-461E-B88E-96592F87A49E" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "5DC68072-5AEA-4768-9CDB-57303996CA17" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A7DFCB62-6CDF-4AD2-9265-1887E5780CA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7663p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "8F396A75-7B5E-4544-92B9-7D4EFCD375B9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7663p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B7B5F0D8-2659-494C-8FB9-50A797CE0CA9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "FED2F309-48ED-4556-B562-3F01D7FB4141" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4D698D3E-BB05-4C65-90F4-8DAE275CD6A4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "B79FF23A-6660-4513-A633-535B7543C8C9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2299ED50-B4D2-4BB3-AD87-56D552B84AE1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "milanpi_1.0.0.d", + "matchCriteriaId": "7D6FFB29-9DFD-44FE-8AB5-32D8F765164F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F900BDD-F094-41A6-9A23-31F53DBA95D4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "482B19D4-3695-45A2-9CC7-1C0962414117" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "364B9EAB-E113-4370-ACDC-92BFD54BEF88" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8024p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A8ACBF4D-E173-477F-8E7C-33DA3C034AF0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8024p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "29BACF50-D9DB-4207-BF61-CACDCC3870E9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "486F652A-8DDA-4C01-B2DB-A4F981F56016" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B24580CA-3A31-4775-AD72-DF1DB6CB84C2" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8124p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C5C40AD4-5F07-4F57-89DE-A0658464E4A1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8124p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E828D3FB-9EF3-40C4-B338-7BCF73C6EF37" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2602C520-8244-4BAA-A483-BC31A5305942" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "15981CBF-CB09-416E-AB31-54D650182EBD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8224p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B5088B73-27FC-4AA8-AB57-21EC0E0E7425" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8224p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DF4C36B4-CC5F-4A66-9294-71E0531E80F5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "2CD662D4-8D44-42FE-971C-C501574F6744" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F4886768-DAFF-481E-894F-F8E816B36EB3" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8324p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B3AD7201-E73D-48FE-87F1-B62715700A70" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8324p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "46C7CC4B-3EC8-42D7-9AE9-F887D4DDF046" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BAEB0D25-E423-45EF-9E52-57DA7E594429" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A9241D42-1771-4528-8436-EE3FDE20C042" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8434p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "648F291B-0CE4-4D1D-8A5F-7DF66703C3B8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8434p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "5323D02F-E25A-460D-8DA1-F8C72E635E53" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534pn_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "7E1BBA30-F9D1-4AD9-BAF7-F4D40D356C15" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534pn:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9AF46284-ED2F-45F9-A4E8-221593FB7F49" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_8534p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "43DCB063-0676-4615-93FC-64D98ACAAD57" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_8534p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DEABF567-1E41-4FD2-876E-7D2689A01D51" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9734_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "492476F9-F8E1-47AB-AAF7-67AADA160678" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9734:-:*:*:*:*:*:*:*", + "matchCriteriaId": "DE0954B5-9B6E-4C0E-905B-1E4B3FD50B04" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754s_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A89F3343-7DAC-4662-987E-7629610D3C32" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754s:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E74F229A-FDBD-4C3D-BE0B-9193E6E560ED" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9754_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "714CC372-0E0D-4075-94CD-4723BE694D2D" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9754:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4EF0ED85-2FCF-4DCB-9C7F-0B5EC5EC574C" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9184x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "CB2C6A30-90B5-4E74-A4CA-C69FCB4E1E99" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9184x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C3085B2-AFDA-4C34-A2B6-40D599F7E907" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9384x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "B07058C5-3EDC-4615-B447-2438C534B0E0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9384x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E6DC6F07-2E27-48C3-BD60-81496C2D3C62" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9684x_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E71A9FF8-E8A4-40C4-8DB1-D28AE4136988" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9684x:-:*:*:*:*:*:*:*", + "matchCriteriaId": "71A34603-6EB8-4D75-9391-8ADC35EA5EFE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "489653B2-F305-46B6-A4D6-DFE5DCC855C8" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2761489D-AABE-4ADD-AE5B-B26C4424F18A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9174f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "47A571CB-8C43-4AFB-8115-29FDED7C5EEA" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9174f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "D7811418-4B63-4CCA-B81F-379FF0277673" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9224_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6FF3AE7A-A653-444F-9CAF-DEF8C3F25F36" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9224:-:*:*:*:*:*:*:*", + "matchCriteriaId": "B085546F-4791-4096-A019-738A37353165" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BD8E48F9-DEF9-43D4-8643-C1CC4D2EB3D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AFDF951D-9B67-49CE-AD4A-B1052A484E65" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9274f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "E40AC063-BC83-49B5-81E9-56835D0B72D1" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9274f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "54EE0A4A-AA13-49CE-8825-407AD6B16B13" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9334_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "8A154914-D1C7-4549-815D-F1F693EE2B8F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9334:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6B1047C6-4627-4520-AFF7-5A0A623336F9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "79F0A749-9F6F-4D92-81A6-48C30F59A0EB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7A152B84-4935-4517-BD9D-37471C281BDA" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F7A0D8BC-00E2-48EA-8F2D-C23968326032" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "EF0F7101-1B8B-454B-879F-8635CB16D5C7" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9374f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "67A78FCF-5F78-41C5-B5D4-32815B76288E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9374f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "14BA8C50-B57A-4F6D-860B-790BD39249B0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "6D51EFBB-2509-47C2-BA48-0FE151B993D0" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F7FDDC36-A96D-419F-A4B5-8AEF9D5FEBE5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "F9DF0D18-EC29-4E7F-8970-9D0355D0EDD5" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "932E47BF-3831-4D72-9F26-89CA591692B8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9474f_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "A172EB43-4526-4A3E-881D-0B6CC72EEA34" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9474f:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A1520823-129F-4F48-932B-1CA77D3446CC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "429B298B-C825-43F0-86CF-30385D4C56CD" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E8FC239C-6B12-4F7C-A725-9D66AD39F7F6" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "C4179752-A4AC-45DA-8A40-89217197D323" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A95FCDE4-82EF-4C54-A85D-960B36A46DD0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "4EFA7374-ED9E-4B25-B600-C34F02AFFCF9" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A2BD9C75-AA02-47C1-94C7-BA5187B8CDF0" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9634_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "BCF05F1E-CF13-47BF-B7D7-2FD13E2A4E46" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9634:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4C6C0B65-0C8C-4BCE-9B40-39B2EB5E5EA5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "0AC9DE15-B2E8-4D9E-BC6D-1007C083D0B7" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "84209250-5078-4E8E-8532-98F652C12D79" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "genoapi_1.0.0.c", + "matchCriteriaId": "ADE721FF-4323-4C32-91D6-AC085779E411" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "C150CC54-2F64-48E7-B996-F06247114BC4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "1F46B6E3-779A-48D3-9D66-9CC19B1C5060" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313:-:*:*:*:*:*:*:*", + "matchCriteriaId": "E5FCA13D-409D-4E0B-9CB1-72C6F255C145" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7313p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "849D773E-AB8F-4044-B791-C886662D8BBF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7313p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "375FC62D-D5B4-4698-A9E8-0AF00FEBBDE4" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7413_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "2C34A942-5EA7-4CEA-A7CA-C0ADBCC65046" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7413:-:*:*:*:*:*:*:*", + "matchCriteriaId": "2A4B2FBA-2F9E-44CF-A75A-9BCB30964153" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "30A546D8-3E31-4D4C-BAAC-607EAC46A4CC" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A273285D-0615-479C-BE60-D2A73532B39A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7443p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "D56DA98D-95C5-49E5-9174-DAE1ACEF706F" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7443p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "92BF19E2-C264-48C3-BB38-A23C7DD67BB8" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "E8379370-5081-4FB3-890C-2BF2D602095A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543:-:*:*:*:*:*:*:*", + "matchCriteriaId": "93995EDA-88C5-41AE-8A56-08728027F2AF" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7543p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "DF60A69F-21ED-441C-823C-291026E00715" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7543p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "4F04B63D-AF86-466A-B74D-B1C9B2682DCC" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7643_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "552AAF13-377F-4A95-A580-7D906C6CB6A2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7643:-:*:*:*:*:*:*:*", + "matchCriteriaId": "0A737AAD-AA75-41F7-B6A6-1B17D984CED5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "FFE3AC64-538A-4E18-85CF-063F984D735E" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713:-:*:*:*:*:*:*:*", + "matchCriteriaId": "81287880-A2F0-4260-AA49-489DC2475118" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_7713p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embmilanpi-sp3_1.0.0.9", + "matchCriteriaId": "6C559424-D75D-440E-8F92-C1AD1B66421B" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_7713p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "07B6488C-8707-40B8-A867-87DDDE1B5625" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9124_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "7525E902-27DA-4A53-A018-53AF96AA73DB" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9124:-:*:*:*:*:*:*:*", + "matchCriteriaId": "6C8820F4-879C-4B9A-B10C-756DC6F35317" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9254_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "68E124D1-686C-416C-B9DD-B6380C355D92" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9254:-:*:*:*:*:*:*:*", + "matchCriteriaId": "FB7E7CEC-B263-4020-90E6-C0B77D8036D9" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "E78BCF22-DC43-4A07-971B-CA6A76B23EEF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354:-:*:*:*:*:*:*:*", + "matchCriteriaId": "7CE47EE2-06B8-434F-BEC4-D2EB5B79AFB5" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9354p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "C7F6F068-1F61-4EBB-A465-381D4EA696EF" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9354p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "26C81497-519E-46A2-9F64-E80C82920E40" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "04591375-2E1D-4DBC-8C9B-2E4D4435F8ED" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454:-:*:*:*:*:*:*:*", + "matchCriteriaId": "CFBD9E1E-437B-44E7-B148-88513DA7D50A" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9454p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "57BE0E04-FC43-4437-B35F-F94DC8CC9EA6" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9454p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "A68F57A9-15AB-459C-8ACC-0BE565D230FD" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9534_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "36D36B6C-DC77-4E12-AF09-180ACB86551A" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9534:-:*:*:*:*:*:*:*", + "matchCriteriaId": "8F6DCA27-D098-40B7-9778-B284044CA34B" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "BE6BAF58-5538-43A9-A5A9-9C1CD420F6E2" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554:-:*:*:*:*:*:*:*", + "matchCriteriaId": "9737ACC0-18DB-4061-A259-D32C16BDA238" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9554p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "A0B68719-100F-402A-B409-DDE9811B2359" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9554p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "AE1C35D8-0C2A-4A63-9D1B-0983E0FDB7E1" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "4CD6C041-14A7-459B-A3C9-1A6AB55F6006" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654:-:*:*:*:*:*:*:*", + "matchCriteriaId": "30C72561-B0CE-4E51-AC5F-CD7EFDBCC5EE" + } + ] + } + ] + }, + { + "operator": "AND", + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:amd:epyc_embedded_9654p_firmware:*:*:*:*:*:*:*:*", + "versionEndExcluding": "embgenoapi-sp5_1.0.0.7", + "matchCriteriaId": "B3BAFE92-C577-4558-AE15-F3E6524701A4" + } + ] + }, + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": false, + "criteria": "cpe:2.3:h:amd:epyc_embedded_9654p:-:*:*:*:*:*:*:*", + "matchCriteriaId": "F27175DE-83A5-42DB-8F8A-886B1D886277" + } + ] + } + ] + } + ], + "references": [ + { + "url": "https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html", + "source": "psirt@amd.com", + "tags": [ + "Broken Link" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-244xx/CVE-2024-24449.json b/CVE-2024/CVE-2024-244xx/CVE-2024-24449.json index 2f5ace30d03..8c4b839d07e 100644 --- a/CVE-2024/CVE-2024-244xx/CVE-2024-24449.json +++ b/CVE-2024/CVE-2024-244xx/CVE-2024-24449.json @@ -2,7 +2,7 @@ "id": "CVE-2024-24449", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-15T18:15:27.013", - "lastModified": "2024-11-18T17:11:56.587", + "lastModified": "2024-11-26T19:15:23.090", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ @@ -15,7 +15,42 @@ "value": "Una desreferencia de puntero no inicializado en el componente NasPdu::NasPdu de OpenAirInterface CN5G AMF hasta v2.0.0 permite a los atacantes provocar una denegaci\u00f3n de servicio (DoS) a trav\u00e9s de un mensaje InitialUEMessage manipulado a medida enviado a AMF." } ], - "metrics": {}, + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-824" + } + ] + } + ], "references": [ { "url": "https://cellularsecurity.org/ransacked", diff --git a/CVE-2024/CVE-2024-329xx/CVE-2024-32965.json b/CVE-2024/CVE-2024-329xx/CVE-2024-32965.json new file mode 100644 index 00000000000..45c8ec8ee94 --- /dev/null +++ b/CVE-2024/CVE-2024-329xx/CVE-2024-32965.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-32965", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-11-26T19:15:23.343", + "lastModified": "2024-11-26T19:15:23.343", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "Lobe Chat is an open-source, AI chat framework. Versions of lobe-chat prior to 1.19.13 have an unauthorized ssrf vulnerability. An attacker can construct malicious requests to cause SSRF without logging in, attack intranet services, and leak sensitive information. The jwt token header X-Lobe-Chat-Auth strored proxy address and OpenAI API Key, can be modified to scan an internal network in the target lobe-web environment. This issue has been addressed in release version 1.19.13 and all users are advised to upgrade. There are no known workarounds for this vulnerability." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:L", + "baseScore": 8.1, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" + }, + "exploitabilityScore": 2.2, + "impactScore": 5.3 + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-918" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/lobehub/lobe-chat/commit/e960a23b0c69a5762eb27d776d33dac443058faf", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-2xcc-vm3f-m8rw", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-351xx/CVE-2024-35160.json b/CVE-2024/CVE-2024-351xx/CVE-2024-35160.json index 69b554262ee..d020fe89491 100644 --- a/CVE-2024/CVE-2024-351xx/CVE-2024-35160.json +++ b/CVE-2024/CVE-2024-351xx/CVE-2024-35160.json @@ -2,19 +2,24 @@ "id": "CVE-2024-35160", "sourceIdentifier": "psirt@us.ibm.com", "published": "2024-11-23T14:15:18.393", - "lastModified": "2024-11-23T14:15:18.393", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:08:22.473", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "IBM Watson Query on Cloud Pak for Data 1.8, 2.0, 2.1, 2.2\u00a0and IBM Db2 Big SQL on Cloud Pak for Data 7.3, 7.4, 7.5, and 7.6\u00a0could allow an authenticated user to obtain sensitive information due to insufficient session expiration." + }, + { + "lang": "es", + "value": "IBM Watson Query en Cloud Pak for Data 1.8, 2.0, 2.1, 2.2 e IBM Db2 Big SQL en Cloud Pak for Data 7.3, 7.4, 7.5 y 7.6 podr\u00edan permitir que un usuario autenticado obtenga informaci\u00f3n confidencial debido a una expiraci\u00f3n de sesi\u00f3n insuficiente." } ], "metrics": { "cvssMetricV31": [ { "source": "psirt@us.ibm.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", @@ -31,6 +36,26 @@ }, "exploitabilityScore": 2.8, "impactScore": 1.4 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.6 } ] }, @@ -46,14 +71,72 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:big_sql:7.3:*:*:*:*:*:*:*", + "matchCriteriaId": "F847F14F-2D58-4E50-B28E-A8F2BE6BE148" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:big_sql:7.4:*:*:*:*:*:*:*", + "matchCriteriaId": "F5CA4981-7EA0-41BB-8450-1EF995DC2DA2" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:big_sql:7.5:*:*:*:*:*:*:*", + "matchCriteriaId": "D13EB5A5-B222-49A3-9931-ED9D00E2FC93" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:big_sql:7.6:*:*:*:*:*:*:*", + "matchCriteriaId": "0F238E3E-4891-4089-A3F0-128B7B947ABD" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:1.8:*:*:*:*:*:*:*", + "matchCriteriaId": "3F682C06-34BF-42E4-8C05-93B142C47D22" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.0:*:*:*:*:*:*:*", + "matchCriteriaId": "4D451E18-6883-44F7-90A0-50B539D34D65" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.1:*:*:*:*:*:*:*", + "matchCriteriaId": "B063DD40-B8CE-45EF-A692-99E2B5ED4616" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:ibm:watson_query_with_cloud_pak_for_data:2.2:*:*:*:*:*:*:*", + "matchCriteriaId": "6EF1367E-3931-479D-882F-B75FD5CA241A" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.ibm.com/support/pages/node/7168703", - "source": "psirt@us.ibm.com" + "source": "psirt@us.ibm.com", + "tags": [ + "Vendor Advisory" + ] }, { "url": "https://www.ibm.com/support/pages/node/7176947", - "source": "psirt@us.ibm.com" + "source": "psirt@us.ibm.com", + "tags": [ + "Vendor Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-458xx/CVE-2024-45877.json b/CVE-2024/CVE-2024-458xx/CVE-2024-45877.json index 86406560ca7..8a4f134841b 100644 --- a/CVE-2024/CVE-2024-458xx/CVE-2024-45877.json +++ b/CVE-2024/CVE-2024-458xx/CVE-2024-45877.json @@ -2,7 +2,7 @@ "id": "CVE-2024-45877", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-13T21:15:28.983", - "lastModified": "2024-11-15T14:00:09.720", + "lastModified": "2024-11-26T20:15:29.633", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ @@ -15,7 +15,42 @@ "value": "El portal web TOPqw v1.35.283.2 de baltic-it es vulnerable a un control de acceso incorrecto en la funci\u00f3n de administraci\u00f3n de usuarios en /Apps/TOPqw/BenutzerManagement.aspx. Esto permite que un usuario con pocos privilegios acceda a todos los m\u00f3dulos del portal web, vea y manipule informaci\u00f3n y permisos de otros usuarios, bloquee a otros usuarios o desbloquee su propia cuenta, cambie la contrase\u00f1a de otros usuarios, cree nuevos usuarios o elimine usuarios existentes y vea, manipule y elimine datos de referencia." } ], - "metrics": {}, + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-863" + } + ] + } + ], "references": [ { "url": "https://cyber.wtf/2024/11/11/topqw-webportal-cves/", diff --git a/CVE-2024/CVE-2024-480xx/CVE-2024-48010.json b/CVE-2024/CVE-2024-480xx/CVE-2024-48010.json index b77aef65ea7..9eff63f08dc 100644 --- a/CVE-2024/CVE-2024-480xx/CVE-2024-48010.json +++ b/CVE-2024/CVE-2024-480xx/CVE-2024-48010.json @@ -2,8 +2,8 @@ "id": "CVE-2024-48010", "sourceIdentifier": "security_alert@emc.com", "published": "2024-11-08T03:15:03.933", - "lastModified": "2024-11-08T19:01:03.880", - "vulnStatus": "Awaiting Analysis", + "lastModified": "2024-11-26T19:26:13.733", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -30,31 +32,102 @@ "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 6.5, - "baseSeverity": "MEDIUM" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.2, "impactScore": 5.2 + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 7.2, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.2, + "impactScore": 5.9 } ] }, "weaknesses": [ { "source": "security_alert@emc.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-284" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "NVD-CWE-noinfo" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", + "versionStartIncluding": "7.7.0.0", + "versionEndExcluding": "7.7.5.50", + "matchCriteriaId": "F67B432D-426C-4155-B365-A08CE8AD29AC" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", + "versionStartIncluding": "7.10.0.0", + "versionEndExcluding": "7.10.1.40", + "matchCriteriaId": "581408C7-9067-41F9-AA9C-E58ECA0EE006" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", + "versionStartIncluding": "7.13.0.0", + "versionEndExcluding": "7.13.1.10", + "matchCriteriaId": "D65074E3-083E-4010-8E66-2A256155311A" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:o:dell:data_domain_operating_system:*:*:*:*:*:*:*:*", + "versionStartIncluding": "8.0.0.0", + "versionEndExcluding": "8.1.0.0", + "matchCriteriaId": "45B0DE69-722F-4180-B4A7-24D002B3035C" + } + ] + } + ] } ], "references": [ { "url": "https://www.dell.com/support/kbdoc/en-us/000245360/dsa-2024-424-security-update-for-dell-pdsa-2024-424-security-update-for-dell-powerprotect-dd-vulnerabilityowerprotect-dd-vulnerability", - "source": "security_alert@emc.com" + "source": "security_alert@emc.com", + "tags": [ + "Vendor Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-484xx/CVE-2024-48415.json b/CVE-2024/CVE-2024-484xx/CVE-2024-48415.json index 65dcbf59905..9374233b298 100644 --- a/CVE-2024/CVE-2024-484xx/CVE-2024-48415.json +++ b/CVE-2024/CVE-2024-484xx/CVE-2024-48415.json @@ -2,7 +2,7 @@ "id": "CVE-2024-48415", "sourceIdentifier": "cve@mitre.org", "published": "2024-10-22T22:15:05.890", - "lastModified": "2024-10-25T16:55:26.083", + "lastModified": "2024-11-26T20:29:57.070", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ @@ -23,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 5.0, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -30,9 +32,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 5.0, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 1.8, "impactScore": 2.7 @@ -43,6 +43,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 4.6, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", @@ -50,9 +52,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 4.6, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 1.5, "impactScore": 2.7 @@ -90,8 +90,8 @@ "cpeMatch": [ { "vulnerable": true, - "criteria": "cpe:2.3:a:loan_management_system_project:loan_management_system:1.0:*:*:*:*:*:*:*", - "matchCriteriaId": "A0FA1DFF-3E84-4E0A-A16B-9888A9104374" + "criteria": "cpe:2.3:a:razormist:loan_management_system:1.0:*:*:*:*:*:*:*", + "matchCriteriaId": "B340CFE4-DBA8-40EB-B73D-1A294A9BB502" } ] } diff --git a/CVE-2024/CVE-2024-487xx/CVE-2024-48747.json b/CVE-2024/CVE-2024-487xx/CVE-2024-48747.json new file mode 100644 index 00000000000..8d0a466d3a1 --- /dev/null +++ b/CVE-2024/CVE-2024-487xx/CVE-2024-48747.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-48747", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-11-21T15:15:32.423", + "lastModified": "2024-11-26T19:15:26.443", + "vulnStatus": "Awaiting Analysis", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue in alist-tvbox v1.7.1 allows a remote attacker to execute arbitrary code via the /atv-cli file." + }, + { + "lang": "es", + "value": "Un problema en alist-tvbox v1.7.1 permite que un atacante remoto ejecute c\u00f3digo arbitrario a trav\u00e9s del archivo /atv-cli." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 6.8, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 0.9, + "impactScore": 5.9 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-77" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/6pc1/BugHub/blob/main/alist-tvbox%20command%20execution%20vulnerability.pdf", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-490xx/CVE-2024-49035.json b/CVE-2024/CVE-2024-490xx/CVE-2024-49035.json new file mode 100644 index 00000000000..bddba1c76de --- /dev/null +++ b/CVE-2024/CVE-2024-490xx/CVE-2024-49035.json @@ -0,0 +1,63 @@ +{ + "id": "CVE-2024-49035", + "sourceIdentifier": "secure@microsoft.com", + "published": "2024-11-26T20:15:31.763", + "lastModified": "2024-11-26T20:15:31.763", + "vulnStatus": "Received", + "cveTags": [ + { + "sourceIdentifier": "secure@microsoft.com", + "tags": [ + "exclusively-hosted-service" + ] + } + ], + "descriptions": [ + { + "lang": "en", + "value": "An improper access control vulnerability in Partner.Microsoft.com allows an a unauthenticated attacker to elevate privileges over a network." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N", + "baseScore": 8.7, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.3, + "impactScore": 5.8 + } + ] + }, + "weaknesses": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-269" + } + ] + } + ], + "references": [ + { + "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49035", + "source": "secure@microsoft.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-490xx/CVE-2024-49038.json b/CVE-2024/CVE-2024-490xx/CVE-2024-49038.json new file mode 100644 index 00000000000..87144be7875 --- /dev/null +++ b/CVE-2024/CVE-2024-490xx/CVE-2024-49038.json @@ -0,0 +1,63 @@ +{ + "id": "CVE-2024-49038", + "sourceIdentifier": "secure@microsoft.com", + "published": "2024-11-26T20:15:31.943", + "lastModified": "2024-11-26T20:15:31.943", + "vulnStatus": "Received", + "cveTags": [ + { + "sourceIdentifier": "secure@microsoft.com", + "tags": [ + "exclusively-hosted-service" + ] + } + ], + "descriptions": [ + { + "lang": "en", + "value": "Improper neutralization of input during web page generation ('Cross-site Scripting') in Copilot Studio by an unauthorized attacker leads to elevation of privilege over a network." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N", + "baseScore": 9.3, + "baseSeverity": "CRITICAL", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 5.8 + } + ] + }, + "weaknesses": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49038", + "source": "secure@microsoft.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-490xx/CVE-2024-49052.json b/CVE-2024/CVE-2024-490xx/CVE-2024-49052.json new file mode 100644 index 00000000000..81b4ccc8bb7 --- /dev/null +++ b/CVE-2024/CVE-2024-490xx/CVE-2024-49052.json @@ -0,0 +1,63 @@ +{ + "id": "CVE-2024-49052", + "sourceIdentifier": "secure@microsoft.com", + "published": "2024-11-26T20:15:32.723", + "lastModified": "2024-11-26T20:15:32.723", + "vulnStatus": "Received", + "cveTags": [ + { + "sourceIdentifier": "secure@microsoft.com", + "tags": [ + "exclusively-hosted-service" + ] + } + ], + "descriptions": [ + { + "lang": "en", + "value": "Missing authentication for critical function in Microsoft Azure PolicyWatch allows an unauthorized attacker to elevate privileges over a network." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", + "baseScore": 8.2, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 3.9, + "impactScore": 4.2 + } + ] + }, + "weaknesses": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-306" + } + ] + } + ], + "references": [ + { + "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49052", + "source": "secure@microsoft.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-490xx/CVE-2024-49053.json b/CVE-2024/CVE-2024-490xx/CVE-2024-49053.json new file mode 100644 index 00000000000..1670cc908fe --- /dev/null +++ b/CVE-2024/CVE-2024-490xx/CVE-2024-49053.json @@ -0,0 +1,56 @@ +{ + "id": "CVE-2024-49053", + "sourceIdentifier": "secure@microsoft.com", + "published": "2024-11-26T20:15:32.890", + "lastModified": "2024-11-26T20:15:32.890", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "Microsoft Dynamics 365 Sales Spoofing Vulnerability" + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N", + "baseScore": 7.6, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.3, + "impactScore": 4.7 + } + ] + }, + "weaknesses": [ + { + "source": "secure@microsoft.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49053", + "source": "secure@microsoft.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-510xx/CVE-2024-51058.json b/CVE-2024/CVE-2024-510xx/CVE-2024-51058.json index eebbecffb66..19a84d0f569 100644 --- a/CVE-2024/CVE-2024-510xx/CVE-2024-51058.json +++ b/CVE-2024/CVE-2024-510xx/CVE-2024-51058.json @@ -2,7 +2,7 @@ "id": "CVE-2024-51058", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-26T18:15:19.440", - "lastModified": "2024-11-26T18:15:19.440", + "lastModified": "2024-11-26T20:15:33.253", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -11,7 +11,42 @@ "value": "Local File Inclusion (LFI) vulnerability has been discovered in TCPDF 6.7.5. This vulnerability enables a user to read arbitrary files from the server's file system through src tag, potentially exposing sensitive information." } ], - "metrics": {}, + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", + "baseScore": 6.2, + "baseSeverity": "MEDIUM", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.5, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-552" + } + ] + } + ], "references": [ { "url": "https://github.com/saravana-hackz/vulnerability-research/tree/main/CVE-2024-51058", diff --git a/CVE-2024/CVE-2024-520xx/CVE-2024-52008.json b/CVE-2024/CVE-2024-520xx/CVE-2024-52008.json new file mode 100644 index 00000000000..e7861fd2d39 --- /dev/null +++ b/CVE-2024/CVE-2024-520xx/CVE-2024-52008.json @@ -0,0 +1,78 @@ +{ + "id": "CVE-2024-52008", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-11-26T19:15:29.583", + "lastModified": "2024-11-26T19:15:29.583", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "Fides is an open-source privacy engineering platform. The user invite acceptance API endpoint lacks server-side password policy enforcement, allowing users to set arbitrarily weak passwords by bypassing client-side validation. While the UI enforces password complexity requirements, direct API calls can circumvent these checks, enabling the creation of accounts with passwords as short as a single character. When an email messaging provider is enabled and a new user account is created in the system, an invite email containing a special link is sent to the new user's email address. This link directs the new user to a page where they can set their initial password. While the user interface implements password complexity checks, these validations are only performed client-side. The underlying `/api/v1/user/accept-invite` API endpoint does not implement the same password policy validations. This vulnerability allows an invited user to set an extremely weak password for their own account during the initial account setup process. Therefore that specific user's account can be compromised easily by an attacker guessing or brute forcing the password. The vulnerability has been patched in Fides version `2.50.0`. Users are advised to upgrade to this version or later to secure their systems against this threat. There are no known workarounds for this vulnerability." + } + ], + "metrics": { + "cvssMetricV40": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "4.0", + "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", + "baseScore": 2.0, + "baseSeverity": "LOW", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "attackRequirements": "PRESENT", + "privilegesRequired": "LOW", + "userInteraction": "ACTIVE", + "vulnerableSystemConfidentiality": "LOW", + "vulnerableSystemIntegrity": "NONE", + "vulnerableSystemAvailability": "NONE", + "subsequentSystemConfidentiality": "NONE", + "subsequentSystemIntegrity": "NONE", + "subsequentSystemAvailability": "NONE", + "exploitMaturity": "NOT_DEFINED", + "confidentialityRequirements": "NOT_DEFINED", + "integrityRequirements": "NOT_DEFINED", + "availabilityRequirements": "NOT_DEFINED", + "modifiedAttackVector": "NOT_DEFINED", + "modifiedAttackComplexity": "NOT_DEFINED", + "modifiedAttackRequirements": "NOT_DEFINED", + "modifiedPrivilegesRequired": "NOT_DEFINED", + "modifiedUserInteraction": "NOT_DEFINED", + "modifiedVulnerableSystemConfidentiality": "NOT_DEFINED", + "modifiedVulnerableSystemIntegrity": "NOT_DEFINED", + "modifiedVulnerableSystemAvailability": "NOT_DEFINED", + "modifiedSubsequentSystemConfidentiality": "NOT_DEFINED", + "modifiedSubsequentSystemIntegrity": "NOT_DEFINED", + "modifiedSubsequentSystemAvailability": "NOT_DEFINED", + "safety": "NOT_DEFINED", + "automatable": "NOT_DEFINED", + "recovery": "NOT_DEFINED", + "valueDensity": "NOT_DEFINED", + "vulnerabilityResponseEffort": "NOT_DEFINED", + "providerUrgency": "NOT_DEFINED" + } + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-602" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/ethyca/fides/security/advisories/GHSA-v7vm-rhmg-8j2r", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-523xx/CVE-2024-52336.json b/CVE-2024/CVE-2024-523xx/CVE-2024-52336.json index 30f54941f95..450f8f07e77 100644 --- a/CVE-2024/CVE-2024-523xx/CVE-2024-52336.json +++ b/CVE-2024/CVE-2024-523xx/CVE-2024-52336.json @@ -2,7 +2,7 @@ "id": "CVE-2024-52336", "sourceIdentifier": "secalert@redhat.com", "published": "2024-11-26T16:15:17.093", - "lastModified": "2024-11-26T16:15:17.093", + "lastModified": "2024-11-26T19:15:29.747", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -15,7 +15,7 @@ "cvssMetricV31": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", @@ -36,6 +36,10 @@ ] }, "references": [ + { + "url": "https://access.redhat.com/errata/RHSA-2024:10384", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/security/cve/CVE-2024-52336", "source": "secalert@redhat.com" diff --git a/CVE-2024/CVE-2024-523xx/CVE-2024-52337.json b/CVE-2024/CVE-2024-523xx/CVE-2024-52337.json index d212a4358fd..8b76035d53e 100644 --- a/CVE-2024/CVE-2024-523xx/CVE-2024-52337.json +++ b/CVE-2024/CVE-2024-523xx/CVE-2024-52337.json @@ -2,7 +2,7 @@ "id": "CVE-2024-52337", "sourceIdentifier": "secalert@redhat.com", "published": "2024-11-26T16:15:17.717", - "lastModified": "2024-11-26T16:15:17.717", + "lastModified": "2024-11-26T19:15:30.013", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -15,7 +15,7 @@ "cvssMetricV31": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", @@ -38,7 +38,7 @@ "weaknesses": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -48,6 +48,14 @@ } ], "references": [ + { + "url": "https://access.redhat.com/errata/RHSA-2024:10381", + "source": "secalert@redhat.com" + }, + { + "url": "https://access.redhat.com/errata/RHSA-2024:10384", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/security/cve/CVE-2024-52337", "source": "secalert@redhat.com" diff --git a/CVE-2024/CVE-2024-526xx/CVE-2024-52677.json b/CVE-2024/CVE-2024-526xx/CVE-2024-52677.json index c7e60838722..ddd034e9f0b 100644 --- a/CVE-2024/CVE-2024-526xx/CVE-2024-52677.json +++ b/CVE-2024/CVE-2024-526xx/CVE-2024-52677.json @@ -2,8 +2,9 @@ "id": "CVE-2024-52677", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-20T21:15:08.490", - "lastModified": "2024-11-22T16:51:19.797", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T19:15:30.253", + "vulnStatus": "Modified", + "cveTags": [], "descriptions": [ { "lang": "en", @@ -82,6 +83,10 @@ "tags": [ "Broken Link" ] + }, + { + "url": "https://github.com/advisories/ghsa-j27h-7c89-c3c6", + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0" } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-532xx/CVE-2024-53267.json b/CVE-2024/CVE-2024-532xx/CVE-2024-53267.json new file mode 100644 index 00000000000..f0f266e5b6c --- /dev/null +++ b/CVE-2024/CVE-2024-532xx/CVE-2024-53267.json @@ -0,0 +1,64 @@ +{ + "id": "CVE-2024-53267", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-11-26T19:15:30.473", + "lastModified": "2024-11-26T19:15:30.473", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "sigstore-java is a sigstore java client for interacting with sigstore infrastructure. sigstore-java has insufficient verification for a situation where a validly-signed but \"mismatched\" bundle is presented as proof of inclusion into a transparency log. This bug impacts clients using any variation of KeylessVerifier.verify(). The verifier may accept a bundle with an unrelated log entry, cryptographically verifying everything but fails to ensure the log entry applies to the artifact in question, thereby \"verifying\" a bundle without any proof the signing event was logged. This allows the creation of a bundle without fulcio certificate and private key combined with an unrelated but time-correct log entry to fake logging of a signing event. A malicious actor using a compromised identity may want to do this to prevent discovery via rekor's log monitors. The signer's identity will still be available to the verifier. The signature on the bundle must still be on the correct artifact for the verifier to pass. sigstore-gradle-plugin and sigstore-maven-plugin are not affected by this as they only provide signing functionality. This issue has been patched in v1.1.0 release with PR #856. All users are advised to upgrade. There are no known workarounds for this vulnerability." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", + "baseScore": 5.5, + "baseSeverity": "MEDIUM", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-347" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/sigstore/sigstore-conformance/pull/166", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/sigstore/sigstore-java/pull/856", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/sigstore/sigstore-java/security/advisories/GHSA-q4xm-6fjc-5f6w", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-533xx/CVE-2024-53365.json b/CVE-2024/CVE-2024-533xx/CVE-2024-53365.json index 5bcae64797a..7cfd76947c9 100644 --- a/CVE-2024/CVE-2024-533xx/CVE-2024-53365.json +++ b/CVE-2024/CVE-2024-533xx/CVE-2024-53365.json @@ -2,7 +2,7 @@ "id": "CVE-2024-53365", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-26T17:15:26.123", - "lastModified": "2024-11-26T17:15:26.123", + "lastModified": "2024-11-26T20:15:33.650", "vulnStatus": "Received", "cveTags": [], "descriptions": [ @@ -11,7 +11,42 @@ "value": "A stored cross-site scripting (XSS) vulnerability was identified in PHPGURUKUL Vehicle Parking Management System v1.13 in /users/profile.php. This vulnerability allows authenticated users to inject malicious XSS scripts into the profile name field." } ], - "metrics": {}, + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 5.4, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.3, + "impactScore": 2.7 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], "references": [ { "url": "http://phpgurukul.com", diff --git a/CVE-2024/CVE-2024-536xx/CVE-2024-53619.json b/CVE-2024/CVE-2024-536xx/CVE-2024-53619.json new file mode 100644 index 00000000000..b50ed550b13 --- /dev/null +++ b/CVE-2024/CVE-2024-536xx/CVE-2024-53619.json @@ -0,0 +1,56 @@ +{ + "id": "CVE-2024-53619", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-11-26T19:15:30.727", + "lastModified": "2024-11-26T20:15:33.880", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An authenticated arbitrary file upload vulnerability in the Documents module of SPIP v4.3.3 allows attackers to execute arbitrary code via uploading a crafted PDF file." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 6.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.4 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-434" + } + ] + } + ], + "references": [ + { + "url": "https://grimthereaperteam.medium.com/spip-4-3-3-malicious-file-upload-xss-in-pdf-526c03bb1776", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-536xx/CVE-2024-53620.json b/CVE-2024/CVE-2024-536xx/CVE-2024-53620.json new file mode 100644 index 00000000000..fe67a650210 --- /dev/null +++ b/CVE-2024/CVE-2024-536xx/CVE-2024-53620.json @@ -0,0 +1,56 @@ +{ + "id": "CVE-2024-53620", + "sourceIdentifier": "cve@mitre.org", + "published": "2024-11-26T19:15:31.127", + "lastModified": "2024-11-26T20:15:34.050", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A cross-site scripting (XSS) vulnerability in the Article module of SPIP v4.3.3 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Title parameter." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 4.8, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "HIGH", + "userInteraction": "REQUIRED", + "scope": "CHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.7, + "impactScore": 2.7 + } + ] + }, + "weaknesses": [ + { + "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "type": "Secondary", + "description": [ + { + "lang": "en", + "value": "CWE-79" + } + ] + } + ], + "references": [ + { + "url": "https://grimthereaperteam.medium.com/ec1e8714c02e", + "source": "cve@mitre.org" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-538xx/CVE-2024-53844.json b/CVE-2024/CVE-2024-538xx/CVE-2024-53844.json new file mode 100644 index 00000000000..d285e9d4743 --- /dev/null +++ b/CVE-2024/CVE-2024-538xx/CVE-2024-53844.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-53844", + "sourceIdentifier": "security-advisories@github.com", + "published": "2024-11-26T19:15:31.463", + "lastModified": "2024-11-26T19:15:31.463", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "E.D.D.I (Enhanced Dialog Driven Interface) is a middleware to connect and manage LLM API bots. A path traversal vulnerability exists in the backup export functionality of EDDI, as implemented in `RestExportService.java`. This vulnerability allows an attacker to access sensitive files on the server by manipulating the `botFilename` parameter in requests. The application fails to sanitize user input, enabling malicious inputs such as `..%2f..%2fetc%2fpasswd` to access arbitrary files. However, the **severity of this vulnerability is significantly limited** because EDDI typically runs within a **Docker container**, which provides additional layers of isolation and restricted permissions. As a result, while this vulnerability exposes files within the container, it does not inherently threaten the underlying host system or other containers. A patch is required to sanitize and validate the botFilename input parameter. Users should ensure they are using version 5.4 which contains this patdch. For temporary mitigation, access to the vulnerable endpoint should be restricted through firewall rules or authentication mechanisms." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "security-advisories@github.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", + "baseScore": 6.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "availabilityImpact": "LOW" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.4 + } + ] + }, + "weaknesses": [ + { + "source": "security-advisories@github.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-22" + } + ] + } + ], + "references": [ + { + "url": "https://github.com/labsai/EDDI/blob/release/5.3.3/src/main/java/ai/labs/eddi/backup/impl/RestExportService.java#L95", + "source": "security-advisories@github.com" + }, + { + "url": "https://github.com/labsai/EDDI/security/advisories/GHSA-49qh-39wc-4p8j", + "source": "security-advisories@github.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-539xx/CVE-2024-53901.json b/CVE-2024/CVE-2024-539xx/CVE-2024-53901.json index cbbcebb04db..760880f1acf 100644 --- a/CVE-2024/CVE-2024-539xx/CVE-2024-53901.json +++ b/CVE-2024/CVE-2024-539xx/CVE-2024-53901.json @@ -2,16 +2,41 @@ "id": "CVE-2024-53901", "sourceIdentifier": "cve@mitre.org", "published": "2024-11-24T17:15:04.990", - "lastModified": "2024-11-24T19:15:05.193", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:52:01.653", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "The Imager package before 1.025 for Perl has a heap-based buffer overflow leading to denial of service, or possibly unspecified other impact, when the trim() method is called on a crafted input image." + }, + { + "lang": "es", + "value": "El paquete Imager anterior a 1.025 para Perl tiene un desbordamiento de b\u00fafer basado en mont\u00f3n que provoca una denegaci\u00f3n de servicio, o posiblemente otro impacto no especificado, cuando se llama al m\u00e9todo trim() en una imagen de entrada manipulado." } ], "metrics": { "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", + "baseScore": 5.5, + "baseSeverity": "MEDIUM", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 3.6 + }, { "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", @@ -35,6 +60,16 @@ ] }, "weaknesses": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-787" + } + ] + }, { "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", @@ -46,22 +81,54 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tonyc:imager:*:*:*:*:*:perl:*:*", + "versionEndExcluding": "1.025", + "matchCriteriaId": "68B8FA76-6DF7-4B1D-B577-641B6B4B6891" + } + ] + } + ] + } + ], "references": [ { "url": "https://github.com/briandfoy/cpan-security-advisory/issues/167", - "source": "cve@mitre.org" + "source": "cve@mitre.org", + "tags": [ + "Issue Tracking", + "Patch" + ] }, { "url": "https://github.com/briandfoy/cpan-security-advisory/issues/171", - "source": "cve@mitre.org" + "source": "cve@mitre.org", + "tags": [ + "Issue Tracking" + ] }, { "url": "https://github.com/tonycoz/imager/issues/534", - "source": "cve@mitre.org" + "source": "cve@mitre.org", + "tags": [ + "Exploit", + "Issue Tracking" + ] }, { "url": "https://metacpan.org/release/TONYC/Imager-1.025/changes", - "source": "cve@mitre.org" + "source": "cve@mitre.org", + "tags": [ + "Release Notes" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-72xx/CVE-2024-7253.json b/CVE-2024/CVE-2024-72xx/CVE-2024-7253.json index 6df512f38b7..5f1aebc7980 100644 --- a/CVE-2024/CVE-2024-72xx/CVE-2024-7253.json +++ b/CVE-2024/CVE-2024-72xx/CVE-2024-7253.json @@ -2,15 +2,42 @@ "id": "CVE-2024-7253", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T22:15:17.667", - "lastModified": "2024-11-22T22:15:17.667", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:00:48.783", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "NoMachine Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of NoMachine. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within nxnode.exe. The process loads a library from an unsecured location. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM.\n\n. Was ZDI-CAN-24039." + }, + { + "lang": "es", + "value": "Vulnerabilidad de escalada de privilegios locales en elementos de ruta de b\u00fasqueda no controlados de NoMachine. Esta vulnerabilidad permite a los atacantes locales escalar privilegios en las instalaciones afectadas de NoMachine. Un atacante primero debe obtener la capacidad de ejecutar c\u00f3digo con pocos privilegios en el sistema de destino para explotar esta vulnerabilidad. La falla espec\u00edfica existe en nxnode.exe. El proceso carga una librer\u00eda desde una ubicaci\u00f3n no segura. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios y ejecutar c\u00f3digo arbitrario en el contexto de SYSTEM. . Era ZDI-CAN-24039." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,14 +73,46 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:nomachine:nomachine:*:*:*:*:*:*:*:*", + "versionStartIncluding": "7.0", + "versionEndExcluding": "7.15.6", + "matchCriteriaId": "79B7AE5B-8F21-495C-A819-4FCD63DCFFE8" + }, + { + "vulnerable": true, + "criteria": "cpe:2.3:a:nomachine:nomachine:*:*:*:*:*:*:*:*", + "versionStartIncluding": "8.0", + "versionEndExcluding": "8.12.3", + "matchCriteriaId": "32F804FE-5441-4B6E-84C2-921A269AD395" + } + ] + } + ] + } + ], "references": [ { "url": "https://kb.nomachine.com/TR07V11184", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Vendor Advisory" + ] }, { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1042/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-73xx/CVE-2024-7352.json b/CVE-2024/CVE-2024-73xx/CVE-2024-7352.json index d69c8009831..14af4a714c8 100644 --- a/CVE-2024/CVE-2024-73xx/CVE-2024-7352.json +++ b/CVE-2024/CVE-2024-73xx/CVE-2024-7352.json @@ -2,15 +2,42 @@ "id": "CVE-2024-7352", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T22:15:17.780", - "lastModified": "2024-11-22T22:15:17.780", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:58:09.063", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23550." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remoto fuera de los l\u00edmites en el an\u00e1lisis de archivos PDF del editor PDF-XChange. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas del editor PDF-XChange. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos PDF. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una escritura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-23550." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:pdf-xchange:pdf-xchange_editor:*:*:*:*:*:*:*:*", + "versionEndIncluding": "10.3.0.385", + "matchCriteriaId": "513B6750-2B2F-445B-9F15-0CE1FB487192" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1037/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-81xx/CVE-2024-8114.json b/CVE-2024/CVE-2024-81xx/CVE-2024-8114.json new file mode 100644 index 00000000000..c37fc2449ba --- /dev/null +++ b/CVE-2024/CVE-2024-81xx/CVE-2024-8114.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-8114", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:31.660", + "lastModified": "2024-11-26T19:15:31.660", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue has been discovered in GitLab CE/EE affecting all versions from 8.12 before 17.4.5, 17.5 before 17.5.3, and 17.6 before 17.6.1. This issue allows an attacker with access to a victim's Personal Access Token (PAT) to escalate privileges." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N", + "baseScore": 8.2, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "CHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.8 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-862" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/480494", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2649822", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-81xx/CVE-2024-8177.json b/CVE-2024/CVE-2024-81xx/CVE-2024-8177.json new file mode 100644 index 00000000000..a960512b264 --- /dev/null +++ b/CVE-2024/CVE-2024-81xx/CVE-2024-8177.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-8177", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:31.860", + "lastModified": "2024-11-26T19:15:31.860", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "An issue was discovered in GitLab CE/EE affecting all versions starting from 15.6 prior to 17.4.5, starting from 17.5 prior to 17.5.3, starting from 17.6 prior to 17.6.1 which could cause Denial of Service via integrating a malicious harbor registry." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", + "baseScore": 5.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.6, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-407" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/480706", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2637996", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-81xx/CVE-2024-8190.json b/CVE-2024/CVE-2024-81xx/CVE-2024-8190.json index bf23ab65d10..fbc4e4c42ad 100644 --- a/CVE-2024/CVE-2024-81xx/CVE-2024-8190.json +++ b/CVE-2024/CVE-2024-81xx/CVE-2024-8190.json @@ -2,13 +2,9 @@ "id": "CVE-2024-8190", "sourceIdentifier": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", "published": "2024-09-10T21:15:14.697", - "lastModified": "2024-09-16T13:44:18.173", + "lastModified": "2024-11-26T19:55:46.433", "vulnStatus": "Analyzed", "cveTags": [], - "cisaExploitAdd": "2024-09-13", - "cisaActionDue": "2024-10-04", - "cisaRequiredAction": "As Ivanti CSA has reached End-of-Life status, users are urged to remove CSA 4.6.x from service or upgrade to the 5.0.x line of supported solutions, as future vulnerabilities on the 4.6.x version of CSA are unlikely to receive future security updates.", - "cisaVulnerabilityName": "Ivanti Cloud Services Appliance OS Command Injection Vulnerability", "descriptions": [ { "lang": "en", @@ -22,11 +18,13 @@ "metrics": { "cvssMetricV31": [ { - "source": "nvd@nist.gov", - "type": "Primary", + "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 7.2, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -34,19 +32,19 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 7.2, - "baseSeverity": "HIGH" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.2, "impactScore": 5.9 }, { - "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", - "type": "Secondary", + "source": "nvd@nist.gov", + "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 7.2, + "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", @@ -54,19 +52,21 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 7.2, - "baseSeverity": "HIGH" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 1.2, "impactScore": 5.9 } ] }, + "cisaExploitAdd": "2024-09-13", + "cisaActionDue": "2024-10-04", + "cisaRequiredAction": "As Ivanti CSA has reached End-of-Life status, users are urged to remove CSA 4.6.x from service or upgrade to the 5.0.x line of supported solutions, as future vulnerabilities on the 4.6.x version of CSA are unlikely to receive future security updates.", + "cisaVulnerabilityName": "Ivanti Cloud Services Appliance OS Command Injection Vulnerability", "weaknesses": [ { - "source": "nvd@nist.gov", - "type": "Primary", + "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", + "type": "Secondary", "description": [ { "lang": "en", @@ -75,8 +75,8 @@ ] }, { - "source": "3c1d8aa1-5a33-4ea4-8992-aadd6440af75", - "type": "Secondary", + "source": "nvd@nist.gov", + "type": "Primary", "description": [ { "lang": "en", @@ -114,6 +114,14 @@ "tags": [ "Vendor Advisory" ] + }, + { + "url": "https://www.cisa.gov/news-events/alerts/2024/09/13/ivanti-releases-security-update-cloud-services-appliance", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Third Party Advisory", + "US Government Resource" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-82xx/CVE-2024-8237.json b/CVE-2024/CVE-2024-82xx/CVE-2024-8237.json new file mode 100644 index 00000000000..7a657bdfd06 --- /dev/null +++ b/CVE-2024/CVE-2024-82xx/CVE-2024-8237.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-8237", + "sourceIdentifier": "cve@gitlab.com", + "published": "2024-11-26T19:15:32.033", + "lastModified": "2024-11-26T19:15:32.033", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A Denial of Service (DoS) issue has been discovered in GitLab CE/EE affecting all versions prior to 12.6 prior to 17.4.5, 17.5 prior to 17.5.3, and 17.6 prior to 17.6.1. An attacker could cause a denial of service with a crafted cargo.toml file." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "cve@gitlab.com", + "type": "Secondary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", + "baseScore": 6.5, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "LOW", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 2.8, + "impactScore": 3.6 + } + ] + }, + "weaknesses": [ + { + "source": "cve@gitlab.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-407" + } + ] + } + ], + "references": [ + { + "url": "https://gitlab.com/gitlab-org/gitlab/-/issues/480900", + "source": "cve@gitlab.com" + }, + { + "url": "https://hackerone.com/reports/2648665", + "source": "cve@gitlab.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-86xx/CVE-2024-8676.json b/CVE-2024/CVE-2024-86xx/CVE-2024-8676.json new file mode 100644 index 00000000000..bfee8dd5427 --- /dev/null +++ b/CVE-2024/CVE-2024-86xx/CVE-2024-8676.json @@ -0,0 +1,60 @@ +{ + "id": "CVE-2024-8676", + "sourceIdentifier": "secalert@redhat.com", + "published": "2024-11-26T20:15:34.260", + "lastModified": "2024-11-26T20:15:34.260", + "vulnStatus": "Received", + "cveTags": [], + "descriptions": [ + { + "lang": "en", + "value": "A vulnerability was found in CRI-O, where it can be requested to take a checkpoint archive of a container and later be asked to restore it. When it does that restoration, it attempts to restore the mounts from the restore archive instead of the pod request. As a result, the validations run on the pod spec, verifying that the pod has access to the mounts it specifies are not applicable to a restored container. This flaw allows a malicious user to trick CRI-O into restoring a pod that doesn't have access to host mounts. The user needs access to the kubelet or cri-o socket to call the restore endpoint and trigger the restore." + } + ], + "metrics": { + "cvssMetricV31": [ + { + "source": "secalert@redhat.com", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N", + "baseScore": 7.4, + "baseSeverity": "HIGH", + "attackVector": "NETWORK", + "attackComplexity": "HIGH", + "privilegesRequired": "NONE", + "userInteraction": "NONE", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.2, + "impactScore": 5.2 + } + ] + }, + "weaknesses": [ + { + "source": "secalert@redhat.com", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-285" + } + ] + } + ], + "references": [ + { + "url": "https://access.redhat.com/security/cve/CVE-2024-8676", + "source": "secalert@redhat.com" + }, + { + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2313842", + "source": "secalert@redhat.com" + } + ] +} \ No newline at end of file diff --git a/CVE-2024/CVE-2024-88xx/CVE-2024-8883.json b/CVE-2024/CVE-2024-88xx/CVE-2024-8883.json index 94928243763..b7b53650695 100644 --- a/CVE-2024/CVE-2024-88xx/CVE-2024-8883.json +++ b/CVE-2024/CVE-2024-88xx/CVE-2024-8883.json @@ -2,7 +2,7 @@ "id": "CVE-2024-8883", "sourceIdentifier": "secalert@redhat.com", "published": "2024-09-19T16:15:06.403", - "lastModified": "2024-11-05T04:15:03.467", + "lastModified": "2024-11-26T19:15:32.253", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ @@ -19,10 +19,12 @@ "cvssMetricV31": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 6.1, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -30,9 +32,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 6.1, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.7 @@ -43,6 +43,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 6.1, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -50,9 +52,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 6.1, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.7 @@ -62,7 +62,7 @@ "weaknesses": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -139,6 +139,14 @@ } ], "references": [ + { + "url": "https://access.redhat.com/errata/RHSA-2024:10385", + "source": "secalert@redhat.com" + }, + { + "url": "https://access.redhat.com/errata/RHSA-2024:10386", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/errata/RHSA-2024:6878", "source": "secalert@redhat.com", diff --git a/CVE-2024/CVE-2024-91xx/CVE-2024-9114.json b/CVE-2024/CVE-2024-91xx/CVE-2024-9114.json index bab9dd48843..87556934c62 100644 --- a/CVE-2024/CVE-2024-91xx/CVE-2024-9114.json +++ b/CVE-2024/CVE-2024-91xx/CVE-2024-9114.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9114", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T22:15:20.107", - "lastModified": "2024-11-22T22:15:20.107", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:58:01.907", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "FastStone Image Viewer GIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of GIF files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25145." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remoto fuera de los l\u00edmites en el an\u00e1lisis de archivos GIF de FastStone Image Viewer. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de FastStone Image Viewer. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos GIF. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una escritura m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-25145." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,31 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:faststone:image_viewer:7.8:*:*:*:*:*:*:*", + "matchCriteriaId": "FECE2BD8-9A5C-43AA-994C-8F3D2D6DE135" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1275/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-93xx/CVE-2024-9341.json b/CVE-2024/CVE-2024-93xx/CVE-2024-9341.json index 95ed5519b0c..dabb14d23d6 100644 --- a/CVE-2024/CVE-2024-93xx/CVE-2024-9341.json +++ b/CVE-2024/CVE-2024-93xx/CVE-2024-9341.json @@ -2,8 +2,9 @@ "id": "CVE-2024-9341", "sourceIdentifier": "secalert@redhat.com", "published": "2024-10-01T19:15:09.500", - "lastModified": "2024-11-22T19:34:40.520", - "vulnStatus": "Analyzed", + "lastModified": "2024-11-26T19:15:32.637", + "vulnStatus": "Modified", + "cveTags": [], "descriptions": [ { "lang": "en", @@ -61,7 +62,7 @@ "weaknesses": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -138,6 +139,10 @@ } ], "references": [ + { + "url": "https://access.redhat.com/errata/RHSA-2024:10147", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/errata/RHSA-2024:7925", "source": "secalert@redhat.com", diff --git a/CVE-2024/CVE-2024-94xx/CVE-2024-9407.json b/CVE-2024/CVE-2024-94xx/CVE-2024-9407.json index ff961f4f0ab..2cd49bb7cae 100644 --- a/CVE-2024/CVE-2024-94xx/CVE-2024-9407.json +++ b/CVE-2024/CVE-2024-94xx/CVE-2024-9407.json @@ -2,7 +2,7 @@ "id": "CVE-2024-9407", "sourceIdentifier": "secalert@redhat.com", "published": "2024-10-01T21:15:08.530", - "lastModified": "2024-11-12T18:15:48.057", + "lastModified": "2024-11-26T19:15:32.847", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [ @@ -19,10 +19,12 @@ "cvssMetricV31": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:L/A:N", + "baseScore": 4.7, + "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "HIGH", @@ -30,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 4.7, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 0.5, "impactScore": 4.2 @@ -42,7 +42,7 @@ "weaknesses": [ { "source": "secalert@redhat.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -52,6 +52,10 @@ } ], "references": [ + { + "url": "https://access.redhat.com/errata/RHSA-2024:10147", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/errata/RHSA-2024:8846", "source": "secalert@redhat.com" @@ -68,6 +72,10 @@ "url": "https://access.redhat.com/errata/RHSA-2024:9459", "source": "secalert@redhat.com" }, + { + "url": "https://access.redhat.com/errata/RHSA-2024:9926", + "source": "secalert@redhat.com" + }, { "url": "https://access.redhat.com/security/cve/CVE-2024-9407", "source": "secalert@redhat.com" diff --git a/CVE-2024/CVE-2024-94xx/CVE-2024-9474.json b/CVE-2024/CVE-2024-94xx/CVE-2024-9474.json index 215cbe1b8ca..afb52520ad9 100644 --- a/CVE-2024/CVE-2024-94xx/CVE-2024-9474.json +++ b/CVE-2024/CVE-2024-94xx/CVE-2024-9474.json @@ -2,8 +2,9 @@ "id": "CVE-2024-9474", "sourceIdentifier": "psirt@paloaltonetworks.com", "published": "2024-11-18T16:15:29.780", - "lastModified": "2024-11-24T15:15:08.457", - "vulnStatus": "Modified", + "lastModified": "2024-11-26T19:55:09.117", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", @@ -205,7 +206,11 @@ }, { "url": "https://unit42.paloaltonetworks.com/cve-2024-0012-cve-2024-9474/", - "source": "af854a3a-2127-422b-91ae-364da2661108" + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Press/Media Coverage", + "Vendor Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-96xx/CVE-2024-9653.json b/CVE-2024/CVE-2024-96xx/CVE-2024-9653.json index 789eb0b5baa..e30d6154d33 100644 --- a/CVE-2024/CVE-2024-96xx/CVE-2024-9653.json +++ b/CVE-2024/CVE-2024-96xx/CVE-2024-9653.json @@ -2,13 +2,17 @@ "id": "CVE-2024-9653", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-20T06:15:16.603", - "lastModified": "2024-11-20T06:15:16.603", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:37:07.913", + "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [ { "lang": "en", "value": "The Restaurant Menu \u2013 Food Ordering System \u2013 Table Reservation plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'action' parameter in all versions up to, and including, 2.4.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link." + }, + { + "lang": "es", + "value": "El complemento Restaurant Menu \u2013 Food Ordering System \u2013 Table Reservation para WordPress es vulnerable a Cross-Site Scripting reflejado a trav\u00e9s del par\u00e1metro 'action' en todas las versiones hasta la 2.4.2 incluida, debido a una desinfecci\u00f3n de entrada y un escape de salida insuficientes. Esto permite que atacantes no autenticados inyecten secuencias de comandos web arbitrarias en p\u00e1ginas que se ejecutan si logran enga\u00f1ar a un usuario para que realice una acci\u00f3n, como hacer clic en un enlace." } ], "metrics": { @@ -19,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", + "baseScore": 6.1, + "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -26,9 +32,7 @@ "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", - "availabilityImpact": "NONE", - "baseScore": 6.1, - "baseSeverity": "MEDIUM" + "availabilityImpact": "NONE" }, "exploitabilityScore": 2.8, "impactScore": 2.7 @@ -47,14 +51,38 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:oracle:restaurant_menu_-_food_ordering_system_-_table_reservation:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "2.4.3", + "matchCriteriaId": "2AF4EA74-5116-4099-9333-BBE24ED84003" + } + ] + } + ] + } + ], "references": [ { "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3186456%40menu-ordering-reservations&new=3186456%40menu-ordering-reservations&sfp_email=&sfph_mail=", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Patch" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/11ccafd9-dad5-4b7d-b913-7821dd52d12b?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-96xx/CVE-2024-9680.json b/CVE-2024/CVE-2024-96xx/CVE-2024-9680.json index 2da8f3fb259..6cf8a1de03f 100644 --- a/CVE-2024/CVE-2024-96xx/CVE-2024-9680.json +++ b/CVE-2024/CVE-2024-96xx/CVE-2024-9680.json @@ -2,13 +2,9 @@ "id": "CVE-2024-9680", "sourceIdentifier": "security@mozilla.org", "published": "2024-10-09T13:15:12.090", - "lastModified": "2024-11-19T17:29:12.207", + "lastModified": "2024-11-26T19:53:56.537", "vulnStatus": "Analyzed", "cveTags": [], - "cisaExploitAdd": "2024-10-15", - "cisaActionDue": "2024-11-05", - "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.", - "cisaVulnerabilityName": "Mozilla Firefox Use-After-Free Vulnerability", "descriptions": [ { "lang": "en", @@ -27,6 +23,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -34,9 +32,7 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 5.9 @@ -47,6 +43,8 @@ "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "baseScore": 9.8, + "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", @@ -54,15 +52,17 @@ "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", - "availabilityImpact": "HIGH", - "baseScore": 9.8, - "baseSeverity": "CRITICAL" + "availabilityImpact": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 5.9 } ] }, + "cisaExploitAdd": "2024-10-15", + "cisaActionDue": "2024-11-05", + "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.", + "cisaVulnerabilityName": "Mozilla Firefox Use-After-Free Vulnerability", "weaknesses": [ { "source": "nvd@nist.gov", @@ -132,6 +132,21 @@ ] } ] + }, + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", + "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED" + } + ] + } + ] } ], "references": [ @@ -147,7 +162,9 @@ "url": "https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2024-49039", "source": "security@mozilla.org", "tags": [ - "Not Applicable" + "Not Applicable", + "Patch", + "Vendor Advisory" ] }, { @@ -163,6 +180,20 @@ "tags": [ "Vendor Advisory" ] + }, + { + "url": "https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=281992", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Issue Tracking" + ] + }, + { + "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00005.html", + "source": "af854a3a-2127-422b-91ae-364da2661108", + "tags": [ + "Mailing List" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9751.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9751.json index e851b83b4f5..617cc843def 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9751.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9751.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9751", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.093", - "lastModified": "2024-11-22T21:15:29.093", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:57:50.440", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of JP2 files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24468." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remoto en el an\u00e1lisis de archivos JP2 de Tungsten Automation Power PDF fuera de los l\u00edmites. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos JP2. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede resultar en una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-24468." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1.0.1", + "matchCriteriaId": "A8BC369E-2EB0-4E2F-A071-702F62805271" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1363/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9752.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9752.json index b6190cd5df1..c31279975a3 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9752.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9752.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9752", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.213", - "lastModified": "2024-11-22T21:15:29.213", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:57:56.567", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of JPG files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24469." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en el an\u00e1lisis de archivos JPG de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos JPG. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24469." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 3.3, + "baseSeverity": "LOW", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1354/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9753.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9753.json index 08fa11484f8..2fb6910b323 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9753.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9753.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9753", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.333", - "lastModified": "2024-11-22T21:15:29.333", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:58:47.057", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24470." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en el an\u00e1lisis de archivos PDF de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos PDF. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24470." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 3.3, + "baseSeverity": "LOW", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1360/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9754.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9754.json index 185b0d1aa2a..6c98b36707e 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9754.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9754.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9754", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.457", - "lastModified": "2024-11-22T21:15:29.457", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:55:13.947", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24471." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en el an\u00e1lisis de archivos PDF de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos PDF. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24471." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 3.3, + "baseSeverity": "LOW", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1355/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9755.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9755.json index 91765f696d0..1856810e3f9 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9755.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9755.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9755", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.570", - "lastModified": "2024-11-22T21:15:29.570", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:53:47.730", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of JP2 files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24472." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remoto en el an\u00e1lisis de archivos JP2 de Tungsten Automation Power PDF fuera de los l\u00edmites. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos JP2. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-24472." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1.0.1", + "matchCriteriaId": "A8BC369E-2EB0-4E2F-A071-702F62805271" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1368/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9757.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9757.json index 65b134057bf..a4863c4ef43 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9757.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9757.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9757", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.683", - "lastModified": "2024-11-22T21:15:29.683", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:53:19.560", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of JP2 files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24473." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en el an\u00e1lisis de archivos JP2 de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos JP2. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un objeto asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24473." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 3.3, + "baseSeverity": "LOW", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1.0.1", + "matchCriteriaId": "A8BC369E-2EB0-4E2F-A071-702F62805271" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1367/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9758.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9758.json index 7229ca79e8a..7e10ee9046e 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9758.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9758.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9758", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.813", - "lastModified": "2024-11-22T21:15:29.813", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:41:51.187", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the handling of Annotation objects. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24474." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en anotaciones de Tungsten Automation Power PDF AcroForm. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el manejo de objetos de anotaci\u00f3n. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede resultar en una lectura m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24474." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 4.3, + "baseSeverity": "MEDIUM", + "attackVector": "NETWORK", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 2.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1361/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9759.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9759.json index 8a5b5f8a21b..1ebb3af783e 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9759.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9759.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9759", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:29.927", - "lastModified": "2024-11-22T21:15:29.927", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:57:23.673", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of GIF files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-24475." + }, + { + "lang": "es", + "value": "Vulnerabilidad de divulgaci\u00f3n de informaci\u00f3n de lectura fuera de los l\u00edmites en el an\u00e1lisis de archivos GIF de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos divulgar informaci\u00f3n confidencial sobre las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos GIF. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede provocar una lectura m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Un atacante puede aprovechar esto junto con otras vulnerabilidades para ejecutar c\u00f3digo arbitrario en el contexto del proceso actual. Era ZDI-CAN-24475." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", + "baseScore": 3.3, + "baseSeverity": "LOW", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "LOW", + "integrityImpact": "NONE", + "availabilityImpact": "NONE" + }, + "exploitabilityScore": 1.8, + "impactScore": 1.4 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1356/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9764.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9764.json index 42f6431df21..afac98fad6b 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9764.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9764.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9764", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T21:15:30.500", - "lastModified": "2024-11-22T21:15:30.500", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:58:05.673", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "Tungsten Automation Power PDF PDF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Tungsten Automation Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24480." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo despu\u00e9s de la liberaci\u00f3n del an\u00e1lisis de archivos PDF de Tungsten Automation Power PDF. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de Tungsten Automation Power PDF. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos PDF. El problema es el resultado de la falta de validaci\u00f3n de la existencia de un objeto antes de realizar operaciones en el objeto. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-24480." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,32 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:tungstenautomation:power_pdf:*:*:*:*:*:*:*:*", + "versionEndExcluding": "5.1", + "matchCriteriaId": "07AF31C9-62C2-4FCA-975B-EEFCF34B8C78" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1362/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-97xx/CVE-2024-9767.json b/CVE-2024/CVE-2024-97xx/CVE-2024-9767.json index b573b50aaed..e2f6522311f 100644 --- a/CVE-2024/CVE-2024-97xx/CVE-2024-9767.json +++ b/CVE-2024/CVE-2024-97xx/CVE-2024-9767.json @@ -2,15 +2,42 @@ "id": "CVE-2024-9767", "sourceIdentifier": "zdi-disclosures@trendmicro.com", "published": "2024-11-22T22:15:22.593", - "lastModified": "2024-11-22T22:15:22.593", - "vulnStatus": "Received", + "lastModified": "2024-11-26T20:57:03.197", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "IrfanView SID File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of SID files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23277." + }, + { + "lang": "es", + "value": "Vulnerabilidad de ejecuci\u00f3n de c\u00f3digo remoto en el an\u00e1lisis de archivos SID de IrfanView que excede los l\u00edmites de lectura. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en las instalaciones afectadas de IrfanView. Se requiere la interacci\u00f3n del usuario para explotar esta vulnerabilidad, ya que el objetivo debe visitar una p\u00e1gina maliciosa o abrir un archivo malicioso. La falla espec\u00edfica existe en el an\u00e1lisis de archivos SID. El problema es el resultado de la falta de una validaci\u00f3n adecuada de los datos proporcionados por el usuario, lo que puede resultar en una lectura m\u00e1s all\u00e1 del final de un b\u00fafer asignado. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto del proceso actual. Era ZDI-CAN-23277." } ], "metrics": { + "cvssMetricV31": [ + { + "source": "nvd@nist.gov", + "type": "Primary", + "cvssData": { + "version": "3.1", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", + "baseScore": 7.8, + "baseSeverity": "HIGH", + "attackVector": "LOCAL", + "attackComplexity": "LOW", + "privilegesRequired": "NONE", + "userInteraction": "REQUIRED", + "scope": "UNCHANGED", + "confidentialityImpact": "HIGH", + "integrityImpact": "HIGH", + "availabilityImpact": "HIGH" + }, + "exploitabilityScore": 1.8, + "impactScore": 5.9 + } + ], "cvssMetricV30": [ { "source": "zdi-disclosures@trendmicro.com", @@ -37,7 +64,7 @@ "weaknesses": [ { "source": "zdi-disclosures@trendmicro.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,10 +73,31 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:irfanview:irfanview:4.66:*:*:*:*:*:x64:*", + "matchCriteriaId": "AAEB167F-E1EF-4B14-990E-C2CE05C1BEB3" + } + ] + } + ] + } + ], "references": [ { "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1371/", - "source": "zdi-disclosures@trendmicro.com" + "source": "zdi-disclosures@trendmicro.com", + "tags": [ + "Third Party Advisory", + "VDB Entry" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-99xx/CVE-2024-9941.json b/CVE-2024/CVE-2024-99xx/CVE-2024-9941.json index 50b200aca43..22e24164341 100644 --- a/CVE-2024/CVE-2024-99xx/CVE-2024-9941.json +++ b/CVE-2024/CVE-2024-99xx/CVE-2024-9941.json @@ -2,19 +2,24 @@ "id": "CVE-2024-9941", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-23T08:15:04.197", - "lastModified": "2024-11-23T08:15:04.197", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:37:15.283", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the MJ_gmgt_add_staff_member() function in all versions up to, and including, 67.1.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to create new user accounts with the administrator role." + }, + { + "lang": "es", + "value": "El complemento WPGYM - Wordpress Gym Management System para WordPress es vulnerable a la escalada de privilegios debido a una verificaci\u00f3n de capacidad faltante en la funci\u00f3n MJ_gmgt_add_staff_member() en todas las versiones hasta la 67.1.0 incluida. Esto permite que atacantes autenticados, con acceso de nivel de suscriptor y superior, creen nuevas cuentas de usuario con el rol de administrador." } ], "metrics": { "cvssMetricV31": [ { "source": "security@wordfence.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", @@ -37,23 +42,57 @@ "weaknesses": [ { "source": "security@wordfence.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", "value": "CWE-269" } ] + }, + { + "source": "nvd@nist.gov", + "type": "Primary", + "description": [ + { + "lang": "en", + "value": "CWE-862" + } + ] + } + ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:mojoomla:wordpress_gym_management_system:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "67.2.0", + "matchCriteriaId": "C7276895-BEC5-4D99-82BE-8A4CDF5685AF" + } + ] + } + ] } ], "references": [ { "url": "https://codecanyon.net/item/-wpgym-wordpress-gym-management-system/13352964", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Product" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/cbff92c1-8492-4d0d-bd90-8fd33625bf6f?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/CVE-2024/CVE-2024-99xx/CVE-2024-9942.json b/CVE-2024/CVE-2024-99xx/CVE-2024-9942.json index 43cf22f1e58..a0f7d85439b 100644 --- a/CVE-2024/CVE-2024-99xx/CVE-2024-9942.json +++ b/CVE-2024/CVE-2024-99xx/CVE-2024-9942.json @@ -2,19 +2,24 @@ "id": "CVE-2024-9942", "sourceIdentifier": "security@wordfence.com", "published": "2024-11-23T08:15:04.390", - "lastModified": "2024-11-23T08:15:04.390", - "vulnStatus": "Received", + "lastModified": "2024-11-26T19:33:35.843", + "vulnStatus": "Analyzed", + "cveTags": [], "descriptions": [ { "lang": "en", "value": "The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the MJ_gmgt_user_avatar_image_upload() function in all versions up to, and including, 67.1.0. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected site's server which may make remote code execution possible." + }, + { + "lang": "es", + "value": "El complemento WPGYM - Wordpress Gym Management System para WordPress es vulnerable a la carga de archivos arbitrarios debido a la falta de validaci\u00f3n del tipo de archivo en la funci\u00f3n MJ_gmgt_user_avatar_image_upload() en todas las versiones hasta la 67.1.0 incluida. Esto hace posible que atacantes no autenticados carguen archivos arbitrarios en el servidor del sitio afectado, lo que puede hacer posible la ejecuci\u00f3n remota de c\u00f3digo." } ], "metrics": { "cvssMetricV31": [ { "source": "security@wordfence.com", - "type": "Primary", + "type": "Secondary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", @@ -37,7 +42,7 @@ "weaknesses": [ { "source": "security@wordfence.com", - "type": "Primary", + "type": "Secondary", "description": [ { "lang": "en", @@ -46,14 +51,38 @@ ] } ], + "configurations": [ + { + "nodes": [ + { + "operator": "OR", + "negate": false, + "cpeMatch": [ + { + "vulnerable": true, + "criteria": "cpe:2.3:a:mojoomla:wordpress_gym_management_system:*:*:*:*:*:wordpress:*:*", + "versionEndExcluding": "67.2.0", + "matchCriteriaId": "C7276895-BEC5-4D99-82BE-8A4CDF5685AF" + } + ] + } + ] + } + ], "references": [ { "url": "https://codecanyon.net/item/-wpgym-wordpress-gym-management-system/13352964", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Product" + ] }, { "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/bae5f22d-5085-4230-a7fc-5db85aa6fbdb?source=cve", - "source": "security@wordfence.com" + "source": "security@wordfence.com", + "tags": [ + "Third Party Advisory" + ] } ] } \ No newline at end of file diff --git a/README.md b/README.md index 84c11e7656c..cb62a063098 100644 --- a/README.md +++ b/README.md @@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours. ### Last Repository Update ```plain -2024-11-26T19:01:14.497043+00:00 +2024-11-26T21:01:59.977631+00:00 ``` ### Most recent CVE Modification Timestamp synchronized with NVD ```plain -2024-11-26T18:29:05.820000+00:00 +2024-11-26T20:59:50.643000+00:00 ``` ### Last Data Feed Release @@ -33,56 +33,68 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/ ### Total Number of included CVEs ```plain -271433 +271457 ``` ### CVEs added in the last Commit -Recently added CVEs: `20` - -- [CVE-2024-10878](CVE-2024/CVE-2024-108xx/CVE-2024-10878.json) (`2024-11-26T18:15:18.827`) -- [CVE-2024-11177](CVE-2024/CVE-2024-111xx/CVE-2024-11177.json) (`2024-11-26T17:15:22.473`) -- [CVE-2024-11320](CVE-2024/CVE-2024-113xx/CVE-2024-11320.json) (`2024-11-21T11:15:24.387`) -- [CVE-2024-11334](CVE-2024/CVE-2024-113xx/CVE-2024-11334.json) (`2024-11-21T11:15:24.947`) -- [CVE-2024-11354](CVE-2024/CVE-2024-113xx/CVE-2024-11354.json) (`2024-11-21T11:15:25.277`) -- [CVE-2024-11360](CVE-2024/CVE-2024-113xx/CVE-2024-11360.json) (`2024-11-21T11:15:25.663`) -- [CVE-2024-11365](CVE-2024/CVE-2024-113xx/CVE-2024-11365.json) (`2024-11-21T11:15:26.047`) -- [CVE-2024-11370](CVE-2024/CVE-2024-113xx/CVE-2024-11370.json) (`2024-11-21T11:15:26.340`) -- [CVE-2024-11371](CVE-2024/CVE-2024-113xx/CVE-2024-11371.json) (`2024-11-21T11:15:26.653`) -- [CVE-2024-11385](CVE-2024/CVE-2024-113xx/CVE-2024-11385.json) (`2024-11-21T11:15:26.943`) -- [CVE-2024-11388](CVE-2024/CVE-2024-113xx/CVE-2024-11388.json) (`2024-11-21T11:15:27.240`) -- [CVE-2024-11407](CVE-2024/CVE-2024-114xx/CVE-2024-11407.json) (`2024-11-26T17:15:22.830`) -- [CVE-2024-48288](CVE-2024/CVE-2024-482xx/CVE-2024-48288.json) (`2024-11-21T18:15:10.193`) -- [CVE-2024-51058](CVE-2024/CVE-2024-510xx/CVE-2024-51058.json) (`2024-11-26T18:15:19.440`) -- [CVE-2024-53335](CVE-2024/CVE-2024-533xx/CVE-2024-53335.json) (`2024-11-21T18:15:14.153`) -- [CVE-2024-53365](CVE-2024/CVE-2024-533xx/CVE-2024-53365.json) (`2024-11-26T17:15:26.123`) -- [CVE-2024-53425](CVE-2024/CVE-2024-534xx/CVE-2024-53425.json) (`2024-11-21T14:15:18.303`) -- [CVE-2024-53426](CVE-2024/CVE-2024-534xx/CVE-2024-53426.json) (`2024-11-21T14:15:18.527`) -- [CVE-2024-53555](CVE-2024/CVE-2024-535xx/CVE-2024-53555.json) (`2024-11-26T17:15:26.300`) -- [CVE-2024-9768](CVE-2024/CVE-2024-97xx/CVE-2024-9768.json) (`2024-11-21T11:15:37.987`) +Recently added CVEs: `24` + +- [CVE-2019-17082](CVE-2019/CVE-2019-170xx/CVE-2019-17082.json) (`2024-11-26T20:15:19.957`) +- [CVE-2024-10240](CVE-2024/CVE-2024-102xx/CVE-2024-10240.json) (`2024-11-26T20:15:24.487`) +- [CVE-2024-10898](CVE-2024/CVE-2024-108xx/CVE-2024-10898.json) (`2024-11-21T11:15:23.610`) +- [CVE-2024-11145](CVE-2024/CVE-2024-111xx/CVE-2024-11145.json) (`2024-11-26T20:15:25.270`) +- [CVE-2024-11668](CVE-2024/CVE-2024-116xx/CVE-2024-11668.json) (`2024-11-26T19:15:22.027`) +- [CVE-2024-11669](CVE-2024/CVE-2024-116xx/CVE-2024-11669.json) (`2024-11-26T19:15:22.367`) +- [CVE-2024-11742](CVE-2024/CVE-2024-117xx/CVE-2024-11742.json) (`2024-11-26T20:15:25.703`) +- [CVE-2024-11743](CVE-2024/CVE-2024-117xx/CVE-2024-11743.json) (`2024-11-26T20:15:25.930`) +- [CVE-2024-11828](CVE-2024/CVE-2024-118xx/CVE-2024-11828.json) (`2024-11-26T19:15:22.910`) +- [CVE-2024-32965](CVE-2024/CVE-2024-329xx/CVE-2024-32965.json) (`2024-11-26T19:15:23.343`) +- [CVE-2024-48747](CVE-2024/CVE-2024-487xx/CVE-2024-48747.json) (`2024-11-21T15:15:32.423`) +- [CVE-2024-49035](CVE-2024/CVE-2024-490xx/CVE-2024-49035.json) (`2024-11-26T20:15:31.763`) +- [CVE-2024-49038](CVE-2024/CVE-2024-490xx/CVE-2024-49038.json) (`2024-11-26T20:15:31.943`) +- [CVE-2024-49052](CVE-2024/CVE-2024-490xx/CVE-2024-49052.json) (`2024-11-26T20:15:32.723`) +- [CVE-2024-49053](CVE-2024/CVE-2024-490xx/CVE-2024-49053.json) (`2024-11-26T20:15:32.890`) +- [CVE-2024-52008](CVE-2024/CVE-2024-520xx/CVE-2024-52008.json) (`2024-11-26T19:15:29.583`) +- [CVE-2024-53267](CVE-2024/CVE-2024-532xx/CVE-2024-53267.json) (`2024-11-26T19:15:30.473`) +- [CVE-2024-53619](CVE-2024/CVE-2024-536xx/CVE-2024-53619.json) (`2024-11-26T19:15:30.727`) +- [CVE-2024-53620](CVE-2024/CVE-2024-536xx/CVE-2024-53620.json) (`2024-11-26T19:15:31.127`) +- [CVE-2024-53844](CVE-2024/CVE-2024-538xx/CVE-2024-53844.json) (`2024-11-26T19:15:31.463`) +- [CVE-2024-8114](CVE-2024/CVE-2024-81xx/CVE-2024-8114.json) (`2024-11-26T19:15:31.660`) +- [CVE-2024-8177](CVE-2024/CVE-2024-81xx/CVE-2024-8177.json) (`2024-11-26T19:15:31.860`) +- [CVE-2024-8237](CVE-2024/CVE-2024-82xx/CVE-2024-8237.json) (`2024-11-26T19:15:32.033`) +- [CVE-2024-8676](CVE-2024/CVE-2024-86xx/CVE-2024-8676.json) (`2024-11-26T20:15:34.260`) ### CVEs modified in the last Commit -Recently modified CVEs: `17` - -- [CVE-2020-10367](CVE-2020/CVE-2020-103xx/CVE-2020-10367.json) (`2024-11-26T18:15:17.033`) -- [CVE-2020-10368](CVE-2020/CVE-2020-103xx/CVE-2020-10368.json) (`2024-11-26T18:15:17.463`) -- [CVE-2020-10369](CVE-2020/CVE-2020-103xx/CVE-2020-10369.json) (`2024-11-26T18:15:17.697`) -- [CVE-2021-27704](CVE-2021/CVE-2021-277xx/CVE-2021-27704.json) (`2024-11-26T18:15:17.960`) -- [CVE-2023-37305](CVE-2023/CVE-2023-373xx/CVE-2023-37305.json) (`2024-11-26T17:15:19.303`) -- [CVE-2024-11233](CVE-2024/CVE-2024-112xx/CVE-2024-11233.json) (`2024-11-26T18:26:37.783`) -- [CVE-2024-11236](CVE-2024/CVE-2024-112xx/CVE-2024-11236.json) (`2024-11-26T18:29:05.820`) -- [CVE-2024-11706](CVE-2024/CVE-2024-117xx/CVE-2024-11706.json) (`2024-11-26T17:15:23.010`) -- [CVE-2024-29220](CVE-2024/CVE-2024-292xx/CVE-2024-29220.json) (`2024-11-26T18:15:19.007`) -- [CVE-2024-39702](CVE-2024/CVE-2024-397xx/CVE-2024-39702.json) (`2024-11-26T18:15:19.193`) -- [CVE-2024-47248](CVE-2024/CVE-2024-472xx/CVE-2024-47248.json) (`2024-11-26T17:15:24.027`) -- [CVE-2024-47249](CVE-2024/CVE-2024-472xx/CVE-2024-47249.json) (`2024-11-26T17:15:24.223`) -- [CVE-2024-47250](CVE-2024/CVE-2024-472xx/CVE-2024-47250.json) (`2024-11-26T17:15:24.420`) -- [CVE-2024-51072](CVE-2024/CVE-2024-510xx/CVE-2024-51072.json) (`2024-11-26T18:15:19.603`) -- [CVE-2024-51569](CVE-2024/CVE-2024-515xx/CVE-2024-51569.json) (`2024-11-26T17:15:25.053`) -- [CVE-2024-52765](CVE-2024/CVE-2024-527xx/CVE-2024-52765.json) (`2024-11-26T17:15:25.557`) -- [CVE-2024-53899](CVE-2024/CVE-2024-538xx/CVE-2024-53899.json) (`2024-11-26T18:23:09.517`) +Recently modified CVEs: `55` + +- [CVE-2024-52677](CVE-2024/CVE-2024-526xx/CVE-2024-52677.json) (`2024-11-26T19:15:30.253`) +- [CVE-2024-53365](CVE-2024/CVE-2024-533xx/CVE-2024-53365.json) (`2024-11-26T20:15:33.650`) +- [CVE-2024-53901](CVE-2024/CVE-2024-539xx/CVE-2024-53901.json) (`2024-11-26T19:52:01.653`) +- [CVE-2024-7253](CVE-2024/CVE-2024-72xx/CVE-2024-7253.json) (`2024-11-26T20:00:48.783`) +- [CVE-2024-7352](CVE-2024/CVE-2024-73xx/CVE-2024-7352.json) (`2024-11-26T20:58:09.063`) +- [CVE-2024-8190](CVE-2024/CVE-2024-81xx/CVE-2024-8190.json) (`2024-11-26T19:55:46.433`) +- [CVE-2024-8883](CVE-2024/CVE-2024-88xx/CVE-2024-8883.json) (`2024-11-26T19:15:32.253`) +- [CVE-2024-9114](CVE-2024/CVE-2024-91xx/CVE-2024-9114.json) (`2024-11-26T20:58:01.907`) +- [CVE-2024-9341](CVE-2024/CVE-2024-93xx/CVE-2024-9341.json) (`2024-11-26T19:15:32.637`) +- [CVE-2024-9407](CVE-2024/CVE-2024-94xx/CVE-2024-9407.json) (`2024-11-26T19:15:32.847`) +- [CVE-2024-9474](CVE-2024/CVE-2024-94xx/CVE-2024-9474.json) (`2024-11-26T19:55:09.117`) +- [CVE-2024-9653](CVE-2024/CVE-2024-96xx/CVE-2024-9653.json) (`2024-11-26T20:37:07.913`) +- [CVE-2024-9680](CVE-2024/CVE-2024-96xx/CVE-2024-9680.json) (`2024-11-26T19:53:56.537`) +- [CVE-2024-9751](CVE-2024/CVE-2024-97xx/CVE-2024-9751.json) (`2024-11-26T20:57:50.440`) +- [CVE-2024-9752](CVE-2024/CVE-2024-97xx/CVE-2024-9752.json) (`2024-11-26T20:57:56.567`) +- [CVE-2024-9753](CVE-2024/CVE-2024-97xx/CVE-2024-9753.json) (`2024-11-26T20:58:47.057`) +- [CVE-2024-9754](CVE-2024/CVE-2024-97xx/CVE-2024-9754.json) (`2024-11-26T20:55:13.947`) +- [CVE-2024-9755](CVE-2024/CVE-2024-97xx/CVE-2024-9755.json) (`2024-11-26T20:53:47.730`) +- [CVE-2024-9757](CVE-2024/CVE-2024-97xx/CVE-2024-9757.json) (`2024-11-26T20:53:19.560`) +- [CVE-2024-9758](CVE-2024/CVE-2024-97xx/CVE-2024-9758.json) (`2024-11-26T20:41:51.187`) +- [CVE-2024-9759](CVE-2024/CVE-2024-97xx/CVE-2024-9759.json) (`2024-11-26T20:57:23.673`) +- [CVE-2024-9764](CVE-2024/CVE-2024-97xx/CVE-2024-9764.json) (`2024-11-26T20:58:05.673`) +- [CVE-2024-9767](CVE-2024/CVE-2024-97xx/CVE-2024-9767.json) (`2024-11-26T20:57:03.197`) +- [CVE-2024-9941](CVE-2024/CVE-2024-99xx/CVE-2024-9941.json) (`2024-11-26T19:37:15.283`) +- [CVE-2024-9942](CVE-2024/CVE-2024-99xx/CVE-2024-9942.json) (`2024-11-26T19:33:35.843`) ## Download and Usage diff --git a/_state.csv b/_state.csv index 2296efd7e29..088c51cd8f1 100644 --- a/_state.csv +++ b/_state.csv @@ -134806,6 +134806,7 @@ CVE-2019-17075,0,0,6c67e370139775cd1e925938fb001d4b71b771245e24ddacd568d40b2effd CVE-2019-17076,0,0,d84b180305c73904726454e82d5db7b7f8f542bd8c83f33d78678c7635f39bd1,2020-01-13T15:30:21.473000 CVE-2019-1708,0,0,9006a2ba53e0870429edd5bba0f147f1eb1f6eda4c7196558eaea613ab4ba050,2024-11-21T04:37:08.910000 CVE-2019-17080,0,0,2a488ea23d390e1fb88429fbe7a37b7acbc8d07ffeb4e88dc3950d50eca4f037,2024-11-21T04:31:39.823000 +CVE-2019-17082,1,1,af0c24dd308979977032a4b87f2ff9cffd6c181f9ade0f88151f6b9f985d5141,2024-11-26T20:15:19.957000 CVE-2019-17085,0,0,6a579bf9a4c4beb2e5be8da2984a18f75826ebe0e03ba5336b9556afed432350,2024-11-21T04:31:39.973000 CVE-2019-17087,0,0,e986c15b9585ad0005789c9873a334fb24fa6684a91755162638e32f4ac8dcfe,2024-11-21T04:31:40.080000 CVE-2019-1709,0,0,b96c6382814fc1768b179e98a5ecda71e13ebc5999976accd8d14dc0f61909dc,2024-11-26T16:09:02.407000 @@ -145454,9 +145455,9 @@ CVE-2020-1036,0,0,c9b1b7f65e6d9c0aa1a56df760bba0f8e012447c554830b7cd8984f50a0db9 CVE-2020-10364,0,0,4ba24cfbfb975721e6dcade722a58ad941772fc4630e81aa050532fd276e8d30,2024-11-21T04:55:09.437000 CVE-2020-10365,0,0,581b357ac0e2caf1033522b386204f9e8ccf764af89face2cf8fe8ad001a5b5d,2024-11-21T04:55:09.597000 CVE-2020-10366,0,0,42291464e182f44c0418884662551cb7288fe31c7280acc7e5c3f902d7cd3546,2024-11-21T04:55:09.763000 -CVE-2020-10367,0,1,c93b79c3ba8d03c5e197fb3931e2b138d2077723568d7bb7a74f193eb314ba36,2024-11-26T18:15:17.033000 -CVE-2020-10368,0,1,b1e0ef89accf400dc50093086eaed4855297c2e622443b4b73a551ab910f6a17,2024-11-26T18:15:17.463000 -CVE-2020-10369,0,1,548a8d6e928bec8880ebce32de0ec576d732e5d835230af13c8e56ab11b80a07,2024-11-26T18:15:17.697000 +CVE-2020-10367,0,0,c93b79c3ba8d03c5e197fb3931e2b138d2077723568d7bb7a74f193eb314ba36,2024-11-26T18:15:17.033000 +CVE-2020-10368,0,0,b1e0ef89accf400dc50093086eaed4855297c2e622443b4b73a551ab910f6a17,2024-11-26T18:15:17.463000 +CVE-2020-10369,0,0,548a8d6e928bec8880ebce32de0ec576d732e5d835230af13c8e56ab11b80a07,2024-11-26T18:15:17.697000 CVE-2020-1037,0,0,6a467c4469bb4ae3deb99d919fe410ec1ac1963b384c183bb70ca79dc7adaa30,2024-11-21T05:09:36.737000 CVE-2020-10370,0,0,87a9fc1e81d9cf0f587d0be9933b7749c33d2f87fc425f3532bae1abe12eb056,2024-11-12T13:55:21.227000 CVE-2020-10372,0,0,e14b929f016137dc245141412fb6fbfe706029ec5500220dd0e8968347959b9e,2024-11-21T04:55:10.310000 @@ -172920,7 +172921,7 @@ CVE-2021-27700,0,0,c642f4c018881e338f23a81aeb03a9a8abc368c6636548183a5309bfff278 CVE-2021-27701,0,0,6aa3be533660b989495d2792b1926059dedbe8c7fe79c0ae3eec1746b5c5d1ba,2024-11-18T19:35:01.613000 CVE-2021-27702,0,0,0548d60e19988cde8ba8fdcde37222b33338b356d699d9a704ce05570224eb06,2024-11-15T22:35:02.520000 CVE-2021-27703,0,0,d62ff39918af8c0cb167f5b639fc31ed4219eb530213926a015fce97189ac0a8,2024-11-15T22:35:03.380000 -CVE-2021-27704,0,1,f2a574ca9f2082cda716e9fbce61dcbf56cf677325a2d17fdd4c7611bdbb5366,2024-11-26T18:15:17.960000 +CVE-2021-27704,0,0,f2a574ca9f2082cda716e9fbce61dcbf56cf677325a2d17fdd4c7611bdbb5366,2024-11-26T18:15:17.960000 CVE-2021-27705,0,0,0fc451b5c83532ba56dddcc5d193e275e54a51b7f6fd8bde6d30a4d168e267fa,2021-04-20T21:43:49.410000 CVE-2021-27706,0,0,350588a83c6c47e1bdcdf8294935f4152b5875d95db621a6ad2d14cc64b3e98f,2021-04-20T21:43:34.577000 CVE-2021-27707,0,0,ae0514a17394831a211dd26ac63da3a5c188670fe29c5a4901bd71a349fd837f,2021-04-20T21:43:18.270000 @@ -195607,7 +195608,7 @@ CVE-2022-26655,0,0,ff684fd3e551541b555c6f1d8e83c9dd4516b9f968dd56206b929a8c027ef CVE-2022-26656,0,0,7ed69c9a68b491b3f464a29ed426873d90ccf1bbf6ff8487eb0c5e6786f29637,2022-07-18T13:37:50.977000 CVE-2022-26657,0,0,2f7ac21b6cc4b0e24b0ddd874c708e9543304330f4cd0053f33e1a8492b91490,2022-07-18T13:37:28.867000 CVE-2022-26659,0,0,d5fcba57a57c9cfdf876412779140633c59b3b19b9f88d148654d3ab6eb0cb7f,2024-11-21T06:54:16.620000 -CVE-2022-2666,0,0,a1289e2c69b06d96dd97de796e4ba8a49f49e90c339385a77154259f40933c08,2024-05-17T02:08:47.357000 +CVE-2022-2666,0,1,8202c6c02bde86ca814dec2a97eeba0d1692e91c1cfb378e3df2a5471b559d5e,2024-11-26T20:29:57.070000 CVE-2022-26660,0,0,09337680f2235a8291a5d00d3af7c6811f9681eb3b51a304081f87472f235915,2024-11-21T06:54:16.793000 CVE-2022-26661,0,0,56dd2d5f8307164b81bb1615450bacf0421d7c0bec979428a7dc59cf78754c23,2024-11-21T06:54:16.947000 CVE-2022-26662,0,0,c002a8d09c98dfc31b8e1d090351d38d7a887a6ab14e5b0b015802e488c820bb,2024-11-21T06:54:17.103000 @@ -195616,7 +195617,7 @@ CVE-2022-26666,0,0,4451f78127a7b701619a27549151a802fffdecb72a526d00b2b5d40e6351e CVE-2022-26667,0,0,5d1c40a5cf7129198c1a3e1f52338b0734b91c80a041b3770e2dd775be7ec7ca,2024-11-21T06:54:17.557000 CVE-2022-26668,0,0,0fc81a6691e051f0e72025f7ad2c578635aae88f1ee70ebc271d001264fcbd3a,2022-06-27T18:46:18.067000 CVE-2022-26669,0,0,4908e0ea8879a39aa83df8ca9b67cc489ca685da525debff9eae4a934d248768,2022-06-27T18:45:05.067000 -CVE-2022-2667,0,0,3a3336b4191f109e8dec7f3c71311db4ad23f276c2f2b52ac9e50762db1afb4c,2022-08-11T18:53:51.300000 +CVE-2022-2667,0,1,d572f560e0f2f1c122173b9e2752b6605602bb3855d928383108bc08d959cf63,2024-11-26T20:29:57.070000 CVE-2022-26670,0,0,61afb1c13411006617363577590f4dff6486e0b748ab565fb9967eb817df314d,2024-11-21T06:54:17.920000 CVE-2022-26671,0,0,07729f6e17ddfc9357010d3713b18eddcc3e69ed8b49e9adf93e9cdd4130edc1,2024-11-21T06:54:18.050000 CVE-2022-26672,0,0,423ab8c3657ccfa7f8b671136caf5c885b089896603f167715cc29de913d8ced,2024-11-21T06:54:18.180000 @@ -196421,7 +196422,7 @@ CVE-2022-27656,0,0,675b9b7d15c433445a78bd2dc59db401f593afcc45d0a4cd623a51e7807d1 CVE-2022-27657,0,0,609d180e200c4e26126e8c8ff2cd6c58a9ad74069496e7e46fecb325444c2345,2024-11-21T06:56:06.977000 CVE-2022-27658,0,0,f76ec14c437b2972b351499effb819c76e3de55f6e839bd90d45e5d7b557b9da,2024-11-21T06:56:07.100000 CVE-2022-27659,0,0,656dd11b3faf59dc2a412847909a9c5bcb12821431d7efbbd68e72c9804591d8,2024-11-21T06:56:07.220000 -CVE-2022-2766,0,0,cd4eba45d55d236061ba89f1468689d85b1888051c29d5c377c6705bc2623d1b,2022-08-15T18:51:12.880000 +CVE-2022-2766,0,1,de95ae536ac41a0f5c8b69505d418b59f5b8717f416a92365f510c42fe7f6551,2024-11-26T20:29:57.070000 CVE-2022-27660,0,0,75e73e46df9c161c7e33ce702cc3fb371b55a1c3d7e665989eb0b938d31fe48c,2023-06-28T13:59:57.707000 CVE-2022-27661,0,0,d306f4326411fd75ac6f36f4bc7f644b906735df300b1f2cf89b48424c9491f4,2023-08-08T14:22:24.967000 CVE-2022-27662,0,0,895b36a635dcec1eee6df9ba12753360b6092e7531b7e1cdf17f18dfdae2b07c,2024-11-21T06:56:07.580000 @@ -204193,8 +204194,8 @@ CVE-2022-37130,0,0,524d1b2dd789284c43b03c3f76fdd230e76c4f27b3b8cbad312d0ef90c7ea CVE-2022-37133,0,0,99bf2fcb8a34c7515f377c0d019e862a98eb077748889fcd3e385efeed2b1754,2022-08-24T15:57:31.517000 CVE-2022-37134,0,0,c3dba6ad995830bfbbcc8cdf385680886b7c3fe9c69025af7748c88184a885c2,2023-08-08T14:21:49.707000 CVE-2022-37137,0,0,375ff1a79c50f580c2c5321be9414918f2e452aaf124827c1af6bd42ccacd83f,2022-09-16T03:19:03.430000 -CVE-2022-37138,0,0,26e44cf1545d7c154d934a0482340def12ef82a9d113e15d284bf30d59c6033f,2022-09-16T03:19:20.900000 -CVE-2022-37139,0,0,cc36c95f7794c37e2a24b6cb14d3637ba43d0db517e0460776b0d11cbc69c8ac,2022-09-16T03:19:39.907000 +CVE-2022-37138,0,1,210b1d4872aff141ea9a76eb69624c2a301b34f66080d97e4507e60a9b3ff245,2024-11-26T20:29:57.070000 +CVE-2022-37139,0,1,14b6abc78202f8a11c9e3ca5b3f2244271024397b453412c93ccffc9c26d2fa0,2024-11-26T20:29:57.070000 CVE-2022-3714,0,0,e921fb25e154d26afa56755d15cfb2711e556d4e691a5d446cd837bd08735f6e,2023-12-28T19:06:23.727000 CVE-2022-37140,0,0,98b77d96fd4b8b8ee8082cf58c9837c144ad9fde9e11adde119ce73f01f7410c,2022-09-16T03:18:08.883000 CVE-2022-37144,0,0,daf1781e51ef8adbded8d080fc4177dc3fe4da6bd8b49f186f7221dd305ee76d,2022-09-13T13:29:01.500000 @@ -220762,7 +220763,7 @@ CVE-2023-27239,0,0,437c1ed4caa2359ded26737bcfd9cbaa2958d823d76194508f9dfb47ac936 CVE-2023-2724,0,0,191167da54ef77767ea9e9c0ad85e636eb0bdb3bae693e465055392eac557556,2023-11-25T11:15:15.230000 CVE-2023-27240,0,0,dd1a332e9f5736367bbc3ab6210c0dc1613780b8322c71d3fe5909f124506172,2023-03-21T15:04:28.480000 CVE-2023-27241,0,0,0be9807fb01f06b81a50d96e45c1f3794a83c594dc4e37c7838913982ad385a3,2023-03-31T19:06:17.193000 -CVE-2023-27242,0,0,0aaf30d0fede976faab5656a9ecffc6fec69f999db16d573cb22532e78aadcf9,2023-03-29T07:33:48.873000 +CVE-2023-27242,0,1,12f8d08d97266dc76f5fd05c1505ed206b01d930fe4d92100304b78c8f159032,2024-11-26T20:29:57.070000 CVE-2023-27243,0,0,fbc1114feccec00fd900c27321751a7daa5190f9519421856209ea3904aaf2d0,2023-06-28T13:50:19.303000 CVE-2023-27245,0,0,25f306d33e464404532acde29fabe136caa9c3888170367f3a43a0855be9a0f3,2023-03-31T19:00:52.530000 CVE-2023-27246,0,0,e25c4f462a98f9ff2adce9c1b230cb9922a8a6e023c904a8768146e008cb47d8,2023-04-04T01:16:40.757000 @@ -220980,7 +220981,7 @@ CVE-2023-27462,0,0,406bb7063c733f4bc588140f672d535c7c5e4ea71ac853ff7f1d45abf6f0b CVE-2023-27463,0,0,5943e2fc48ff892ad71fc7b2f68c64e8ae8a5867ea7b63bf1dae97a0d0d7ae24,2023-03-17T17:09:40.223000 CVE-2023-27464,0,0,56b82478fb14d5060be9c73115275113bef172136621e4ada9c230821adfd7ff,2023-04-19T19:59:34.863000 CVE-2023-27465,0,0,6381cec8f1230a4497dd1b138bd04078a15d6b3870ec5ecb9400d8892f94175b,2023-07-05T17:48:25.550000 -CVE-2023-27469,0,0,59bf592e1341f715fc637d340eeed491ee1fcb3fc6167fe549de61808bbb16b7,2023-07-07T23:55:51.067000 +CVE-2023-27469,0,1,4473c4d944071cdc409e0f8b0c1694375dcf295bdec7c2071fb8b18e433bce62,2024-11-26T19:15:19.773000 CVE-2023-2747,0,0,e90894efddc01c892fb00706ab06f5bd0ce40f70e660fc4d4d110f3724f3285f,2024-09-27T17:15:11.707000 CVE-2023-27470,0,0,76aae6223b89f2c3b44e264ca3a64d3a33684db6f927f63fa7d5dd0334487ea2,2023-09-13T17:04:11.437000 CVE-2023-27471,0,0,0b3452a32a36f29e53e40277a667eea0e023b5a7234ce58c2095a06cee372f5f,2023-08-24T16:14:42.057000 @@ -222498,7 +222499,7 @@ CVE-2023-2914,0,0,fb96b81c26f91b5f4bdeffb2f195e44ffdea3b423b2d1559f1d9b0bc39ae30 CVE-2023-29140,0,0,b94fcdfab8cca20efcbe31f3cf9644c07adf66ad697a73757bbc9884aa2fb4fc,2023-04-11T06:08:23.753000 CVE-2023-29141,0,0,6c69dbc26dbaae6600664a7934bbb13af86a1bf32335c6233ee4de20a90ef464,2023-11-07T04:11:04.657000 CVE-2023-29145,0,0,8520bc21716d757e718878873bab242c0db2dcaa6938fe52a8d565724aba2997,2023-07-11T16:09:09.340000 -CVE-2023-29147,0,0,3e67be53171062cbcd2cb698e93c817ae5003f883c3bdd130f8b0206e6fc88c2,2023-07-10T14:06:20.730000 +CVE-2023-29147,0,1,62dd7bd508b09705269e39c2a8db89cc977afed2c82ae7757e77685a008b53d4,2024-11-26T20:15:20.657000 CVE-2023-2915,0,0,ca3c147439eb6a9d542dec64d7a347fdc4e620cfec61a608ce9f4f8889f3b050,2023-08-23T15:49:03.143000 CVE-2023-29150,0,0,57b0b07ccb636870566d2931159b6bdcd9a78dbbc12a81c105984ab1e3336512,2023-11-07T04:11:05.567000 CVE-2023-29151,0,0,af232fc81ad657bec5131f859ab52410d7381f35f2bff860b286cbb1b40164e9,2023-11-07T04:11:05.710000 @@ -224097,7 +224098,7 @@ CVE-2023-31347,0,0,5703df889e7697d9a941bc897ce8eaa50a95592c03760c9ac7c4b13dd7995 CVE-2023-31348,0,0,c306f0d237e2d8af9608a978530584d20b1bf70ff2c23a680094507cc83d2886,2024-08-14T15:35:02.560000 CVE-2023-31349,0,0,fec448b23889f050ed9b2294a5aa334ceb009f790e378982e075155aa7b4ad20,2024-08-14T02:07:05.410000 CVE-2023-3135,0,0,6bf4d178b889b1c4b1b5225d3bec9008408415fe638f98a0c794b0c27b2df020,2023-11-07T04:17:58.450000 -CVE-2023-31355,0,0,710b94de3c93b6aa7d25aac899c1a18a9a5b69a7bd0c863785d8a2aecb06c01e,2024-08-06T16:30:24.547000 +CVE-2023-31355,0,1,69aec8bfd9cbbdf6fccaa5a3f23ea5d697dcae13123e85a3c8dc9b60288b0210,2024-11-26T19:10:21.797000 CVE-2023-31356,0,0,bea061db9cade12e882f1ffccc4c3b6bf3ed6261d08ca2362e9f4fdc16dd90c9,2024-10-30T19:35:03.503000 CVE-2023-3136,0,0,89749c73105b8a3b2f93105e2704853e3e122996e34e8067a103f24e2d5a7180,2023-11-07T04:17:58.613000 CVE-2023-31366,0,0,44bbd1f8a094e73a70261f57615c2508c43003e09aed16040afe9f888e90fdaa,2024-08-14T17:15:14.097000 @@ -224445,7 +224446,7 @@ CVE-2023-3199,0,0,4ff7c7ed333e860dbf20b20cd32a62d2614c657d27a53a92dd51036a18eed5 CVE-2023-31994,0,0,55b495c701a3afcb9a0613c5692bde0c35418af8cc27d0a48037c62c14add2c0,2023-06-08T15:43:50.280000 CVE-2023-31995,0,0,ccde77b0a8aedc74cf8f2e7a2e5bf0d30fbc042d38f31a7d36b28b5a25b17a2a,2023-05-30T18:45:24.693000 CVE-2023-31996,0,0,ee8783260109f42b80f3819341b3e52a17c76066d374cbf1298bbb942d1a3738,2023-05-31T00:29:23.163000 -CVE-2023-31997,0,0,d8cd637d415097d91fa487a3c2d4dd91d84ac1e995cbe2afb36874500d610fa3,2023-07-11T16:19:54.627000 +CVE-2023-31997,0,1,23a6860242c9df6be185c42cfd4a4a473fe5b3dfcafad46e19bcae2a47554244,2024-11-26T19:15:20.320000 CVE-2023-31998,0,0,0cb7a2f5ff71486384a9d0f64eaa121057876713e622d0a1405873cb11a83cd3,2024-10-29T16:35:10.213000 CVE-2023-31999,0,0,fffa3ed6fbd25c3d86ee6b68528fce8a50751b49e144aa6b4f785f85126f6b98,2023-07-17T18:49:36.997000 CVE-2023-3200,0,0,973499c3ddf1024c520b61f7f3b565541ca97ac2ac3665738bbce9dd15b42507,2023-11-07T04:18:12.337000 @@ -225781,7 +225782,7 @@ CVE-2023-33457,0,0,1384ae3af2ae126b976a8a49d245e4d9d630594ec67ec1a0c83e25e59db3b CVE-2023-3346,0,0,33bddee86a4fcb6f7d399db916548680973608a860f8539444f55b9ca22edd3a,2023-08-11T21:01:53.977000 CVE-2023-33460,0,0,dec1279f75b613ee523baf40af12e9841457a1045d55e63c789323f254e76f54,2023-11-07T04:14:54.257000 CVE-2023-33461,0,0,0de3f4305f427b4ff32b903080fb5c836a3af93f2489c41c6aae59dfd6589d2b,2024-06-07T14:11:55.450000 -CVE-2023-33466,0,0,25da7ec5f821757081edf53c63649e6eda046cc60994bb8cbca9396d6ade9066,2023-09-12T11:15:07.650000 +CVE-2023-33466,0,1,8f3bb95382db1efdd63c10853d2c8cab520a0781d1269adfe6c9d0fc3cdbbf5b,2024-11-26T19:15:20.670000 CVE-2023-33468,0,0,44c774863a2d55e63b1845bf55de3fe4506ca7c2a56eeb4bf92cb746976655cf,2023-08-16T18:03:44.977000 CVE-2023-33469,0,0,9dfbe3344d4b40c67ae0a1b0ae4fa865b29407207caaece6d4bed88b6c198b8f,2023-08-17T01:40:13.813000 CVE-2023-3347,0,0,3fd9151d476078e653a42d2b9a1d6a14241e18d5cb22f2096b264fc568cc0686,2024-09-16T13:15:05.877000 @@ -227833,7 +227834,7 @@ CVE-2023-36483,0,0,23020ec1f7050e0bfecf93aa64a8a5f145e3bb19a289fde271462da1e3f8e CVE-2023-36484,0,0,d7cbc783e0626f914a1ddbf44aca0bb791ddd42ba91b7dfb57a4ea68e908e0f4,2023-07-07T16:46:54.217000 CVE-2023-36485,0,0,a455576be489a0bd4778198a5d7c69acd9d3dfc9306a1d049c7543d839294143,2024-02-14T00:22:22.397000 CVE-2023-36486,0,0,caa4fa5ab5bcbd3bd43f88778b4fb9fe089bdcef4ecac2b7c7f377a939be8054,2024-02-14T00:22:06.447000 -CVE-2023-36487,0,0,4ee451a0564756ffd2f87667dd3e053ca883a586efcb5e3646d6db8c84bbdb98,2023-07-06T19:43:16.007000 +CVE-2023-36487,0,1,47703c2a22e96a97d43d970a43f1512ebb8f47f1d04832a1c39a93f1575665c1,2024-11-26T20:15:22.007000 CVE-2023-36488,0,0,8a8c94d3e56d54aa8236dd81881b8fd4e3b6cf6358546f3bd01ade2f9809eb94,2023-07-07T17:17:29.997000 CVE-2023-36489,0,0,dc3b2a16fb93102da57c7283fbace2014f377f0bd7bc62fc2588a28c19875238,2023-09-11T13:36:35.507000 CVE-2023-3649,0,0,e5601b17dd56710e279a251177061f0fafab9b420c2e2a77a3dbf0de88036ac3,2023-07-25T18:20:46.537000 @@ -228415,7 +228416,7 @@ CVE-2023-37250,0,0,df6ff7ed34c7cf9848f0ae58775b7e2e53d7e9eb01737275f95174b0f0306 CVE-2023-37251,0,0,edf0ff9a61af9fb380dbd75d2687de94282e16fdf00aec85c0c11a6b49eb97bf,2023-07-06T18:45:16.053000 CVE-2023-37254,0,0,635c70615d1d3dba46d965334783cdd5cc5f47f6ca21bd12cc047812d2d065db,2023-07-06T18:45:09.180000 CVE-2023-37255,0,0,a88851c81e0cf08070e4a379e6f9fd7f724fbeedc31f2004c4001f4a7668af08,2023-07-06T18:45:01.657000 -CVE-2023-37256,0,0,0aafdeab91a0b46c5abeaca9f17a98e7336ee176ad6a3a74467d79c1826ba635,2023-07-06T18:44:48.213000 +CVE-2023-37256,0,1,c29eaed134575faea91efc060dbe3df393a335db65827b049cc26285e09929af,2024-11-26T20:15:22.663000 CVE-2023-37257,0,0,bdd95001d6f44b2903bfb4e793d6ce718c5eebe6a673941402c4bb8c02d0a9cc,2023-08-01T20:18:55.260000 CVE-2023-37258,0,0,301434023073df56e43939a38727c12a591bc68baff4a3d214ad04b9cf693f7e,2023-08-01T20:20:01.997000 CVE-2023-37259,0,0,2f9b5082581a7aebacec1febeac57030a68305972dc7037ae296f8b9e6346423,2023-07-27T19:50:08.540000 @@ -228469,7 +228470,7 @@ CVE-2023-37301,0,0,1e9277689d69cc3ded94c0ec3a877b24fff1fab72f3f9fd091b4242158b20 CVE-2023-37302,0,0,3a282ee98552cb25f33e117e7d53f19ff0616ce51ef1fdf358f06e84267a5d0e,2023-07-07T03:38:52.823000 CVE-2023-37303,0,0,1d268a5eaaf3d744a82b32a64c65087500bc083f5bb6955049d84b26e32a7c1a,2023-07-07T18:25:58.080000 CVE-2023-37304,0,0,90b3313e9a7e75e418406868ae017b39d7214ce1af1210bd89fcd2abea623cc5,2023-07-07T03:38:30.963000 -CVE-2023-37305,0,1,e883ffdc18f6d6643444a164a54a08a1a9d9f1716cb2e1b788d1ce33585ac8b9,2024-11-26T17:15:19.303000 +CVE-2023-37305,0,0,e883ffdc18f6d6643444a164a54a08a1a9d9f1716cb2e1b788d1ce33585ac8b9,2024-11-26T17:15:19.303000 CVE-2023-37306,0,0,a137ccf81a2426ce3e669310414e5ce34298fcb3060956966892870ea3756056,2023-07-07T19:00:31.167000 CVE-2023-37307,0,0,6a1f6f8a24f43981736cd3629320f2d224949abce9865ac34fd8d473a05c15cf,2024-02-05T17:15:08.680000 CVE-2023-37308,0,0,d694f878ba017cb7c0296fd17ac004501db0c50a58f9b4fed315fef7aa61149e,2023-07-12T20:43:30.607000 @@ -241738,7 +241739,7 @@ CVE-2023-7293,0,0,3ff26f743daf817328ce1e7b515ad1f2deed298b0d8689dfddb5df0187445a CVE-2023-7294,0,0,d0b71a4c236f4255c919d5db4070d2576b7afb89eda904442cd363b27a1bf802,2024-10-17T17:34:31.020000 CVE-2023-7295,0,0,b8d3b90fa8b1f5fca88683560b9fb1d91f91e8cd04661179b8f194af025390da,2024-10-16T16:38:14.557000 CVE-2023-7296,0,0,be181fe43284276606c9b6c67c3d207ca36f37958bcd920c07e436932d46c8d7,2024-10-16T16:38:14.557000 -CVE-2023-7299,0,0,2f60f7334668fb45253af02672bcf22b79f15512d083b1d949b692d4a55ef9b2,2024-11-23T13:15:04.547000 +CVE-2023-7299,0,1,f8ba3831fb16272b6390e22d6eaa25d74661688ce5f857119dc4946c9fdef8e8,2024-11-26T19:12:43.750000 CVE-2024-0001,0,0,ddc97ec95f63469ba72943e3a1a3c2055a0f787a376d00af08b9e1c9de1e66b0,2024-09-27T14:08:57.327000 CVE-2024-0002,0,0,8eba00d67fa29dcfc182e2e2367ab4a3c005649f9c2970e7f365907a3a42b06a,2024-09-27T14:13:24.427000 CVE-2024-0003,0,0,46c85e4a496f19260982bccddc0ca5126276fd9fc3f3c6d4be9e905c5a7e34b8,2024-09-27T14:23:58.243000 @@ -242825,6 +242826,7 @@ CVE-2024-10232,0,0,98e97f86e77c9008185f9ff2c9f54dab5146c7a71a0b7823df9bcfdfb1c88 CVE-2024-10233,0,0,ae75a6902cbd361dba7f0db59261b7e58fb8ced87e17031187e0bfd405b07086,2024-10-29T14:34:04.427000 CVE-2024-10234,0,0,29441fe4cd8bfbe6b6cb2ad55d7c2d2c9161b1369f9e713c11aec1dfec3e0850,2024-10-30T18:50:59.883000 CVE-2024-1024,0,0,d47b3d3840cd70db883d335219cea52b6b4fa0e3fdfc3f4d41efc4b833dff6a1,2024-05-17T02:35:11.210000 +CVE-2024-10240,1,1,895bb52e7bb345d17c9a0ae1c62601f710a16d97de65064646b494f8c5ebb315,2024-11-26T20:15:24.487000 CVE-2024-10241,0,0,ae512d639185a0ae3de570db96ee11e8b4269e6da724c94a52e42eddaeb0b4fe,2024-10-29T14:34:04.427000 CVE-2024-10245,0,0,a0531404f8e42b22ebf8edf706088f8f3bbff70573c99f5feaf6c300487731f6,2024-11-12T13:55:21.227000 CVE-2024-10250,0,0,8accb693817c35c7e4f9fa710076ead819720d8653e5052fbeeec31b3a5b47d2,2024-10-25T16:37:32.777000 @@ -242909,7 +242911,7 @@ CVE-2024-10355,0,0,2602c2076153349e7adf5f2683fe39bdc0cb3abdcbf15a26de13daaf9ad9d CVE-2024-10357,0,0,c001d8d64b65c4e55da5d7861409d0c563d6d1b141b88d9a7700fd93b48c7a3c,2024-10-28T13:58:09.230000 CVE-2024-1036,0,0,aa65a53beadc56e4dda3efe9acb5802f242935c19973e66e0ff7f62d01b276fd,2024-05-17T02:35:12.357000 CVE-2024-10360,0,0,3576dc079f058e2dd67b489fd947e85df4509a4862ebce17e71112c47cb76c6c,2024-10-29T14:34:04.427000 -CVE-2024-10365,0,0,4cef235b4bf39b0881a7b2396164712fd06bc9f0f3be6f110d0900a15ff2853a,2024-11-20T07:15:06.870000 +CVE-2024-10365,0,1,4fe48020ede3297b6900c2d074afa9cfc695d825a2faa2d82338ba40f9460ff8,2024-11-26T20:36:08.280000 CVE-2024-10367,0,0,547b3c1385167e643f44f204c281f5898850caa0e5c0b7e1f18c8aec4af5d4c6,2024-11-01T12:57:03.417000 CVE-2024-10368,0,0,c8e0d6969c93ffe96acf5e0ee7b5c26394eeb4c801dc04ebad8a62cf1ce3fd82,2024-10-30T16:46:30.783000 CVE-2024-10369,0,0,5a59dc320150c27565cde3d9105528beaf16a536e1981e9f54165bf31963ac02,2024-10-30T16:50:32.567000 @@ -243251,7 +243253,7 @@ CVE-2024-10851,0,0,bb060e17bfcaee979e3c022ab213f6f8185e0d32d9334f9a45831591a3ac5 CVE-2024-10852,0,0,f6b203b7b939235aa255ffed248e8cf068dd3b791229b609e430feca6cc83541,2024-11-13T17:01:16.850000 CVE-2024-10853,0,0,02830723c1cfc34942045c33ee361ea42546311dacb0cff9be0a3634be59c448,2024-11-13T17:01:16.850000 CVE-2024-10854,0,0,15cfe2e17b56db5e0c11761ae38ecac4069d0ddad2bb05d2f72a443bc2fa6485,2024-11-13T17:01:16.850000 -CVE-2024-10855,0,0,d7cd537c8ddc42e8b381daa2ada926e04d761570bdc3c7ecb9c761ce484fc4db,2024-11-20T07:15:07.853000 +CVE-2024-10855,0,1,ae24b9251832889f0ab5093466f5bbce4d7ad6d8dd4bf7a8321d2155c2606591,2024-11-26T20:34:02.857000 CVE-2024-10857,0,0,7fa5b5a886f884eab497f541a0fe9dbbf359fc91d9012b33d55a7533bd76e633,2024-11-26T07:15:05.003000 CVE-2024-1086,0,0,3e819e2fff80149e3f377751fd1fb28a52f8791d9e5d08990c549613b15214b2,2024-08-14T19:41:08.673000 CVE-2024-10861,0,0,0e475116cbc916b1684eb819921303de89576e8768786550a96cf2c67b7dbecb,2024-11-18T17:11:17.393000 @@ -243266,7 +243268,7 @@ CVE-2024-10874,0,0,0db184d4366bc23087344f55f56526a146fb0921ebaab1aa0294451b389a2 CVE-2024-10875,0,0,f25d99b636c46f59305dd89e678091362bb421c122afe8c605690d8f28fedaa5,2024-11-18T17:11:17.393000 CVE-2024-10876,0,0,bbf9ae62b029e2f20c90d639924bd19ca16772574bbaf6f19776b0310de3890f,2024-11-12T13:56:24.513000 CVE-2024-10877,0,0,301531ad65e2e5f16ea91c20f67a17c0b37faac5d5c530e39dd36f416491799c,2024-11-19T15:52:44.487000 -CVE-2024-10878,1,1,1a7fde41fde9a1253bf88bbce7de1ba6b0177b00122e66cff5a6abdbebd8e281,2024-11-26T18:15:18.827000 +CVE-2024-10878,0,0,1a7fde41fde9a1253bf88bbce7de1ba6b0177b00122e66cff5a6abdbebd8e281,2024-11-26T18:15:18.827000 CVE-2024-1088,0,0,7487e11aa2518f6cc93d89dd95a39f5c8d6e4a1b2567cf073eed09f7df78257a,2024-03-05T13:41:01.900000 CVE-2024-10880,0,0,f5b2a2bccc52a05f172e2c0ad2b5afc9b167416f1cf01859cec0a3709050aa36,2024-11-23T05:15:06.207000 CVE-2024-10882,0,0,d50cca8abf620c67a958717eb4d933afb7abd51207b4b48e13771e9f1de70410,2024-11-13T17:01:16.850000 @@ -243277,6 +243279,7 @@ CVE-2024-10887,0,0,6f1c620112f0531885feb58bf605da1bdf3e2be3ee69e7f92d5d01d446076 CVE-2024-1089,0,0,9442709e929187c1b992d082c3eaeec9226480f80fc28198e3a73f4a684640d5,2024-02-29T13:49:29.390000 CVE-2024-10891,0,0,75368c42ada2eff64310eb4f2bf04c277030b9ed62814601df628d2e55a629ad,2024-11-20T10:15:05.273000 CVE-2024-10897,0,0,5090338464622dc9d5ece2556a5b89ff3e6aa995d53aa797095eaa9a0db6f534,2024-11-20T16:09:16.643000 +CVE-2024-10898,1,1,29bba6e208449ebd52631361f4bdc8eca3c372d754cd58876d30ee6c07372718,2024-11-26T20:32:20.217000 CVE-2024-10899,0,0,4368cb3772d2f8c2a1f35ff550289018215916506b0b69e65d8983cd35dad906,2024-11-20T07:15:08.260000 CVE-2024-1090,0,0,2d0b80c82d6d153c4e0b5412c3fcf892da86ac73a72da4cbf84bfbb064bdcb0c,2024-02-29T13:49:29.390000 CVE-2024-10900,0,0,f0a1068a03da92137242d5778d1db0773cba2fb63def13779ff35e3410d8f989,2024-11-20T07:15:08.690000 @@ -243438,6 +243441,7 @@ CVE-2024-11136,0,0,24240577f7b850705f8148f1e2257c636c3b9dc696f019566c5d55e0511cc CVE-2024-11138,0,0,7b0edb369e2d9df427aea00759a3991acb4ee32080a1e83cba9502f5a7a362f2,2024-11-13T17:01:58.603000 CVE-2024-1114,0,0,4ba1cd03fbc35862ac6b2ce79da50122dd303ea22f4f4a45a352ffb5be12a8ee,2024-05-17T02:35:14.777000 CVE-2024-11143,0,0,96ffaa2455664e18d60b42605835ada70f7b0d6d8faec6d0bfd534d22c653ec3,2024-11-18T15:03:56.927000 +CVE-2024-11145,1,1,3738165869fe25349bba8fb98171e1f4dedc6c9049342172a78ba671f869bf13,2024-11-26T20:15:25.270000 CVE-2024-1115,0,0,4dae9d3d8bef65fab3d547368288cc3126446be18b7fc740123f9a96bd6241e2,2024-05-17T02:35:14.880000 CVE-2024-11150,0,0,a42c681646aa4974b2ce83b0b93c5af4c26316891f1e3dd7bf6a226e6b2cf362,2024-11-19T16:57:05.407000 CVE-2024-11154,0,0,9c2f24e5b2c6bb0a1acf0aba74e4e593d635b23a924a1df484d24fc0dc0da623,2024-11-20T14:15:17.500000 @@ -243448,7 +243452,7 @@ CVE-2024-11168,0,0,5e610ba56b770f0c45b8e5f1da8a18409af80ecc6fd32d397017d56ba5ace CVE-2024-1117,0,0,0eff4d8f06fdd3645727772834638be79e19128758cbe94b2a8e7a297167b8d0,2024-05-17T02:35:15.090000 CVE-2024-11175,0,0,a70e7384355b41e57dbae42f60548787ddcd5e64369094201d6e3104c030e304,2024-11-15T22:50:48.817000 CVE-2024-11176,0,0,43e0b836ac427f00f128c5bd48d6743fd191b6efbf5ad7ecd847f5f279d2ce59,2024-11-20T09:15:04.447000 -CVE-2024-11177,1,1,8c99c0c39c3f108563a151156fda0a6b1a87540fcc7cd34f8c23a7dc6256065e,2024-11-26T17:15:22.473000 +CVE-2024-11177,0,0,8c99c0c39c3f108563a151156fda0a6b1a87540fcc7cd34f8c23a7dc6256065e,2024-11-26T17:15:22.473000 CVE-2024-11179,0,0,38e54346776befead02bb0d90bed5d6fc177bf14c23bd48810b55bacf50173db,2024-11-22T16:55:03.947000 CVE-2024-1118,0,0,6c399aaded9e96cfac900ecbd30e202d5a6a42d5625667c3de9725b65dc62fc3,2024-02-10T04:13:01.030000 CVE-2024-11182,0,0,550276b9543adbab2608aeeaeb156b493c7ea7fcd794d8e2722b73a2104ac612,2024-11-19T19:08:15.657000 @@ -243481,9 +243485,9 @@ CVE-2024-11228,0,0,9fc5ec42228f59de6756223b2f66605b831df8cf5121ac71cae8165002d20 CVE-2024-11229,0,0,8de69af2e8ef71bf0699d395c3530a96b920df18def0dd7e9945c9cd35c53cd6,2024-11-23T12:15:18.983000 CVE-2024-1123,0,0,b973e4c54de6f241a32cf221a70e04068421d86df4d000867b2228a54e55ef35,2024-03-11T01:32:39.697000 CVE-2024-11231,0,0,340d4a67a1a53dfc3acaeb8d7a5545a089dda27cdd6d90b8d47ab035e0216159,2024-11-23T12:15:19.387000 -CVE-2024-11233,0,1,f693569babb39b28690250bf399e234d5652aa087fc09c6fa53135c369c0e730,2024-11-26T18:26:37.783000 -CVE-2024-11234,0,0,8e921bffe97e147ad3138319e38f36b4c41b3c2c99dfe5064af2e2b07c838f5e,2024-11-24T01:15:03.987000 -CVE-2024-11236,0,1,550d85bfafd1434d8d927c6d8dee8c7c226d05255dec5cf2f93f8237a1b74e8c,2024-11-26T18:29:05.820000 +CVE-2024-11233,0,0,f693569babb39b28690250bf399e234d5652aa087fc09c6fa53135c369c0e730,2024-11-26T18:26:37.783000 +CVE-2024-11234,0,1,76a20d0b5df369c7dd2c3a2819b7721a96e80c779172c74c627d64ef7ab10b79,2024-11-26T19:06:10.243000 +CVE-2024-11236,0,0,550d85bfafd1434d8d927c6d8dee8c7c226d05255dec5cf2f93f8237a1b74e8c,2024-11-26T18:29:05.820000 CVE-2024-11237,0,0,9213e2a4eef9d88853d744219598c19b6ea93ab11d996277723bb7fe3b4dafb0,2024-11-19T19:04:14.987000 CVE-2024-11238,0,0,ce4db66c60999acd981d78df2e1b620167b9a91ec92fb71a2c401cfcff716486,2024-11-19T19:01:13.060000 CVE-2024-11239,0,0,aefb59a8cfc2086746090c1190902046658072a530e6347767791876e7172fb6,2024-11-19T19:00:43.230000 @@ -243510,7 +243514,7 @@ CVE-2024-11262,0,0,5bda125849c583f0ebaa29ca4d26cf0dcf9667997688ed2241531b87cb595 CVE-2024-11263,0,0,6a1ac9d3a12801a9f848747b946a0ac459e1982e45197319659c04e5ba98bfce,2024-11-18T17:11:17.393000 CVE-2024-11265,0,0,f4b2a3318dbaf2f938f5bb6f39194c9b65cc4b5c5a1f983e90346e6df34abb44,2024-11-23T06:15:18.310000 CVE-2024-1127,0,0,fc004f13d69dd65990588f481257d3c8dd60a3804cfac37ac389768e5b88f08c,2024-03-13T18:16:18.563000 -CVE-2024-11277,0,0,76940494f90eb6b11156e64b77f8ee92c381226ff02c0d64d7bcc10a173873be,2024-11-20T07:15:09.117000 +CVE-2024-11277,0,1,70fa881c494ed4e8a3131fb313821feca0fce09e01d4dad197524b7869b481b5,2024-11-26T20:59:50.643000 CVE-2024-11278,0,0,cc19a6be7ba80ee301c92f54c29f2c5c95b3da6dd7918df5b7b1d59f8e31a90e,2024-11-20T05:15:16.530000 CVE-2024-1128,0,0,de5352d9c421a908307277eb7da3f5f6fcfc08a095ea033ab740d4804aa5ccea,2024-02-29T13:49:29.390000 CVE-2024-1129,0,0,bb6d36851ed2d72741a575302302ac57d511f2bf349c6ca7db7385fd53c3529a,2024-02-29T13:49:29.390000 @@ -243532,27 +243536,27 @@ CVE-2024-11315,0,0,1e40368af4a59fc021b722b7bfa068a2b5cf4504701d2e4dd12e6291f7427 CVE-2024-11318,0,0,9febe7cf088687dfbeb6d2d8f74590e0f8059ffca33de9b68ad34437f87d2118,2024-11-18T17:11:17.393000 CVE-2024-11319,0,0,10049ab876319f9ecb08a7b21cc61880e37e90d0ecd4d79058dbd3eba0407f5e,2024-11-20T14:59:38.297000 CVE-2024-1132,0,0,3de6e62885ac8497a4c1d8f4950ebedc171b13b33dfedd6a9eea9ae164fd993a,2024-07-03T01:45:01.507000 -CVE-2024-11320,1,1,043dd45fc8afc6a3f6d5124b009a260902c28d8e6731495b55f0e622c6d087a7,2024-11-26T17:26:33.327000 +CVE-2024-11320,0,0,043dd45fc8afc6a3f6d5124b009a260902c28d8e6731495b55f0e622c6d087a7,2024-11-26T17:26:33.327000 CVE-2024-1133,0,0,b8b851364368259dd533f1c71b437f741276dcf99770b03558b5d9cd5d3f095a,2024-02-29T13:49:29.390000 CVE-2024-11330,0,0,1c458fab138aae3f3b89b170e15e7403fdc2fbe304c8cf0cbc41ae122ec08539,2024-11-23T07:15:03.737000 CVE-2024-11332,0,0,21d8101c0dd73a7dc8b4a9b045dbbf7a2c40f682ad21bdcbf98ef68d6b970235,2024-11-23T05:15:06.520000 -CVE-2024-11334,1,1,f7fc893b8a37cca506fd20fe68edd8509ed855f99666ff9db346702f3632cf66,2024-11-26T17:33:49.477000 +CVE-2024-11334,0,0,f7fc893b8a37cca506fd20fe68edd8509ed855f99666ff9db346702f3632cf66,2024-11-26T17:33:49.477000 CVE-2024-1134,0,0,92ca7b611a6a52333e888fa3a581b5dbc5c29b22a5e7e62eb553cb40e2cb6d77,2024-05-24T13:03:05.093000 CVE-2024-11342,0,0,bac43c65bfe7c40167758b1f761e157674244a484facce7f4cc928fc94d88934,2024-11-26T04:15:04.030000 CVE-2024-1135,0,0,c4e807742cebaf6bf696946dfb175a5e42a114f551ef03f8a1a000797bbd864f,2024-06-30T23:15:02.563000 -CVE-2024-11354,1,1,87986c107f2d598ec9b5e54e0419b4149d63b452699e5d17cc10ffbc61f46d56,2024-11-26T17:34:55.767000 +CVE-2024-11354,0,0,87986c107f2d598ec9b5e54e0419b4149d63b452699e5d17cc10ffbc61f46d56,2024-11-26T17:34:55.767000 CVE-2024-1136,0,0,afecf0ebdd615b0db4af51c2dffb234fe058d5206cf056cda6c9c969b40b0967,2024-02-28T14:06:45.783000 -CVE-2024-11360,1,1,659b24fc81e4938ca0374fdfc531183f0da8359af24c60f66cd39ca705cc7b8c,2024-11-26T17:36:08.113000 +CVE-2024-11360,0,0,659b24fc81e4938ca0374fdfc531183f0da8359af24c60f66cd39ca705cc7b8c,2024-11-26T17:36:08.113000 CVE-2024-11361,0,0,51b4837c758190b2e89b9741bdbd5713d8df3163c1cfcf1bc7c03ae151745655,2024-11-23T05:15:06.673000 CVE-2024-11362,0,0,599844bd1e179abb8b921862d85c28565007a2c44d214b4e47236193a9a93da1,2024-11-23T04:15:08.617000 -CVE-2024-11365,1,1,0e66126dac632663f20d3d9475ab7eeeaaf1783cab23902c99ae23613a9ecef6,2024-11-26T17:43:23.240000 +CVE-2024-11365,0,0,0e66126dac632663f20d3d9475ab7eeeaaf1783cab23902c99ae23613a9ecef6,2024-11-26T17:43:23.240000 CVE-2024-1137,0,0,7770507df04fd140e1caae778f76cfb6c15abcb49e56639ed0158e45600edd60,2024-10-31T15:35:20.503000 -CVE-2024-11370,1,1,dd87b64b129f6809c8edd7b234994b231659964606722e4f84f6ae489936a5a5,2024-11-26T17:53:22.707000 -CVE-2024-11371,1,1,85695f69ddb998fd54276702b9a185a3c971e606e7563fb96aaec381d1eef5d0,2024-11-26T18:01:57.250000 +CVE-2024-11370,0,0,dd87b64b129f6809c8edd7b234994b231659964606722e4f84f6ae489936a5a5,2024-11-26T17:53:22.707000 +CVE-2024-11371,0,0,85695f69ddb998fd54276702b9a185a3c971e606e7563fb96aaec381d1eef5d0,2024-11-26T18:01:57.250000 CVE-2024-1138,0,0,82205a90b4164fa73ef6a7a95de3da9e244cf92b71ef2ebb779a9979063152da,2024-03-13T12:33:51.697000 -CVE-2024-11385,1,1,b8c574c75cf2cea00a757d377dc474503f06328c73f6861f0cd8dff47b3ce271,2024-11-26T18:04:49.077000 +CVE-2024-11385,0,0,b8c574c75cf2cea00a757d377dc474503f06328c73f6861f0cd8dff47b3ce271,2024-11-26T18:04:49.077000 CVE-2024-11387,0,0,570819d44f260948aed21f18e713c0988e86544acdb78701fe81de7ec470e4a6,2024-11-23T05:15:06.833000 -CVE-2024-11388,1,1,cc4ce5951e6443c6719f0b47e25fd91148c8919ab17cf08bd038e67541d941d5,2024-11-26T17:23:56.647000 +CVE-2024-11388,0,0,cc4ce5951e6443c6719f0b47e25fd91148c8919ab17cf08bd038e67541d941d5,2024-11-26T17:23:56.647000 CVE-2024-1139,0,0,3dc684f5c9c2296003368c61d669c2f327953a7aefcd4f9a72abdc4b058cbe13,2024-05-16T23:15:47.323000 CVE-2024-11392,0,0,676ec5cc41a755ebbd12c81880a1cda882757ffa3dcdc2fee93881559050fefa,2024-11-22T22:15:06.970000 CVE-2024-11393,0,0,bb5cf4b536c1929831f7187a9de9dcd6cddda5d9feab9b5dc675b1046c1bfa55,2024-11-22T22:15:07.100000 @@ -243563,7 +243567,7 @@ CVE-2024-11400,0,0,2b6a39a96cf5696646b5b9e32fab47bfc23a160a64905ed162280ce11db7d CVE-2024-11403,0,0,aa2618a7b6d3af70c8c76936e7400798cb8fc2bbb8402d3422568e8b944ad335,2024-11-25T14:15:06.310000 CVE-2024-11404,0,0,525efe85caba48797a4f541c0d9d8e5e1135b7d4afff8a5c0abba9ca32591f5c,2024-11-20T14:15:17.750000 CVE-2024-11406,0,0,d4abbee85b1f77460ba170fa7cbcf81435244eeb65babfc1772879a68307a74f,2024-11-20T12:15:18.890000 -CVE-2024-11407,1,1,2df2f66f0aafbe11a119ee501540349a148c9a3551fa8eede5dcea265dc29379,2024-11-26T17:15:22.830000 +CVE-2024-11407,0,0,2df2f66f0aafbe11a119ee501540349a148c9a3551fa8eede5dcea265dc29379,2024-11-26T17:15:22.830000 CVE-2024-11408,0,0,54146805a36bac284d40e39c15c15c6876d5afc53f160d33d40768ebebc9eab4,2024-11-23T05:15:06.990000 CVE-2024-1141,0,0,31012446f41a8e14cd01fac5beb57c8618f6593d63d8f6abd3fca30a025146cd,2024-05-22T22:15:08.627000 CVE-2024-11415,0,0,33ba95f5490e63268a39f93ff44091ae19cc0b92e1f270172254ccc6ede1d872,2024-11-23T04:15:08.760000 @@ -243717,6 +243721,8 @@ CVE-2024-11663,0,0,3626413ca3e66966b7d786a611d25e545ae4de59326fcb8c9442c9f727c44 CVE-2024-11664,0,0,f7e3e3893aefbf47475119b5cc15d35a6bf3fef30ce727b8b58d082d350666b1,2024-11-25T09:15:06.800000 CVE-2024-11665,0,0,432484acd0139af98341fd7fe90b0662197ea5956295af2989047d68fc0277cd,2024-11-25T00:15:03.957000 CVE-2024-11666,0,0,2250b20e698d0c0188636489287d2b59448a3bc6ff2a33a1b94eca03d876ba25,2024-11-25T00:15:04.040000 +CVE-2024-11668,1,1,76595504dbd2b64d21bcff47f11c8e8cc91ab680fc6cee5f2ffc1737d953cc2b,2024-11-26T19:15:22.027000 +CVE-2024-11669,1,1,a5de8e98bfb8b633c540619e4d481ef856cf620fef729b0da27716832b9fbae5,2024-11-26T19:15:22.367000 CVE-2024-1167,0,0,ed50fa0852f2fbdcdff47243517d528056863b720fcd10bdada66efed3504e8a,2024-02-09T20:20:51.900000 CVE-2024-11670,0,0,da97a331b546adbf73f2b38147c185b1f7045c13e5878ca1de4e9a941cf83c83,2024-11-25T16:15:12.173000 CVE-2024-11671,0,0,2615e6d984f10785804bed1195d17e9edea1f659c624af4ab21f00fc47d133cf,2024-11-25T17:15:11.930000 @@ -243730,7 +243736,7 @@ CVE-2024-11678,0,0,e780942a86d65f83e2cb7cc5d04e0a3676e4919574029bbf616d3d9c8bbb8 CVE-2024-1168,0,0,b74b0b0c267c02c66f0f474186eac7335d29517290a9638a292d9de8edcd7c5d,2024-07-11T02:52:36.687000 CVE-2024-11680,0,0,e59e07fcd0f2caeb9f7525587364f8cd5a94ad91992448a2d5730a3a3fe6f61e,2024-11-26T10:15:04.540000 CVE-2024-1169,0,0,a43d6b50f47e310e039f1575550f9d1fe159a31a77f5a57027ebd3dc489ff540,2024-03-07T13:52:27.110000 -CVE-2024-11691,0,0,492109a35e913024b8507b12b0b615bac5f5e95184f0f080cb7d29c2e2045a7c,2024-11-26T14:15:18.633000 +CVE-2024-11691,0,1,3e42765637e5c72d6e1a2c134f6b1e9090a88c7e849121733a5e70a45a699ec7,2024-11-26T19:15:22.673000 CVE-2024-11692,0,0,55049561fa0f71cffa0c7b6a627b36584acc14eb5f275a9c38067a068ae91926,2024-11-26T14:15:18.743000 CVE-2024-11693,0,0,2373f8efea5deb80fd8960ce5bc1e616f0b62c5febf07239d836708229799dac,2024-11-26T14:15:18.847000 CVE-2024-11694,0,0,a6a2c4a535474da2ca567947004ffbecb7b16bb81183cc508d3c10dd53c61627,2024-11-26T14:15:18.943000 @@ -243746,12 +243752,14 @@ CVE-2024-11702,0,0,b01603d2ce69843c44a56d07cc8d9691e75d38cac0d11f19b2dc16678383b CVE-2024-11703,0,0,a0aade5966792892c7a69520deed0024219950d9ba72d34090cb3bb1b7974f3a,2024-11-26T14:15:19.810000 CVE-2024-11704,0,0,aa205c9b0e7a7f1c67c48d1ebedf7aab6c28a1207da227fdbab72e6a68b676fd,2024-11-26T14:15:19.910000 CVE-2024-11705,0,0,90c2611303a710de2c3ac242cfdf5583c5ee0a6c79366f67f099565c736ae3d2,2024-11-26T14:15:19.997000 -CVE-2024-11706,0,1,1b96fbb1c831be79b72164c44aa56f72093a93485fb6eb748f832788631279b2,2024-11-26T17:15:23.010000 +CVE-2024-11706,0,0,1b96fbb1c831be79b72164c44aa56f72093a93485fb6eb748f832788631279b2,2024-11-26T17:15:23.010000 CVE-2024-11708,0,0,5df8567336f2f5c4bcf48dbbb1c13334cab7eaa8fac218501e9ea26d72b94ac4,2024-11-26T14:15:20.173000 CVE-2024-1171,0,0,59f6a72a19a26da04118a5786af1566b99863895f524fbe4b34406571782a615,2024-02-29T13:49:29.390000 CVE-2024-1172,0,0,11b44e5ce5101f5b7c8ab7c5bd49458795761e0ba5cf2024c3b79ca4ef4be57d,2024-02-29T13:49:29.390000 CVE-2024-1173,0,0,d3495940fb5216c0fbed831a88233211893c24cb888781ac48f1d76bb3bc26ba,2024-05-02T18:00:37.360000 CVE-2024-1174,0,0,1a20d0936daa8c05ea33a8dfff3a4c4c734ee1e57e74d832a558685298d668aa,2024-08-28T21:35:03.473000 +CVE-2024-11742,1,1,67990b8c6d291afd926a35484e6c0e210504d9728dfca33a0ba1469d0b959cb7,2024-11-26T20:15:25.703000 +CVE-2024-11743,1,1,4f6422c96bd4f753ba6c7b4e725945a7686018b3a7c5c8f40a5c1bd59c112f03,2024-11-26T20:15:25.930000 CVE-2024-1175,0,0,190484da8a43d8915393af59d3a99a603fc65c2c05796109a63c7e3028461e1e,2024-07-24T20:32:01.573000 CVE-2024-1176,0,0,3a9729597b8ae5d1f7a6b2981371f9af662d86aa4ba3ac1ac5a3a2992dbcfc6a,2024-03-13T18:16:18.563000 CVE-2024-1177,0,0,d9cdcff987bd78d6f32a7f8b0a8d2970109268852041331a890d212ad12ebb88,2024-02-13T14:06:04.817000 @@ -243760,6 +243768,7 @@ CVE-2024-1179,0,0,18b2d0d135c66f5f21d2d252edc06809b11030eef4b80a686f580bba7c8722 CVE-2024-1180,0,0,bb83e3fdc0a8f87f14b71aa596dc16c65435770562b16333b2c46b0a903dc99c,2024-04-03T17:24:18.150000 CVE-2024-1181,0,0,3ab1ccda9f702c4fc6b350844c2c0edd9e45550807a44d2d8746213d5ed7378e,2024-03-20T13:00:16.367000 CVE-2024-1182,0,0,fa905e4a8a46b36f13d15329274923ae221fc1fe7f91daf124410752f4903054,2024-07-05T12:55:51.367000 +CVE-2024-11828,1,1,246e1e2eab57884aa3d4d52a63d8c3c77eefda7cf137c7c25e51217c37ae62b7,2024-11-26T19:15:22.910000 CVE-2024-1183,0,0,b9ca697d85173799c910606842f064c322818be1aee71b1208c43495b066c09a,2024-04-16T13:24:07.103000 CVE-2024-1184,0,0,0bd0336a802b5a07ef17cf4c3337487d1573b3f8590cc13c2e3f9ac276b1f143,2024-05-17T02:35:16.900000 CVE-2024-1185,0,0,a60268243ee8d3dcf82e9c185863da8146ac8c49246dc744f2663ef723b40081,2024-06-26T15:15:19.220000 @@ -244293,7 +244302,7 @@ CVE-2024-1749,0,0,f620be6c4367805be5c83719352e695698d105470ce084642dece004f1c7c3 CVE-2024-1750,0,0,7f9ce3864064263c9a72249a090e6a4b7033b154fc6d744d107ff4cdf65d126b,2024-05-17T02:35:35.177000 CVE-2024-1751,0,0,154c401fe290eec38fd9c24bb6a8378784a8ac703cfa36934de32237c4b2fc0e,2024-03-13T18:15:58.530000 CVE-2024-1752,0,0,ebd28678960fb125918a034bc6797117b5ad867c71cd1502baeff6b2a6777f59,2024-10-27T23:35:02.790000 -CVE-2024-1753,0,0,f8a25262c3f86133c866f1e07d45759b1904f223f4c08dde686d2805e8b195d9,2024-11-24T14:15:04.850000 +CVE-2024-1753,0,1,97eb25eefdb4797c38bcadc3519b75967ef4d30f53fb9cc57a3b33325f64503d,2024-11-26T20:15:26.237000 CVE-2024-1754,0,0,6d02707455f72bdff06cdba8f236495298ba067f3e3a9d1cc5b84a96ef4c9f88,2024-04-15T13:15:31.997000 CVE-2024-1755,0,0,3d3eb53461864a2d0b6846883348dbee673cb6d9a59185cf31292954d770d20b,2024-07-08T14:17:11.257000 CVE-2024-1756,0,0,3e84813a966b3d138c76e22bdd3fcd8ab2964d96bf9c77ed86651d769e5bb5a7,2024-04-24T13:39:42.883000 @@ -246212,10 +246221,10 @@ CVE-2024-21972,0,0,faeb67500b1dc4ef8f1b7649334b23a7c70f07a8990a8b6dfa5400e248a30 CVE-2024-21974,0,0,e945cdce0481a2236f8c3fc3597c2e09e0fcffcce9462be19907f54901a45889,2024-11-15T19:20:09.980000 CVE-2024-21975,0,0,3d78cb740262f648775e64b558262f7d13f861a84d692c656d8015e29ef15d89,2024-11-15T19:15:18.770000 CVE-2024-21976,0,0,316a014d75b9b72921e8ef227aeb700f1f1d9634c14a7f67ab46550a5882ed94,2024-11-13T17:01:58.603000 -CVE-2024-21978,0,0,bd0ca29172ff67905ab419fb6e0b63fad45bf4b2c53567c94e0d7e696a373aa9,2024-08-06T16:30:24.547000 +CVE-2024-21978,0,1,f9ad75ec7a255d6b77864f55761b0fe46f8517bc08965faf4d5ddf7905db1b8d,2024-11-26T19:13:33.683000 CVE-2024-21979,0,0,69d970687ec7fc10c2117ffd8a662f03f2976fe858767ebadf9aede1ce3bc7bd,2024-04-24T13:39:42.883000 CVE-2024-2198,0,0,1df4cff98d86f3bfed69b5c9a5afedec636b00bc821bafe7fe3fd5ac8b6e5483,2024-04-10T13:23:38.787000 -CVE-2024-21980,0,0,872c791ef8c7889b400c55ed7647b05e1f6e6b8b113a22baf77aea9eef603777,2024-08-06T16:30:24.547000 +CVE-2024-21980,0,1,13552d6d45ad7bc904edc4f73922a621593d0beb32beb13705593c55f1df49ed,2024-11-26T19:13:55.167000 CVE-2024-21981,0,0,deb1e8a78bb55715b4492773fc3097281d0a3412a2bc91cb4f6c00fad354f4e4,2024-08-15T18:35:06.310000 CVE-2024-21982,0,0,a1d7a0b52867843a898049d8dcbdf321d190ddcdceaa8b86d96038ebb2885957,2024-01-18T20:16:20.420000 CVE-2024-21983,0,0,f2de681a28bdb7d62262b30d8ab0c99245f80036b39bf9cc43012d973caf3ccc,2024-02-20T19:51:05.510000 @@ -247886,7 +247895,7 @@ CVE-2024-24431,0,0,4a17e71430d299dc76b10f523b5bf34391f8435e621178a2d658fb28da0e4 CVE-2024-2444,0,0,4077967648b87af230c120a80abe8a1c3709647ab561500ac246716e12815b1b,2024-08-08T21:35:09.480000 CVE-2024-24446,0,0,4c6e15fdd35cea3b2028a0ca801486700d3d050a15d3ac5c7114877688fb3063,2024-11-19T17:35:10.263000 CVE-2024-24447,0,0,68577331a6f4e1af2736b20dbfd3e5dfc70e89a5bafd5ffca69920501cd70cdc,2024-11-18T17:11:56.587000 -CVE-2024-24449,0,0,94b7ee356157654696700a54119a618cf19e3221e75d922aef2eb2814a7e238a,2024-11-18T17:11:56.587000 +CVE-2024-24449,0,1,cb429ffc1f73fa46512b04b6b6b7262785b1e5e3d056a09b6c1ac751016dc45d,2024-11-26T19:15:23.090000 CVE-2024-2445,0,0,4580fbdabeda1a44cff89d119283db83c12561dfbbac9584647c19bac102f840,2024-03-15T12:53:06.423000 CVE-2024-24450,0,0,390d4f5ce7626fbcfad34af0fc653541b705484563fee9cdc21d7a5f37a2063e,2024-11-18T17:11:56.587000 CVE-2024-24452,0,0,215c34bc5144b82ae2422378a4e24e5a234549a60097442b2418405ce8d77af4,2024-11-18T17:11:56.587000 @@ -251541,7 +251550,7 @@ CVE-2024-29217,0,0,1379e154758970ea220e13f9d29020765e0cdb03091ce67a8deaa8fc55306 CVE-2024-29218,0,0,fd28018e0a318ff53d2f889814439c11c22ec14421c2666f247a4001d467468b,2024-09-25T04:15:04.083000 CVE-2024-29219,0,0,e97981c98215900c3d254f2e28d0930b309637e1c27a9ebc7e3a0c0fc074e98a,2024-09-25T04:15:04.217000 CVE-2024-2922,0,0,1b25df5c94d7e701f887b0b87f5c79e45d5758d260e847ab76d1189e34495c69,2024-07-24T20:24:59.953000 -CVE-2024-29220,0,1,d56b29bab759f632fe7a8d7605fc23ec1fd1d59c76310b000cb1d69498dd3c7f,2024-11-26T18:15:19.007000 +CVE-2024-29220,0,0,d56b29bab759f632fe7a8d7605fc23ec1fd1d59c76310b000cb1d69498dd3c7f,2024-11-26T18:15:19.007000 CVE-2024-29221,0,0,caf21d9918383453763db0176447dbbb103b8f57f4b44c5c55842a4c5faa7361,2024-04-05T12:40:52.763000 CVE-2024-29225,0,0,e324c61f780850d0afdcd59138a09d63fbe53e771cb13fdff4dea7ee6e776886,2024-04-04T12:48:41.700000 CVE-2024-29227,0,0,503553f5771ffc17cf37293051860c5f34ef1ca1d7ea1069b7216b5912c8d181,2024-03-28T12:42:56.150000 @@ -254322,6 +254331,7 @@ CVE-2024-32961,0,0,6a2bc47e3f079ae3760e7e20a355b986d2cc4b1830bfe52ea9b46ea57b55e CVE-2024-32962,0,0,0ccefa80df1fe2f4511fc5eb3d9dd6ff74b48f3d30b3249e52ce0d307bcfb377,2024-07-05T16:15:04.657000 CVE-2024-32963,0,0,4033e938076410e0bcb77b62664ef8258e99f8caf87c01b4c2d33d4d67dfbc0c,2024-05-01T13:01:51.263000 CVE-2024-32964,0,0,b623874e6a0274971696b1b7da0d2f443f746dffed315cb1a514ae93f0a27caa,2024-05-14T16:12:23.490000 +CVE-2024-32965,1,1,74056c895659d28134c93cc43319642c2b74dc481fe9db8a3be363705957f1d8,2024-11-26T19:15:23.343000 CVE-2024-32966,0,0,c438f55196809bbbc973f729157ff8c0c6df1250009855187f1fc3a5f9a87d17,2024-05-01T13:01:51.263000 CVE-2024-32967,0,0,edb16c37f9c2fc6d1e9a47803a7b1119309dad5cfcac07761a5d0ee65a1bacec,2024-05-01T13:01:51.263000 CVE-2024-32969,0,0,6ef0f8d88265e6683965945b29c1106dae41ceee98d494ed8c3a06c6d351066c,2024-05-24T01:15:30.977000 @@ -255851,7 +255861,7 @@ CVE-2024-35154,0,0,81f33a307af9c715167f98750875b4e038421ef510b7138badb02afca1fe6 CVE-2024-35155,0,0,371571e1aae62a09e601d6099b5578266a4a707997394118a0b1e39997d5568b,2024-08-01T17:56:03.997000 CVE-2024-35156,0,0,c60c77ef40353c2652552678563f99e9cae12e7989782b9c762483c729b4d520,2024-08-21T14:48:04.303000 CVE-2024-3516,0,0,61323fc04733960d047e16de47c6d5cda2ae2931ba7c42276f6e75842f73a295,2024-07-03T02:06:20.027000 -CVE-2024-35160,0,0,159cedf90dc9dbb522cb3ef7fb1b0f9a76afea593c9473de26f31ecf53de2b5e,2024-11-23T14:15:18.393000 +CVE-2024-35160,0,1,318ce523570aa2a281e98ab12c2ca421a0d155ef6ca7820b4c93b91389e32554,2024-11-26T19:08:22.473000 CVE-2024-35161,0,0,6aea9c3989d886688e1b7e99fb5bea03a80c08fc501d3b5e12f47ed8f4b07628,2024-08-13T09:15:04.610000 CVE-2024-35162,0,0,e2e13ef2eb30c7b92e657f4b1e361b879f73f57d79701db01dafa5276f6f5a54,2024-08-12T16:35:03.640000 CVE-2024-35165,0,0,a5a2ced0aefc202025ce7b223ffafe3ffc4109906dfd07a5a8a0577e3f72ac5b,2024-05-14T16:11:39.510000 @@ -259351,7 +259361,7 @@ CVE-2024-39699,0,0,711bdc17f9c229479a79abf16418d6f303c1d2fb494a38a72ece58a870304 CVE-2024-3970,0,0,91552b239fa9d8e00e56c74ece4dae5720fa4dc9c44897dc0454091791cfe152,2024-05-15T18:35:11.453000 CVE-2024-39700,0,0,c0797f3628df13d0523a3968cdcee9fc6d1644740c750ed207d822c73c9030ad,2024-07-17T13:34:20.520000 CVE-2024-39701,0,0,879aa58f50a7d5b18bfb505718bd80f7c1e443b3ef3725ff1457799d3d8b8189,2024-07-09T18:19:14.047000 -CVE-2024-39702,0,1,4321dd362ed1e1bbd0d5793b212806c9239d130a489ced0fce340c598b116527,2024-11-26T18:15:19.193000 +CVE-2024-39702,0,0,4321dd362ed1e1bbd0d5793b212806c9239d130a489ced0fce340c598b116527,2024-11-26T18:15:19.193000 CVE-2024-39704,0,0,1d59c065d69d465eb86bf6114b5299aaf44c728f69d6748df6b6bd65077d4590,2024-07-03T14:32:56.510000 CVE-2024-39705,0,0,aa75ecfe331ee5d16e104493e16afd26f62024e9296a197b99cac0edaec74e23,2024-09-15T20:35:02.817000 CVE-2024-39707,0,0,a705426f80da8c6a5e48f3d7c38b841a2fbb1f6e4435784c498bc1aedae1b179,2024-11-15T13:58:08.913000 @@ -263394,7 +263404,7 @@ CVE-2024-45873,0,0,c49a27b891c2cba5f20315647687fde4c837ff4206eca9eaffb57a4f0d790 CVE-2024-45874,0,0,2e0e68e484da1ec476bcb0982736db7f6eddfb72b06a902a4960817b887d973a,2024-10-10T12:57:21.987000 CVE-2024-45875,0,0,4511e7c6c223f11ba90de4d69c66ff141aa95f1f82f947b14caa9f3bcdaed5e7,2024-11-15T14:00:09.720000 CVE-2024-45876,0,0,027a13f13cb51be837afea68fb1d7e00076030912fc4892d2dca3a25b5f9f3ba,2024-11-15T14:00:09.720000 -CVE-2024-45877,0,0,bd3a5e512d5935ce6c501d77acd0efa2037f56c41cb6165f588a12d3af203cbe,2024-11-15T14:00:09.720000 +CVE-2024-45877,0,1,9582f95508441ff8668fb3c2396c695e228995bf0aaadec2b0ea7dd7c2886d0c,2024-11-26T20:15:29.633000 CVE-2024-45878,0,0,b7f1cf9ff04c142b3f7a2f664dd5de800a21d58640f5d311d359fd7697e8408f,2024-11-15T14:00:09.720000 CVE-2024-45879,0,0,1a89d4d18e049d294aa3955b22a2d83fd9c1ca44cb5ff049165076871ffb8a88,2024-11-15T14:00:09.720000 CVE-2024-4588,0,0,9198a141cbfd67d79271a90e0ce19e828dccb043a1ec84b18e696744e0f31db8,2024-06-04T19:20:43.163000 @@ -264134,10 +264144,10 @@ CVE-2024-4723,0,0,7af98ecd367a90ef8c416c400db7bb1bdf630fc1c111a3c8e6b7b48b9bb15b CVE-2024-4724,0,0,1e35a8d6fb4d3f11b5f0d2a27ec10d126d5383267b650c161b24f017393ebb63,2024-06-04T19:20:47.830000 CVE-2024-47240,0,0,831fca78a2032785727b73be16136073448f60052857b8463d392806d75f9e1e,2024-10-22T15:28:55.637000 CVE-2024-47241,0,0,58a524562b790b246361050e626ab15f35dfe376489ed5527ca425e0e170e59e,2024-10-21T17:10:22.857000 -CVE-2024-47248,0,1,7651bf8bf97b4114eb6195f7e8f588abaaf47ea34f05f7472983ffa6037e07e6,2024-11-26T17:15:24.027000 -CVE-2024-47249,0,1,3a12f4e9ceae780d05fd92f3807bef19c5d185441f7fd19a12d67688d77acd27,2024-11-26T17:15:24.223000 +CVE-2024-47248,0,0,7651bf8bf97b4114eb6195f7e8f588abaaf47ea34f05f7472983ffa6037e07e6,2024-11-26T17:15:24.027000 +CVE-2024-47249,0,0,3a12f4e9ceae780d05fd92f3807bef19c5d185441f7fd19a12d67688d77acd27,2024-11-26T17:15:24.223000 CVE-2024-4725,0,0,038fe38ac4531e61bf3177f0fb7b7333acb4571c75548945a25c993c1898f93c,2024-06-04T19:20:47.930000 -CVE-2024-47250,0,1,2b6fc2fb381f4c0fcd79db7266be55c8804698fd37c2ed1e3ddda54cddd7a0e7,2024-11-26T17:15:24.420000 +CVE-2024-47250,0,0,2b6fc2fb381f4c0fcd79db7266be55c8804698fd37c2ed1e3ddda54cddd7a0e7,2024-11-26T17:15:24.420000 CVE-2024-47253,0,0,0c81facaa1aa1f7ae0b0e27b1673e803ebaeec77aef71a1827f37f9dbd7dbd49,2024-11-07T12:15:24.630000 CVE-2024-47254,0,0,81bb7fbcf9de24b32604c709597f53a5bfd5dadb66fc238800b57d25b4c1a55f,2024-11-07T12:15:24.747000 CVE-2024-47255,0,0,4e4181b499a17b720343878ad776ef93b384b10f1546c28d389a3c7b495a0310,2024-11-07T12:15:24.857000 @@ -264715,7 +264725,7 @@ CVE-2024-4798,0,0,a3036cf57ec44ed92aa705d72184468d7b712fcb492c4ff2950b8be117e010 CVE-2024-4799,0,0,bef187df7ab031f873bee32f009cee90466081192edf9662131655f9488e20b3,2024-06-04T19:20:49.917000 CVE-2024-4800,0,0,46f73cb5132c32f542b67f61b6f2138522f24eb42a7d5cb9e69a7f683ef97724,2024-06-04T19:20:50.013000 CVE-2024-4801,0,0,2bcdaba0a3afa2888c47ef732ae4862e81c0c79cd78d2076198cb242d0df3f0e,2024-06-04T19:20:50.120000 -CVE-2024-48010,0,0,a49338f56e8782b36c0274df85762739d78b33b4bc558cf4c85f494e17a854dd,2024-11-08T19:01:03.880000 +CVE-2024-48010,0,1,8bfa5c4fbebd2aee91d2507ef982cfb796b2239ac566eed501e3cdcb4f94749b,2024-11-26T19:26:13.733000 CVE-2024-48011,0,0,a9728badb7d598d793c75f011338af9c8ecb3c3f11de72d571fad0ef11851267,2024-11-26T02:12:04.277000 CVE-2024-48016,0,0,79b8427a21b025c2b604d3c3d72e2379266e5f76164b198ef3ca33d423daa7ad,2024-10-21T17:10:22.857000 CVE-2024-4802,0,0,9f23c738b4e7167dada064b214f9ad2d560e5cec48c7eaa4346088c33abc9143,2024-06-04T19:20:50.247000 @@ -264855,7 +264865,7 @@ CVE-2024-48280,0,0,3fccbb43adc0eac89fff4a77fa6463e9ab8591cb5e7aecf8a80efbe6484b9 CVE-2024-48282,0,0,053fa49ae9967fbc35cea64fb50742395541b443f63ba6361e4836107ed1b694,2024-10-16T16:38:43.170000 CVE-2024-48283,0,0,c5c95d36f4cc9b3b4716d94f26715484ab471510ba26541a1f3c47bce371907e,2024-10-16T16:38:43.170000 CVE-2024-48284,0,0,eb90b699830934fa3cc834b15ddaff775406850c427104902573172c28bf14d3,2024-11-19T15:45:55.450000 -CVE-2024-48288,1,1,5a8bb186cedd842f2f548660f583ac55083342716fce313493f2b68bd6e391d9,2024-11-26T17:15:24.610000 +CVE-2024-48288,0,0,5a8bb186cedd842f2f548660f583ac55083342716fce313493f2b68bd6e391d9,2024-11-26T17:15:24.610000 CVE-2024-48289,0,0,3c17d5bd38424fa0af920fbe41958bfb5ff6ab46e45b8d73a90e0bb1a9946e7a,2024-11-04T20:35:09.307000 CVE-2024-48290,0,0,470dc7a365392aceea819604e300f16b964336068e4f6e607d709f5104e50d51,2024-11-08T19:01:03.880000 CVE-2024-48291,0,0,3c4533b920a9f2edb3f01b1757898b30516db1528ffb114ee1df5dcc338084ea,2024-10-29T14:34:50.257000 @@ -264887,7 +264897,7 @@ CVE-2024-4840,0,0,7a8f20a0ec5233209e4a41e695adc74d1c7cda82b3b5dffacdd4c6925c1a6f CVE-2024-4841,0,0,65ebfdfe2681835a6b4ece6477d685d2c79df9dc285d61b3c6847a6703ab5189,2024-06-24T12:57:36.513000 CVE-2024-48410,0,0,ccc65ac0ed111907d1e5a65a9755c401ec69cc35af0c3e48b39cab031ff07170,2024-11-04T21:35:10.317000 CVE-2024-48411,0,0,f02f5a173c68a1066ae1d0ad3ecb091448747ebc7ae5d98814db8ad4f2b7f72f,2024-10-16T19:35:11.290000 -CVE-2024-48415,0,0,74b10390d002ade4800e5d7a55f6d3a4ceb198a0f7cd7077ee2455a630a69b9d,2024-10-25T16:55:26.083000 +CVE-2024-48415,0,1,bb9e3b97ff90d39743d554ba54d4e6857ce95f8c7a439d575dc2c98763652ebd,2024-11-26T20:29:57.070000 CVE-2024-4842,0,0,266948939b8663b41b45dca8cb12f3f3247c17eab2663a8a73d7a0fbf198d426,2024-05-30T20:15:09.703000 CVE-2024-48423,0,0,5dcbe66de23651d18f02f6e3dbae179ad5758bfe582bf16fbabeb5630b6f2dd9,2024-11-05T17:54:34.027000 CVE-2024-48424,0,0,40269a486047942b0c54d704b8b037cd3035d9ce415f6a7c6672231218b45918,2024-10-28T18:35:03.257000 @@ -265001,6 +265011,7 @@ CVE-2024-4874,0,0,4b5967df7915507c9b0020b0ee4984332d2c23e37a57b9a262a2ae6c5b300f CVE-2024-48743,0,0,e34f375e468f7c410c7d8c60761e70f3ee3d5b15b7109d5d939d88a21b51dbc6,2024-10-29T19:35:25.777000 CVE-2024-48744,0,0,424c481c5fd1d12d1736019bf9f8804bc723e4ae30a5fde28dbb02cb380182de,2024-10-16T18:35:07.013000 CVE-2024-48746,0,0,cc71971d0c35eb6ede5bd98dffa458b269b0f1ad6fe183bb1ac7ae9499973876,2024-11-06T18:17:17.287000 +CVE-2024-48747,1,1,f03e580691c37a981f499cf0b560468ec0253c9c99edec66cb15f26778f95804,2024-11-26T19:15:26.443000 CVE-2024-4875,0,0,5a9bf10de46e2f944321ed00fa6d17c799716a219001f5797c9cce4abb6a2b7b,2024-05-21T12:37:59.687000 CVE-2024-48758,0,0,a0017ffb6fab9626ea62b98de0c6903a7dbb8c74f73f1e588de68b4bc17a833d,2024-10-18T12:53:04.627000 CVE-2024-4876,0,0,6c7ef7cd93a9d659be2199330000de11a6027348fd6a9308e40ba12083e70d2c,2024-05-21T12:37:59.687000 @@ -265178,6 +265189,8 @@ CVE-2024-49030,0,0,593cd98277b4a2f03786fe9452fade2fe8094f0a76a79e95147391239b55f CVE-2024-49031,0,0,b495cac2b66ea6bd08375163a8c3deed4879c768ae6c2515d6045a564174a6e7,2024-11-18T20:31:54.983000 CVE-2024-49032,0,0,4b545ebbbd503cfb4f9044313cab083e94f10995cfa1fa34c750f5e6d8a8b9bd,2024-11-18T20:31:05.720000 CVE-2024-49033,0,0,63058f1330e847b335fbf4311cedb25087f2de5c7e23c690bdb31c685f252bf9,2024-11-16T00:05:44.867000 +CVE-2024-49035,1,1,a0ddab84ae6d08cda29fdcef0f87b735aa4b299d466c6c5e8ff8c3bf9dfbf1b4,2024-11-26T20:15:31.763000 +CVE-2024-49038,1,1,c1a6574e4f2173ba91eba71f5cd01b7f54d3209b6836e71217b68b1ec62e52f1,2024-11-26T20:15:31.943000 CVE-2024-49039,0,0,35081b6450a24914db672b1bfea30c0edc233e94d1f078f8c664cf196464b147,2024-11-14T15:20:51.670000 CVE-2024-4904,0,0,e08155723dc24ff1bcb5adf9d2f839d33f4e022ac557667a35564764380e5202,2024-06-04T19:20:52.380000 CVE-2024-49040,0,0,7a758192e076767fe257f5372e318acec3bbf74a999fea4db7595a5b865f2211,2024-11-16T00:05:03.997000 @@ -265190,6 +265203,8 @@ CVE-2024-49049,0,0,676e59d622368d0e2de502959e0aa570d5a79d19d908c25acf07cf3944fb3 CVE-2024-4905,0,0,acf7154e104fe12ce44ad2e90ccc9d1c19899bcc28d8f8bfc61002cc40187062,2024-06-04T19:20:52.480000 CVE-2024-49050,0,0,93eeb9096370b7db9bf9f90a3fe0c42db4f28f9c6c61047c6c15fcc41cc6316a,2024-11-18T22:03:27.367000 CVE-2024-49051,0,0,b5a7ec15db6a9c105974c2d72fbba373184798bf7c3998c1e724145818180e27,2024-11-18T22:23:46.893000 +CVE-2024-49052,1,1,9bae9acd5c7b02cefbf1d308e6bd581bb9af23e899d9352bff32b09f0a766b2e,2024-11-26T20:15:32.723000 +CVE-2024-49053,1,1,2179c6b6568292f26d81b3fa8ba6b662e6a320c3040ff5d15e31aa2b4e7d89f1,2024-11-26T20:15:32.890000 CVE-2024-49054,0,0,84397423f2138e5969b76a6c83810f4b99a1391260a93f325d00d80352009e27,2024-11-22T16:15:32.150000 CVE-2024-49056,0,0,45909acaf00cd3c64a19d5557ee0abf98abf49c50825d0cd6a263c45cc01e6bc,2024-11-13T17:01:58.603000 CVE-2024-4906,0,0,dcabb97348a8cb55b860a9e76b2d4e839fce25f207d8f1f73aadb53eff678110,2024-06-04T19:20:52.587000 @@ -266499,7 +266514,7 @@ CVE-2024-51051,0,0,c7ef0493c2d4276c9149b3e33eb7aaae108f5af12de2e7c1eeff57f053b88 CVE-2024-51053,0,0,547f4234840a3a665d09dfe19ab7c8fa9aef98812f3309513b65d89d07e3a169,2024-11-19T21:57:32.967000 CVE-2024-51054,0,0,5f7e39a7aaba6174905b6372920760418cc96f41e26463faa8167a7c26d82367,2024-11-12T20:35:17.823000 CVE-2024-51055,0,0,01ccd52478b3519c5dabbf4568ac988a576ee058f14d536ab175a95478255e40,2024-11-13T16:35:25.810000 -CVE-2024-51058,1,1,51b91660027dfbf56a034de68f44847362f81b5cb133fe9ca222ad429e17c9ae,2024-11-26T18:15:19.440000 +CVE-2024-51058,0,1,1df57f040875030030553978f3e0f00b2e4a262a66f0c6db8aba769ebceb1ee7,2024-11-26T20:15:33.253000 CVE-2024-5106,0,0,0c609f41f655027086ae34a799c5dba7518161802bc29d490607b24bb6cca58b,2024-05-20T13:00:04.957000 CVE-2024-51060,0,0,402a659a58502cf6652d1569d08a8e1bb7141b9ef84b5e613167d10864e0cd4d,2024-11-01T17:35:08.443000 CVE-2024-51063,0,0,9e69a8a911d8071b54e4574d5d702b1952770d32179ac558a313a9f533d2704b,2024-11-01T17:35:09.657000 @@ -266507,7 +266522,7 @@ CVE-2024-51064,0,0,ece811d6bc4d0a8a39ffb1295a05e98aa14ea4b37a609a0a704291f46ae22 CVE-2024-51065,0,0,13eba658de2ad8a597e121d04159d33db90d11b073dc40f03a99a360d854cd46,2024-11-01T16:35:29.133000 CVE-2024-51066,0,0,43893f00c972f583b870a001430879894062f80987f31522bd1f9ce18500c0dd,2024-11-01T21:35:05.747000 CVE-2024-5107,0,0,f5453befe05d8931f9c9a9c4f41bacf3f3f4a7efb50cfd25019760201fcefc62,2024-06-04T19:20:59.600000 -CVE-2024-51072,0,1,d31050b6f86bd1474c576a9adbed44a1fd96845f76da230b11a2e0afed15fe64,2024-11-26T18:15:19.603000 +CVE-2024-51072,0,0,d31050b6f86bd1474c576a9adbed44a1fd96845f76da230b11a2e0afed15fe64,2024-11-26T18:15:19.603000 CVE-2024-51073,0,0,e6ba30a7b201ed724a9ac195f162f9e1706758f965701b6890d0b8fa05eb8fd7,2024-11-25T21:15:19.847000 CVE-2024-51074,0,0,76b2dfecccfbc118fee0c16cb883801390e41d29c266961e51a6341078dde974,2024-11-25T21:15:20.390000 CVE-2024-51075,0,0,65ae3c5f839d1343cfe96d616d54dd3277e3aa60c8e36fb4e4a98f4465a848c0,2024-11-04T13:41:29.567000 @@ -266702,7 +266717,7 @@ CVE-2024-51565,0,0,8328dccc66875095c16fdc6e805e5ce0383a91c04e800f1484dfae6d2bbb9 CVE-2024-51566,0,0,097d7503de9262fa6c32cea6fce0dd60f1cc86a10c695ba52753bd5f0d9774a4,2024-11-12T15:48:59.103000 CVE-2024-51567,0,0,9629c1871377d5b3a8fc7e24f37cf5fff8c7d9ecc5af9890fa03e865aa78aead,2024-11-08T21:14:28.807000 CVE-2024-51568,0,0,ef96c64ab696ce1dd0f4d9f421838b3895b55219506da5bc264e22e1b5e0e5b2,2024-11-01T12:57:03.417000 -CVE-2024-51569,0,1,25f5c04208462c5819edea4108c99da299cae21458308b4c3fe693806aa641df,2024-11-26T17:15:25.053000 +CVE-2024-51569,0,0,25f5c04208462c5819edea4108c99da299cae21458308b4c3fe693806aa641df,2024-11-26T17:15:25.053000 CVE-2024-5157,0,0,24d31b037c5fbef35f77d9be746cd537f78e6f1e98b9c21955d97a62fe59949f,2024-07-03T02:08:34.407000 CVE-2024-51570,0,0,c32b58de950118e1e049594e92f53929812b854ff223f3930e4209ac944b600a,2024-11-12T13:56:24.513000 CVE-2024-51571,0,0,3fd77a33a50e24f063546fc706f0cc6af0599e1b1745ad0ad52f8eaeb4035ce4,2024-11-12T13:55:21.227000 @@ -267088,6 +267103,7 @@ CVE-2024-52001,0,0,ee27726a1c73b7b7f6e5760fe3ce79bb84c8b16431699361ef4c426b16c2d CVE-2024-52002,0,0,c00913d7259c42a7cc8354350f7a82513ce9d83d7bd5962c00b4cf14c2a1047a,2024-11-12T13:56:54.483000 CVE-2024-52004,0,0,5fa07d0a35480bd23f86ea684f2a0f66c5e4b9b2bf1fbc1961b6e8f9dcc625fa,2024-11-12T13:56:54.483000 CVE-2024-52007,0,0,9b9844f37c4a4c3cef932fa358d8594e2305c52695217b7622048372b9ab612f,2024-11-12T13:56:54.483000 +CVE-2024-52008,1,1,262060a233ecffd7ebab469c10cac8fdefe6653fedfb294b7540834b512d5966,2024-11-26T19:15:29.583000 CVE-2024-52009,0,0,8bbf25e6f645e131b823aafb60173e6af960fce613c6d8dadc55e928f3ee2540,2024-11-12T13:56:54.483000 CVE-2024-5201,0,0,64f0da97aed099b7390504c61b2a584cf361827a66e92ad103d8b3995d82fd05,2024-05-24T01:15:30.977000 CVE-2024-52010,0,0,d43a8e44911599c95a271d1e93a8f7a1d15acd8bcb02bd0dfd80bd825c1bb964,2024-11-13T17:01:58.603000 @@ -267170,8 +267186,8 @@ CVE-2024-52317,0,0,8dd9cf0b2675d0151da3af6e2ac3dfaef7e6c1fd135283d8e3e44d96c5be7 CVE-2024-52318,0,0,2bba437e59239c6e36ab9227be3e173d0f3c7cc38d614e024ac840e507a6b100,2024-11-18T17:11:17.393000 CVE-2024-5232,0,0,8d68905f3b69b3dadb32694d2c73f30dc32ad3c794d56bacf5b1c8bfed3d3bb6,2024-06-04T19:21:02.890000 CVE-2024-5233,0,0,d230ff373762a089849cb791769c151d4d1eb1a364270894bffa0dbac945e679,2024-06-04T19:21:02.993000 -CVE-2024-52336,0,0,eb8bfedf000096d28a0808189751aed72798ff54643d27c73b599820935a4a22,2024-11-26T16:15:17.093000 -CVE-2024-52337,0,0,4c2c32c989a5e34dc4569f947c8b607bc7948851ff893a4217cdcb3074295572,2024-11-26T16:15:17.717000 +CVE-2024-52336,0,1,5ed253ebd2a82ef5ea3ab5a60ad11f0bdb76616e1b68538042da9f8c97f4e20a,2024-11-26T19:15:29.747000 +CVE-2024-52337,0,1,23b4775368bbdf0dec045a90c06cd1e5b3e2f47d3699f76ca9bfb7e9368b5326,2024-11-26T19:15:30.013000 CVE-2024-52339,0,0,a92fd5f858dc2ec0979f9ef9252c34f43da704c1fe29995d6e8479e981a2460e,2024-11-19T21:57:32.967000 CVE-2024-5234,0,0,14a09ab7485c5dff6a0e2d37ff7f584b26da4a8cf075e00d5ab541632ac32bbb,2024-06-04T19:21:03.100000 CVE-2024-52340,0,0,1ce8f72307b0aab768065c6e681deaa5810d8249edcdb0269dd2cfb07a2d1504,2024-11-19T21:57:32.967000 @@ -267370,7 +267386,7 @@ CVE-2024-5265,0,0,23ae6b699421b146407b64fc352f84f4385a86a37bc2f3798f85fec07534db CVE-2024-5266,0,0,0ac195748009e62b525761c49acf97f593b0c2f3ac01d138f9c93c4ef03661dd,2024-07-23T20:17:55.073000 CVE-2024-5267,0,0,46668d154f6ef78d29586983d5d2edaa995ecd77518ea035f59ce7176b7147a1,2024-09-24T18:56:10.507000 CVE-2024-52675,0,0,dc005f40e646c27e5740398c3f6fdf61120f8160379ed2d6a5fe11413db7e190,2024-11-19T21:57:32.967000 -CVE-2024-52677,0,0,31bad5f3a78a9c7f2ed22eaaa87b0996cd8fea07caca397ccafd3cd8c14290d9,2024-11-22T16:51:19.797000 +CVE-2024-52677,0,1,a5c88ce47454194627be2f8f1fe3df00ebe0da52945fee61c5f68cd7449a9b4e,2024-11-26T19:15:30.253000 CVE-2024-5268,0,0,a6d8167214bc75f9071a59fc8bc107cab067c253ba36f8c70c02e602f94a1506,2024-09-24T18:47:03.597000 CVE-2024-5269,0,0,fcc703e959dc9fcd54d2dba10777aa46d0a7036a8f955bfd8c508426ccf0b225,2024-09-24T17:50:07.957000 CVE-2024-5270,0,0,7ec6ed8f215026bf9d30718594365eb1a902134340d8c0dfba08c80435c07d35,2024-05-28T12:39:28.377000 @@ -267394,7 +267410,7 @@ CVE-2024-52759,0,0,efd0fc3be433f7896365088928907f2feb653062abfc384aa04c2ee4da082 CVE-2024-5276,0,0,b98c8bf623aeff1994feca32cb34066ea8ef6a81fb35099972c112f59613dd44,2024-06-26T12:44:29.693000 CVE-2024-52762,0,0,2da142212af1f3c370b1753b9867e2dc76148c3ba2e7239c746267d4ce514522,2024-11-20T20:35:17.280000 CVE-2024-52763,0,0,c5573017d062db00f6bed25c6759761baf5200224a59e32fc8cc1b829343cac2,2024-11-19T21:56:45.533000 -CVE-2024-52765,0,1,215d573d92d5d4ab707e8db266a06400b9c1cb39b63c86b9575271eef3bcc4b8,2024-11-26T17:15:25.557000 +CVE-2024-52765,0,0,215d573d92d5d4ab707e8db266a06400b9c1cb39b63c86b9575271eef3bcc4b8,2024-11-26T17:15:25.557000 CVE-2024-52769,0,0,b6cb45d7326db7c74bf072246ac67a1dfffc75d7966f0886ca77640876da3fd2,2024-11-20T17:15:19.907000 CVE-2024-5277,0,0,c22b3e398c55d24f660b1a45a3310a9c6b0abef458e72374f87af318fc09202a,2024-10-09T14:49:25.753000 CVE-2024-52770,0,0,7aa9649a9670c716ce311ac92684885a9b795e1a2574f48cc59bb70ef562262a,2024-11-20T17:15:20.200000 @@ -267536,6 +267552,7 @@ CVE-2024-53258,0,0,a915b82637f40f0c10b7fb4e3ffc3bc669fcfe23ea0f5d157743938cb68f1 CVE-2024-5326,0,0,2be4cbe8832da29a051a88af0386c312f2db765fd88a5b2a911937a61354bc30,2024-05-30T13:15:41.297000 CVE-2024-53261,0,0,26d255de57d248944569dc2de87b17d6f9e71a4446cd8213a8b457b4c29b3a3f,2024-11-25T20:15:10.217000 CVE-2024-53262,0,0,b58ac4cb966f18ebf91dd1e51ed9015ec986a3fab28fed8c4a716894290c935b,2024-11-25T20:15:10.423000 +CVE-2024-53267,1,1,435aaf06f363b16b0f43f95542795183cec3885e1b1b20e743e59c33950fcb0f,2024-11-26T19:15:30.473000 CVE-2024-53268,0,0,007aa1474b5fa3204d1321367c5c9ffff4ab0370ad189bb72596a6cd01d88cfa,2024-11-25T20:15:10.583000 CVE-2024-5327,0,0,4827791dbb34368c55d6cd06e5ae60d7938f5b7d8da35d37ecd04c9478388419,2024-05-30T13:15:41.297000 CVE-2024-53278,0,0,1edc5c251ee4bcfedd995bcbf8c129ae024665a932e08b92e99c76ae653deb38,2024-11-26T05:15:10.563000 @@ -267545,19 +267562,19 @@ CVE-2024-5330,0,0,d052f676e850b1a7538b470735e7fe5f7dfb3046b39fa2778831cd7f8fdd99 CVE-2024-5331,0,0,f05fb229c386046dcd65cdaa4c35f1d7d27dbf88e27984042e1518b076a10077,2024-08-01T12:42:36.933000 CVE-2024-5332,0,0,440877c08f2207e575e98ca75a231683ae97178fa156f1a4d40f84efe3c80f11,2024-08-02T15:03:49.773000 CVE-2024-53333,0,0,92c7fe13830f0aa65ff76da18ab8b2df2abe26dfb09110de08f83c1b81203228,2024-11-25T22:15:18.437000 -CVE-2024-53335,1,1,c7b5a8f73d12d44b7820d29b4dc55e553a7dba1e50218bfd0cdeaf78dc12e004,2024-11-26T18:15:19.850000 +CVE-2024-53335,0,0,c7b5a8f73d12d44b7820d29b4dc55e553a7dba1e50218bfd0cdeaf78dc12e004,2024-11-26T18:15:19.850000 CVE-2024-5334,0,0,24408ed0ac6ef1e7a34f70a35a6cc670103055f984541012ab7ae541f1637158,2024-07-12T08:15:11.130000 CVE-2024-5335,0,0,ca6f9c300eae3fba64e2743a790d9179f2c4fca4ad8e008f81848f8094115088,2024-08-21T12:30:33.697000 CVE-2024-5336,0,0,2f884d9a8acdce925dfd5f3bbb7e4d857b44070abc5058c1ed58328cd4186515,2024-06-04T19:21:04.947000 -CVE-2024-53365,1,1,7fd0febc04343f9af27e4f293dfa909df2bbb2cb7cdd17a7bd3df1c8f08dbf68,2024-11-26T17:15:26.123000 +CVE-2024-53365,0,1,f94a22f04b10f25f8afa0eb1104a56f755f11fa91566b703eeea9947dc95908c,2024-11-26T20:15:33.650000 CVE-2024-5337,0,0,2b5f97595978a274de9cc82ffbb4e0a657c957408faf59676ddd95606d164a93,2024-06-04T19:21:05.063000 CVE-2024-5338,0,0,a30664650e5151e5bf507d4d1b27e8e105537061b8462474ea4f7add61cf4b05,2024-06-04T19:21:05.170000 CVE-2024-5339,0,0,f1bbd379636cfad5e34ec0ced69571115fae96e9b2078934f8d5d54e609ed8df,2024-06-04T19:21:05.273000 CVE-2024-5340,0,0,546c56f2649b42bddc6aa9959f384e4ae23101ba059a7107ea7eadf7da74c09f,2024-06-04T19:21:05.373000 CVE-2024-5341,0,0,40f4ad179dcb36606de702fcfb61368c761e9a979db8ddd9beb5e39827e7a792,2024-05-30T13:15:41.297000 CVE-2024-5342,0,0,b9462ea77ffff29ff50fcb5529de81f4f86998607e3428d3f0d5025aaca0f233,2024-11-01T14:27:11.580000 -CVE-2024-53425,1,1,dba41ac0d03c322e076798942c48ad94ab227d8220eb1e3a3534e4bdae7c6815,2024-11-26T18:15:20.090000 -CVE-2024-53426,1,1,9339130e86a75243ea176c2c1911663d0047bd370b4ea0fccb09719eca2c3ad9,2024-11-26T18:15:20.330000 +CVE-2024-53425,0,0,dba41ac0d03c322e076798942c48ad94ab227d8220eb1e3a3534e4bdae7c6815,2024-11-26T18:15:20.090000 +CVE-2024-53426,0,0,9339130e86a75243ea176c2c1911663d0047bd370b4ea0fccb09719eca2c3ad9,2024-11-26T18:15:20.330000 CVE-2024-5343,0,0,fedc1366914170279f2e5d2ad585273a49bb658750b62f8b5bda5b06ac846b44,2024-06-20T12:44:01.637000 CVE-2024-53438,0,0,1f1caf7763eee1499fc294ada560bfb533a27a99b843716b542793ff5fef1fb8,2024-11-22T17:15:10.857000 CVE-2024-5344,0,0,b9eb66177d3d824bf1f1529dfc9f0ece4e45e95565139113aee3e384e4e64696,2024-07-17T03:07:04.743000 @@ -267573,7 +267590,7 @@ CVE-2024-5353,0,0,525ae1f28e269a2f910a2998894d881f94e776efad76469271fac08c213e4c CVE-2024-5354,0,0,2705d9995a32176e712249b570d9e2fb33b0b6cf2235d27d22b60367c7562ece,2024-06-04T19:21:05.783000 CVE-2024-5355,0,0,5f2e376ce579cedaa86f2a16497e6e751e8e7c9f0422d5f739a3fa31c20b6848,2024-06-04T19:21:05.883000 CVE-2024-53554,0,0,438643a55aaa35b78f1b23aac2881a01cc4a8024d9a2bdae2137a7b9fa7a8998,2024-11-26T16:15:18.520000 -CVE-2024-53555,1,1,b5d118cdc7dca72641ddfd6fdd7368e354ebcb7e5193906f7f9f9d850b7e7164,2024-11-26T17:15:26.300000 +CVE-2024-53555,0,0,b5d118cdc7dca72641ddfd6fdd7368e354ebcb7e5193906f7f9f9d850b7e7164,2024-11-26T17:15:26.300000 CVE-2024-53556,0,0,48f17862e47add857cc3012444f5820a601a669e2f1886efc4926c973e3aada3,2024-11-25T21:15:21.693000 CVE-2024-5356,0,0,85f64e8ba0cebff8187202ea327ca3c906742c5e7d2301ba82b2780a509234eb,2024-06-04T19:21:05.977000 CVE-2024-5357,0,0,3e42587e7af2230be214dc062d75c1c832a73aeee43ae2fc11277198b34ad5c7,2024-06-07T20:15:12.387000 @@ -267583,7 +267600,9 @@ CVE-2024-53597,0,0,9a4c545b5865d03e7d82c6ef3ae0f046b57734eab4f58e2724c4e5178d1b9 CVE-2024-53599,0,0,fd3383bf56de062fbdbeb229ef5252493e3482e4bcfabf0584010575f7387ef2,2024-11-25T21:15:21.993000 CVE-2024-5360,0,0,9a09bdfd8f70d621de992279dbf64a12a444818faeedf82bbd859ed192a0d3f0,2024-05-28T12:39:42.673000 CVE-2024-5361,0,0,5486d2207143454b44a9225276732f9ee62f5258ee0c41c9fa5501a1b55451e4,2024-05-28T12:39:42.673000 +CVE-2024-53619,1,1,7d24d177db4282b10dd583a800553384958865a9c2b032eab35d21cf889272f3,2024-11-26T20:15:33.880000 CVE-2024-5362,0,0,5b47523dd74fc943fbc0021df1551e4d13ec69c02c41616d4b2935f18460ef93,2024-06-04T19:21:06.287000 +CVE-2024-53620,1,1,9d59f48eff7094eebabf16396953b43066a8c0a92b748f43ae8922b5e2bf6319,2024-11-26T20:15:34.050000 CVE-2024-5363,0,0,bb04284a4e58fb2effb3b9c467567f3bbd6015eb64c220429872004dc6821b06,2024-06-04T19:21:06.390000 CVE-2024-5364,0,0,96afe929167b2de1681dda607a064227a5b629af3adb1987caaf0917b62b92a8,2024-06-04T19:21:06.490000 CVE-2024-5365,0,0,4b68a39efcc7d1fdd266d085800e02f841a36aae12ede01463956a125c285501,2024-06-04T19:21:06.587000 @@ -267607,13 +267626,14 @@ CVE-2024-5382,0,0,89de52ac46497e2894cab1bab1dd4b0e93975c2cd2d4911a68fe0b848c20cc CVE-2024-5383,0,0,d150bf26fb35d2a14ee1eb4bf942c0bdbcc9199cee0de8b154db204bf6e2357b,2024-06-20T20:15:20.457000 CVE-2024-5384,0,0,73e6d40ec5d3477f7ae6e5e9fbabb11a01cb879f05dde3e0d9f2c2760497516c,2024-06-04T19:21:07.913000 CVE-2024-53843,0,0,fb790ea92e56bce04d8543f109eb747d943f316d3eeab0b48f576ddbb2ed9eb5,2024-11-26T00:15:07.430000 +CVE-2024-53844,1,1,f54d4575fccfa45cb1306e55e04ed154008d30b320d65227acd00b96c54e3472,2024-11-26T19:15:31.463000 CVE-2024-5385,0,0,5113296fe5b95e2ca5ffa573f35631b642d4f934e6e56cfebf21d51c8e50ce86,2024-05-28T12:39:28.377000 CVE-2024-5387,0,0,d7455745fd4e2043656d894120ace9fd562ab2b459405f5c80fb87774616ea6e,2024-06-03T19:15:09.500000 CVE-2024-5388,0,0,88068f2d18329bc2e1ad4660154ccfa55826fed94a4e1660b5757c6715c273a8,2024-06-03T19:15:09.557000 CVE-2024-5389,0,0,f6aaaf23dff2a1d7f90a7950cdbb76e8322ef8c0ff1bf8f6173fe4634d169b69,2024-07-09T19:15:13.853000 -CVE-2024-53899,0,1,ca94e39391001349829a2f872ca5d1d0c6ef0f2f07a2a901a4f8c2f87ada266a,2024-11-26T18:23:09.517000 +CVE-2024-53899,0,0,ca94e39391001349829a2f872ca5d1d0c6ef0f2f07a2a901a4f8c2f87ada266a,2024-11-26T18:23:09.517000 CVE-2024-5390,0,0,577e03013c579fd5ea5c07b95a092cd4d32be3fa4130d25da9e61ffe468007ab,2024-06-04T19:21:08.020000 -CVE-2024-53901,0,0,a856ad898af1d7a6e4e72889b89fe64fdf720b1f2234f48473f413bd8403693c,2024-11-24T19:15:05.193000 +CVE-2024-53901,0,1,52cbcc170c451b305e90c5f0e2a88558d86a9bc5446c93579e76a9aa43a0081d,2024-11-26T19:52:01.653000 CVE-2024-53909,0,0,0cc1acc764218c2cb52cd0a51a4c5a586232eafd17e1fbcd3dd59fcbec94b8eb,2024-11-26T16:15:19.210000 CVE-2024-5391,0,0,a7c29f93c1b76aed47351138468a6c5b251b9f9a4ad39cf688118719a36ed1c7,2024-06-07T20:15:12.687000 CVE-2024-53910,0,0,8e680173798cf8aba57b99387a23b6a832549a64c0d41791ee255a5fdf770d81,2024-11-26T16:15:19.597000 @@ -269261,7 +269281,7 @@ CVE-2024-7249,0,0,73974231501387b12eacc736781f51c9d8ec8d78fa61d8eb72875d86090b0d CVE-2024-7250,0,0,2714d196410008034281d23fd2726bb5d251b721e04c2e3643d0ed11cf2d609a,2024-08-20T14:58:56.213000 CVE-2024-7251,0,0,e880a7a9378bf8b927f40852329063562fbba4ad5a97a9957dc1093c25591f2f,2024-08-20T15:00:02.603000 CVE-2024-7252,0,0,490536b1b267bc05e09f33c429c150806f5477f059597f5cad78d37cad62a66a,2024-08-20T15:00:39.470000 -CVE-2024-7253,0,0,a80e1b576a9a7a5ab26bef052f3b80dae605c11d6e6250f857d0a344359175ee,2024-11-22T22:15:17.667000 +CVE-2024-7253,0,1,7f91c8e02eeb95aaf9a2f323d5aa05bf761bf6c98ff5a15ee0990bf815671c2a,2024-11-26T20:00:48.783000 CVE-2024-7254,0,0,8400894e8711410825184771bcde9b50c684e58b49dfe4878e8d0a79485e219d,2024-09-20T12:30:17.483000 CVE-2024-7255,0,0,4863127059f6d450bc39bc659baa7b1b6efaf5c368e1eb2bd96d7a11061a9c5b,2024-10-29T20:35:42.023000 CVE-2024-7256,0,0,28c6c5405ca0661376f4706f7e75647b14826bc648847c0c2ef29d4ee5bafea0,2024-08-03T18:35:04.003000 @@ -269353,7 +269373,7 @@ CVE-2024-7348,0,0,3d1228f3ad08ea7cfe68d4df8a31a5ae3b9df9b86e858b3756b13b4b2c220a CVE-2024-7349,0,0,1654fb20b3d5b8111af7165700d7dd7fc184ee1783ff4e6ae92268a2f53d23f5,2024-09-12T12:43:32.957000 CVE-2024-7350,0,0,d4174556ac92d5e9a2a8dc8d5eec461477866543996df72c5d41b5df846ab0dc,2024-08-08T13:04:18.753000 CVE-2024-7351,0,0,a289bf4a77945a66ead7c1b1e012c68ef66822055b6831555c4ba82ee4eaeaa9,2024-09-27T12:48:20.803000 -CVE-2024-7352,0,0,2639e4966c046ccbaec0165a483b0fce693cb60d732b8d2a3258f9358293243c,2024-11-22T22:15:17.780000 +CVE-2024-7352,0,1,e4d4ad955d3c59da3ab42aaef824ffffa4cb01499887857f6e439d6dd19ea14b,2024-11-26T20:58:09.063000 CVE-2024-7353,0,0,41679b571aeb0f65d12733ad6909f06c490b83d168f3a79e42cd0098d7b4bdde,2024-08-07T15:17:46.717000 CVE-2024-7354,0,0,baf29f5d594addfb563186459988c59d993893f0abd2b75dc7cd193297531f7d,2024-10-04T17:16:20.943000 CVE-2024-7355,0,0,071610fbf603e9022aa74d299a7d28ffd46303d85d85cb60c4b41df2eba6145e,2024-08-07T15:17:46.717000 @@ -269986,6 +270006,7 @@ CVE-2024-8108,0,0,8f1cde3e4e080de95c0957ccbabc0a49f644f40a04612484228affb54375e5 CVE-2024-8110,0,0,35b29aa278bc186f939dacbb87981e7b3283cd41ccc0818c634be4d5c87818aa,2024-09-20T12:31:20.110000 CVE-2024-8112,0,0,68d19c324dfb08f42fbaae63f6c41217ad9d464e632ed1f450780261e0cb818a,2024-09-12T18:23:22.507000 CVE-2024-8113,0,0,955ebfeb47657ee688d94f4a91bdebad900106533d62e5ae0eb920a40b616cec,2024-09-12T18:21:30.677000 +CVE-2024-8114,1,1,842d7dca5f80d67866352fe392ded687555e122151e3fdce1e16886df3ea06d1,2024-11-26T19:15:31.660000 CVE-2024-8117,0,0,8911918cea1d80613ef158836fc25c8d180447229a308c8b8d66c79bd51e5356,2024-09-06T16:04:23.413000 CVE-2024-8118,0,0,d03bd1088dd7cb21afc11db9cdab895da8448f1f18598e5ee7682cb773fed419,2024-09-30T12:46:20.237000 CVE-2024-8119,0,0,209c67cb8bfc8afcb7a4732dcac7c96ef9caf231c5c5c990646aa6c9fa168084,2024-09-06T16:11:02.370000 @@ -270041,6 +270062,7 @@ CVE-2024-8172,0,0,0f560f815e4f982c5fa8dce4e33b1159bf9bccf943a059983fd049dd30da68 CVE-2024-8173,0,0,50ae04f881a2d18920200f91fab2c91cb50ce1f1b838a9340ca053dbaf5dd83c,2024-09-05T18:39:00.950000 CVE-2024-8174,0,0,8543f0d8f92ea7727c4605df4b165224a3b6d137f11ee710b81d48c311ac7b21,2024-08-27T14:32:08.607000 CVE-2024-8175,0,0,93cd36c03979068837f469bd77e40d2775fae2df59f7cba10d5c6e9b4e387e5b,2024-09-26T13:32:02.803000 +CVE-2024-8177,1,1,1bf56cf2fe712b296ae6a153ef045603d87fba98dea3681a70b0a646bcca8e0b,2024-11-26T19:15:31.860000 CVE-2024-8178,0,0,ba572c1f8157c41d405fb002c7b6f163f2d56dcc78fed52d2bcc31657caf5604,2024-09-06T17:35:20.203000 CVE-2024-8180,0,0,1ef4988ada0861011caab53fe9c701222028221d2bc6840b7e69f2f294674651,2024-11-15T13:58:08.913000 CVE-2024-8181,0,0,493690832b830d715024bac2c57cbeb9d316626844b43ee44a3d0839b5d01d36,2024-09-06T15:35:07.267000 @@ -270049,7 +270071,7 @@ CVE-2024-8184,0,0,92c1db6b8911f83c9668ff411c9a02657286363b11f9f1292cd97f0715f9d1 CVE-2024-8185,0,0,7c65c4010b87d247d013a7115e4f59c211e092ad2fcd015ff54dfb6b049399b9,2024-11-01T12:57:03.417000 CVE-2024-8188,0,0,bf948f939efb55d2700c81c8fb5cefa3fc31038462bfeb7ac3e161719faca6b2,2024-08-26T20:15:08.760000 CVE-2024-8189,0,0,63668eb3e5fc8ff94f956bfec9b936178c3cdc9b685d09571c582433c179a1da,2024-10-07T15:44:45.110000 -CVE-2024-8190,0,0,b93c21c7e68b63ff1a05425b35ca8850e4059906d4d0de60465090c0528ebe7c,2024-09-16T13:44:18.173000 +CVE-2024-8190,0,1,bfacb7a033fdf44fb1cd3aaa6f103e4dd6f39d005302b69dfafb5be0d617d12c,2024-11-26T19:55:46.433000 CVE-2024-8191,0,0,af2edabb2340196237a0a5f2ba571c0c8b12c14869cbef7778e55b204fc2e4fe,2024-09-12T21:50:39.507000 CVE-2024-8193,0,0,2f2a75e240e354e8f0e14f5f9d5e6a02eb535e669399224b9d10e7e4f72f0d51,2024-08-30T15:52:33.747000 CVE-2024-8194,0,0,0e377807b4cb936d43f2e66a722c2d573026df321eb087fd34789423400e78c7,2024-08-30T16:34:53.210000 @@ -270087,6 +270109,7 @@ CVE-2024-8232,0,0,5572b7d7bb007c2d5d81196fae90ff25fc17db53d2496173f3c02b5439ff52 CVE-2024-8234,0,0,870a131a53db84d6497bde7de38de6b7411ad7686be0738cd78fff93fab14909,2024-08-30T13:00:05.390000 CVE-2024-8235,0,0,5e9780352477158854c36359d48e25d3513888b0f7edea2fdcc69371ba803fc8,2024-11-12T17:15:11.197000 CVE-2024-8236,0,0,d83e37a4387f403c8ae4ac666687d5e283b479c871e524201e239ed19c71c686,2024-11-26T14:15:22.217000 +CVE-2024-8237,1,1,03e54608d6780e5e7733b67aa48eeae1943a6eeb7dadf7f290f1af977d272d28,2024-11-26T19:15:32.033000 CVE-2024-8239,0,0,9ef6151772b4426305cdb3a97d7dc90da8f7e43d6a503c000880c7bb8166db9a,2024-10-07T15:48:35.887000 CVE-2024-8241,0,0,a45702ddf12409bcabe5a92099c2b574d3c26b3fd7159f1bd1748fa16b9a5652,2024-09-26T22:03:42.123000 CVE-2024-8242,0,0,0ef1d79e78cd55267ee51ab0995f6e2480e4463ebaece6d40e7de318a22ccc8c,2024-09-18T15:47:56.553000 @@ -270430,6 +270453,7 @@ CVE-2024-8668,0,0,90710183c7816e44ddec8f6349762659d94ce20b0ef640d6ca49967da8f415 CVE-2024-8669,0,0,a540528fa4f0bbb5defe17259c589787942e6df5d18ff3bf79d91bf53c9aac43,2024-09-27T16:08:15.487000 CVE-2024-8671,0,0,44eb9fc4ae83bda74c805da6c8f69132f0b0ddef607b7afc290779058022b5c0,2024-09-26T16:38:24.447000 CVE-2024-8675,0,0,0a13cc68010596bf1c90ba4332bda0b184424e4f46fdbd60b8270080d14a1a03,2024-10-04T13:51:25.567000 +CVE-2024-8676,1,1,008b8e88841e8e64c3780ae3f5bcff892325720d29977e289c60212a896ca60d,2024-11-26T20:15:34.260000 CVE-2024-8678,0,0,4b823977a9ffc10932161c4fd2e6fd149c78199fa23b7389b49b67f658769603,2024-10-02T19:06:48.983000 CVE-2024-8680,0,0,f92fa58a804f571c1e7bcf32a74c84f918657d6176f24d169d6d6fd1db54ec14,2024-09-27T13:53:47.910000 CVE-2024-8681,0,0,2f5ab49d51db3e33ab9c3efe71286523b819481cc474a692b523b490549daba9,2024-10-04T19:04:49.490000 @@ -270599,7 +270623,7 @@ CVE-2024-8878,0,0,d355a1999baf0c8606d16796b1d3b0e1dca83258ab14464d5a94be439e5488 CVE-2024-8880,0,0,4890b5d8ccfd73a7de9d70be358a6aa9c5c8f4db772389c703fb4d83ffb621f1,2024-09-20T16:41:38.030000 CVE-2024-8881,0,0,2d20e71b96fa8b3ff7e773e40c239e05324f6f9dc9c26aafb144057fa3241e82,2024-11-14T13:51:11.257000 CVE-2024-8882,0,0,0ecc0d0a24c3fe939832f637ffae4f224e113185d3895ca1cbc077cff072f3c6,2024-11-14T13:42:12.347000 -CVE-2024-8883,0,0,ef867150b75a006b88b657706b5ccab0ed5de191cb19aa041336ee55b15eac37,2024-11-05T04:15:03.467000 +CVE-2024-8883,0,1,89208240f72f901f0cac891c6f9d1a4a0b6583540e9cbf645ea4351f1eaefaf4,2024-11-26T19:15:32.253000 CVE-2024-8884,0,0,bbe657acd3b81809e4c38d289d4690d33ce15843f154a38b409847ce2483e4ec,2024-10-10T12:56:30.817000 CVE-2024-8885,0,0,3d17cd6b07f76e6b7b78ee39290572c27afe08953d025655a317633960052841,2024-10-04T13:50:43.727000 CVE-2024-8887,0,0,0407ca62fcbad308289f29aa7a81815bcc03d59968582f8cfbf5cd23bcc12817,2024-10-01T17:30:07.597000 @@ -270768,7 +270792,7 @@ CVE-2024-9109,0,0,ec61dc2450c54fef95e338be24d5065a8347a8851153518ae87fc77bce29b5 CVE-2024-9110,0,0,1a461867668dc133a20a6da6763cb89c61062d9d68bd15e880bd01b64cd8f13f,2024-11-01T12:57:03.417000 CVE-2024-9112,0,0,041f9d8d2aa7bfe571ea970a704ea054d76c428b5f552b64ecde79917a13dbb5,2024-11-22T22:15:19.863000 CVE-2024-9113,0,0,b641d4ef8968240d0cb231ef67682fbe186b33f65613a2a82e17d25e833dfb00,2024-11-22T22:15:19.990000 -CVE-2024-9114,0,0,ff2681785a1cc4963f6eed6b049956b1ae6b101e512b3728770b372b04aa2b1e,2024-11-22T22:15:20.107000 +CVE-2024-9114,0,1,60b906f8f44fae8fcea1f0caf335eaffc083e04aca4866ccfb4f1332dddcb290,2024-11-26T20:58:01.907000 CVE-2024-9115,0,0,1c4e70138ee9590ca65c2e328b29e5a87d064a3f49c7286913d14c3952d00fc4,2024-10-01T13:47:25.403000 CVE-2024-9116,0,0,6ad6ee3b57ea62c4d5b3e8fc83d1f8a6dcbcd94ec854a42b3db11ddd2d087efb,2024-10-28T13:58:09.230000 CVE-2024-9117,0,0,77f0703e7ba19b3d087cb3250573807a507cc3ac6f6e62f26867d41b190dba74,2024-10-01T13:56:55.893000 @@ -270933,7 +270957,7 @@ CVE-2024-9327,0,0,9bb62fae114b1c29588ad2672d640859a17a9f3af7375a799fc34e218e9d39 CVE-2024-9328,0,0,a5f7378f6f2f1cd502f7cde1b5f6090c2d79ebec3e3af2aa2eaafb1f04d0c325,2024-10-01T11:34:57.773000 CVE-2024-9329,0,0,45383f73609cef2d97bbcc2a37f0da26902c147f00f71a92dd725b6696a1e709,2024-10-07T15:52:47.267000 CVE-2024-9333,0,0,29d3d497691b594c7c49948d48e229bbe8c23108f2eef552b2f92cd89acf1f06,2024-10-04T13:50:43.727000 -CVE-2024-9341,0,0,9e195b3c185e3af292cb8d84acb3eb40096b5892606c5730985693f862983494,2024-11-22T19:34:40.520000 +CVE-2024-9341,0,1,cbf7f69d2aea7a1faff7e32bbf5a574cf2e73bf527a5d9f8009007a9cbb31be9,2024-11-26T19:15:32.637000 CVE-2024-9344,0,0,d870e129ed50c7683cdbbee07d60a73dcd8b852b9805e9d5932c8a41008c379e,2024-10-08T15:06:57.470000 CVE-2024-9345,0,0,b08be38bdc65e7df784af6af5cf36510583fc49f8a0ab62bc24aed87f83f55d0,2024-10-08T16:10:17.567000 CVE-2024-9346,0,0,62d32d35d45fd426e51a0ed8886468a70178025d3407ee17aee209be78f55958,2024-10-15T12:58:51.050000 @@ -270984,7 +271008,7 @@ CVE-2024-9401,0,0,9842edf4bc941b30860cfd929934eb8ba10b8d9f58d891f69f78bdfbf96f46 CVE-2024-9402,0,0,04bb4c5739f014caa4b772ec804b7222edbe186c7bb2fe331673658400879b23,2024-10-04T13:51:25.567000 CVE-2024-9403,0,0,c1afe1062aca6f3e2bbfc345cdb3697cf0c5243163e1e418a6944c658c5bb841,2024-10-04T13:51:25.567000 CVE-2024-9405,0,0,5a1aaacdf03c4deeb5787d411c40d8ad3aed60be9320ac0ab9cd4983368bffee,2024-10-04T13:51:25.567000 -CVE-2024-9407,0,0,97b0f3234f51cc30c3a97226cb930f5fbbe39fd25f9f23131a758552af9f8ee9,2024-11-12T18:15:48.057000 +CVE-2024-9407,0,1,a2517df6e9a0be178be5a557e35b107637a1394eda6a65130a4a0982a34bdce7,2024-11-26T19:15:32.847000 CVE-2024-9409,0,0,3e506ee5c668e864fe32d06ea4b7a74953a7f1e2f6b3e039755ec706eb3daca9,2024-11-19T15:59:21.690000 CVE-2024-9410,0,0,5bec151d8e893e44b70a96e00c59b851f21a71304a48571095d7551a53538240,2024-11-22T19:57:28.770000 CVE-2024-9411,0,0,09446adc9a52ba88acfc951352e9088b24cfd1cdb8a001643ee070875c43ffef,2024-10-04T13:51:25.567000 @@ -271034,7 +271058,7 @@ CVE-2024-9470,0,0,13c3a583553fbf2e90723a5a0ed6f2354808c5a1753993b658aba04d0ed9b2 CVE-2024-9471,0,0,2517c360d1e41d9c7ea79e15df7f34465e8f98b985f9011876ffa34a1656df21,2024-10-15T16:55:45.090000 CVE-2024-9472,0,0,6dc75bb8c902376e1f062a26c7a99982f272de37330a03e0fbfe9796bed76fac,2024-11-15T13:58:08.913000 CVE-2024-9473,0,0,2610a860a1ec132e11b499793a273ee08374ba46887944874ff47b7b5fdd4588,2024-10-17T06:15:04.983000 -CVE-2024-9474,0,0,0dc6a815c47b3272133aac475d6df665490f19d640f5fad98ce6cd8890e5d35b,2024-11-24T15:15:08.457000 +CVE-2024-9474,0,1,289b7014b673ee54a94f6f35e0f3d8595096fe993d8f61499f7625b54ec1bb22,2024-11-26T19:55:09.117000 CVE-2024-9475,0,0,273622ecfea8dd0cb8d3a034084a5946e50b2bee83443e844bae24857067e968,2024-10-28T13:58:09.230000 CVE-2024-9476,0,0,e9d7dbd43229ebc9ea9972271d753666a58d144ea232688064d92b4b52fc9277,2024-11-15T14:00:09.720000 CVE-2024-9477,0,0,cf43e95350fa7037b016e95ffdd76723a0091878a7d1f39dfbb116076ef07df2,2024-11-15T22:54:21.233000 @@ -271158,7 +271182,7 @@ CVE-2024-9647,0,0,6da0b5c2c888d90e6f29cb1f98cdc0c7a4315eaaa058e1c781c3c46d5b8615 CVE-2024-9649,0,0,f2ab83afff02bfae827ac0ac8958125c0d2707e9b7d72806aa0e09daf73ca0d7,2024-10-16T16:38:14.557000 CVE-2024-9650,0,0,c785e5c8b40ec3a7d0b9a0e25f6978363c5dcc2fc6507b9c6a2c03a208ac34e9,2024-10-25T12:56:07.750000 CVE-2024-9652,0,0,096af9c07df6f24ff5a9459bed95d6ce45b4a430b6f907d5bc85c0d2be3b93b5,2024-10-16T16:38:14.557000 -CVE-2024-9653,0,0,314aa9151832f5b91f237551c59d6e3c03b51963edf571db083af473f6355f36,2024-11-20T06:15:16.603000 +CVE-2024-9653,0,1,f158e4ac0dd55a24d4b3927fa7e93113f3b2a80fd6a1d97e078c1fc3c150282b,2024-11-26T20:37:07.913000 CVE-2024-9655,0,0,5f64b0ed215cc4c47eaa212ce6a6578c092759946c6128b0f32509f44691e359,2024-11-01T12:57:03.417000 CVE-2024-9656,0,0,0baa2843f7043c4ebd829d23f2741f972b762b755442a0f0f83539eb7761035b,2024-10-15T12:57:46.880000 CVE-2024-9657,0,0,fb687953042b10eb922558cb840c65de9e3c4da22e7016c1d2e6ab79c6132615,2024-11-08T16:00:28.320000 @@ -271174,7 +271198,7 @@ CVE-2024-9674,0,0,99b8206db3c3741ff50725aa3969c36280edf4a37082b6473da1336e00a39d CVE-2024-9675,0,0,eca475b135003e7e06db8f69f6d2f142dd27c257379e7a0b16967a90dcf42a39,2024-11-13T08:15:03.170000 CVE-2024-9676,0,0,f87bebf8f4fe552507220e4e3a39d7cfe81d27fa23e0e0624f2c2714aabd7dd0,2024-11-26T09:15:06.820000 CVE-2024-9677,0,0,944e049c847e061867c66e6b586a0cd99260b04bc2e2059d736567bf47cae00c,2024-10-23T15:12:34.673000 -CVE-2024-9680,0,0,aade85a65f2f99cc47c2fb834c470dcfc4a6380ab6735d9434c311360504724b,2024-11-19T17:29:12.207000 +CVE-2024-9680,0,1,b270ebb58405bce82b545a9823e949fa4790116b7a4834e574606834227d9216,2024-11-26T19:53:56.537000 CVE-2024-9681,0,0,8b924b450d4a6dbb27601fbb04f08d88c9285a0a1a67208f21518dfaaa0a72ba,2024-11-25T19:52:56.417000 CVE-2024-9682,0,0,2122d85927443e1998d90f1dfaf0e30f87a59df9f9140f4f34d3cb7460150d67,2024-11-19T15:47:07.517000 CVE-2024-9683,0,0,a648737766df3deb74ddc86e7dcd00883598b7b3c943d9054e11451b5f185407,2024-10-18T12:52:33.507000 @@ -271230,23 +271254,23 @@ CVE-2024-9747,0,0,fc3d51dc8394edfbc7d16d5783941a46020e3f284171391bbe3e210537b65d CVE-2024-9748,0,0,f1e93b3eb60a7a8af523dfc1a78d2562ae57bb30b46f9d7831074773fc675812,2024-11-25T16:16:04.847000 CVE-2024-9749,0,0,b4a4cb7a7e2ed29494903739f7dedc0d0b628bc8a0612acc9ffa95655d50faa7,2024-11-25T18:58:36.077000 CVE-2024-9750,0,0,b9834307df005e23383f64807f9952be6f1581f4da2b061556c1b01793c8d0bc,2024-11-26T11:29:45.227000 -CVE-2024-9751,0,0,502422101dd37211c529eb60e9460f0029c22d0c958018c6e16b247d2c36a300,2024-11-22T21:15:29.093000 -CVE-2024-9752,0,0,cc80b0f6feb087fe11edb9c73f258a4bb12e3d2bf1ebca1be79f3bf3171f8cdb,2024-11-22T21:15:29.213000 -CVE-2024-9753,0,0,52d4f3acff895bd7a6ffd6b4d458fdaf3c9580168bf75876b6b1ddb52b7c9e34,2024-11-22T21:15:29.333000 -CVE-2024-9754,0,0,869b9ffa73633a8c504e91a8d2a56c0f45b9a730a7bbb5e3e6543cc881637863,2024-11-22T21:15:29.457000 -CVE-2024-9755,0,0,53fc5d522b95af24c769bd48676c24c6ff077be761b00a59b6d1087ab13dc0ad,2024-11-22T21:15:29.570000 +CVE-2024-9751,0,1,10aaedcd9679bdbe27e298fdf43197176e7bad9d15aa895478fabe765d9486d3,2024-11-26T20:57:50.440000 +CVE-2024-9752,0,1,19932aeceed280f17f75f54904af94400cfb19139e06595e8a2c62ce600f4e25,2024-11-26T20:57:56.567000 +CVE-2024-9753,0,1,547fe84dbc9a776d9680bee95abcc80bf49f9dd54557481b00719544c663691e,2024-11-26T20:58:47.057000 +CVE-2024-9754,0,1,9f3e12a1e561ea0784c4cd833d62f6802d20f60828a325243796091201d1a790,2024-11-26T20:55:13.947000 +CVE-2024-9755,0,1,24e038adfb46b922e533701928c866826e861132bf403a6eb358b06cee518262,2024-11-26T20:53:47.730000 CVE-2024-9756,0,0,9148e76585a16c910e97a54325b51f8747273a547943c29c001cb0cc296240e9,2024-11-25T20:49:23.220000 -CVE-2024-9757,0,0,d63d1a73eb1226f0ec12ac801319ec47c69cda2abfa1cddcd17208a8b8d87f4f,2024-11-22T21:15:29.683000 -CVE-2024-9758,0,0,8012c466870233ab1d14cd5a022d121f3f4b9299e2e1ac356079b5b21375d95a,2024-11-22T21:15:29.813000 -CVE-2024-9759,0,0,7bd935b5cd23cdc1a9b3ccdd6323c5442e43e5a5dfdf8e977c62521d83a62491,2024-11-22T21:15:29.927000 +CVE-2024-9757,0,1,34122ba71eb2981a92b4c13928c0a3327909071af6c2b1956bc8ab93f391c8ec,2024-11-26T20:53:19.560000 +CVE-2024-9758,0,1,ec8d0a77bd28e88fbf6c54993123b2135cbce2cd133a87e8acbf579d9bc463d3,2024-11-26T20:41:51.187000 +CVE-2024-9759,0,1,10fefaf19e1f85c2845b971df45d1db31a4a6e054105f6c73e98e35c6908849c,2024-11-26T20:57:23.673000 CVE-2024-9760,0,0,aa01c828c1d3b49b761ec3f545ef583aa282f8735c2dc21b19b0e05a61a2ca4b,2024-11-22T21:15:30.040000 CVE-2024-9761,0,0,d2512f64c45793f73d1e20c8ddda7ef83f5025df5cbdd0602f8eaedc25a949ca,2024-11-22T21:15:30.160000 CVE-2024-9762,0,0,137ce8e38ce809e5b89f7e56334ef2f813429eef86208bf3924e76e0dd499450,2024-11-22T21:15:30.277000 CVE-2024-9763,0,0,773a0cffd511db6422d452dc98b5722990978885d04c21ac7b68dcdff9ecc30f,2024-11-22T21:15:30.390000 -CVE-2024-9764,0,0,9cc3bc5866b710f8083fce151aff8948d5bfb29c8b033a45640ae262dd11bd9f,2024-11-22T21:15:30.500000 +CVE-2024-9764,0,1,4be58d530095ebbcafcf00aa99a1173dba0d7e35762e0c5d28cb5cc2f8777b1d,2024-11-26T20:58:05.673000 CVE-2024-9766,0,0,aa66736d1aeec3fffcc76a5f37d23ae872ad3f7840ea99138bc3fe34e230cd86,2024-11-26T15:10:00.193000 -CVE-2024-9767,0,0,4ca699d6a3b2186967330ac88b9f14f79524ba910e3d7d02f06998a567a71584,2024-11-22T22:15:22.593000 -CVE-2024-9768,1,1,904cffc60d5e826fadde1f9279bf1637d0038b817b76c6a013f678cc172cfc96,2024-11-26T17:14:14.327000 +CVE-2024-9767,0,1,3d175e3ba02a23000ec8b1bdae9aa7548e49e410977d95948238e9a5d9107530,2024-11-26T20:57:03.197000 +CVE-2024-9768,0,0,904cffc60d5e826fadde1f9279bf1637d0038b817b76c6a013f678cc172cfc96,2024-11-26T17:14:14.327000 CVE-2024-9772,0,0,043bc7caa6859562432d521f3501fd215394ad297fe3470375010095d76d8604,2024-11-25T20:03:01.613000 CVE-2024-9775,0,0,2266a7b7c620bc11662bc20c96e5d18079c0f9f6e1ea844a74a70c443b303718,2024-11-26T01:45:57.317000 CVE-2024-9776,0,0,9273f765f44bf9e907460b214d240344a8be5b3a239edcb0f9ffb7d3f96c7d26,2024-11-25T18:45:54.377000 @@ -271381,8 +271405,8 @@ CVE-2024-9936,0,0,e24713274a06b54c6fb1a28ab183fd20a2323a432a191511c12e0c56155c7d CVE-2024-9937,0,0,4e7ae54d6a9c5099857ac0a66ba44c96220fc2ab3e1844c918c371d4dbb6d38d,2024-10-16T16:38:14.557000 CVE-2024-9938,0,0,6d537cf2be13384f825f1d7433911745cb0151af95c01ffe257651ffb963013d,2024-11-18T17:11:17.393000 CVE-2024-9940,0,0,0591f213f2bec6924fef18017d23419024c9c5bdc4c598c1e0fd80a492ebb13b,2024-10-18T12:53:04.627000 -CVE-2024-9941,0,0,993dec4c4e34d23afd457e19c69b6c6897d6e9ef569f93ad3365c17f320872f6,2024-11-23T08:15:04.197000 -CVE-2024-9942,0,0,baaca760d1cf33ffad599a1a100ee40c7c9b4ba41073f6833a3d70fe04e74d88,2024-11-23T08:15:04.390000 +CVE-2024-9941,0,1,d633ffffc2f4c25faee0db82c023ae55165f28a8b2f6bf87d32b3fb39f9e149f,2024-11-26T19:37:15.283000 +CVE-2024-9942,0,1,128447087f45f7ac6081cfd7229d7be978532373122af878963b5f544cd226e7,2024-11-26T19:33:35.843000 CVE-2024-9943,0,0,2b1bd0bf17ad8265b1c648445115c5e7c1a49eb398158e5a8ef4b45ea9c6d38b,2024-10-25T12:56:07.750000 CVE-2024-9944,0,0,0b8e9f26d6b78f71e8a64eb7650f72f57e1c6a31a17ce0fafe5b6b8377b71371,2024-10-17T20:47:35.817000 CVE-2024-9946,0,0,65ddbb5091a555b3d45b6435f0c0f970788d2fb0577e4d2af4202005a3cb21de,2024-11-08T20:38:07.557000