Skip to content

Commit

Permalink
Add CVE-2024-56332 for Nextjs
Browse files Browse the repository at this point in the history
  • Loading branch information
@eoftedal
eoftedal committed Jan 12, 2025
1 parent c57c288 commit 2eac2cb
Show file tree
Hide file tree
Showing 5 changed files with 281 additions and 0 deletions.
29 changes: 29 additions & 0 deletions repository/jsrepository-master.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5193,6 +5193,35 @@
"nextjs": {
"npmname": "next",
"vulnerabilities": [
{
"ranges": [
{
"atOrAbove": "13.0.0",
"below": "13.5.8"
},
{
"atOrAbove": "14.0.0",
"below": "14.2.21"
},
{
"atOrAbove": "15.0.0",
"below": "15.1.2"
}
],
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"cwe": ["CWE-770"],
"severity": "medium",
"identifiers": {
"CVE": ["CVE-2024-56332"],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"ranges": [
{
Expand Down
63 changes: 63 additions & 0 deletions repository/jsrepository-v2.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6991,6 +6991,27 @@
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.0.0",
"below": "13.5.8",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.4.0",
"below": "14.1.1",
Expand Down Expand Up @@ -7082,6 +7103,48 @@
"https://github.com/vercel/next.js",
"https://github.com/vercel/next.js/releases/tag/v14.2.15"
]
},
{
"atOrAbove": "14.0.0",
"below": "14.2.21",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "15.0.0",
"below": "15.1.2",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
}
],
"extractors": {
Expand Down
63 changes: 63 additions & 0 deletions repository/jsrepository-v3.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7153,6 +7153,27 @@
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.0.0",
"below": "13.5.8",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.4.0",
"below": "14.1.1",
Expand Down Expand Up @@ -7244,6 +7265,48 @@
"https://github.com/vercel/next.js",
"https://github.com/vercel/next.js/releases/tag/v14.2.15"
]
},
{
"atOrAbove": "14.0.0",
"below": "14.2.21",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "15.0.0",
"below": "15.1.2",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
}
],
"extractors": {
Expand Down
63 changes: 63 additions & 0 deletions repository/jsrepository-v4.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7152,6 +7152,27 @@
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.0.0",
"below": "13.5.8",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.4.0",
"below": "14.1.1",
Expand Down Expand Up @@ -7243,6 +7264,48 @@
"https://github.com/vercel/next.js",
"https://github.com/vercel/next.js/releases/tag/v14.2.15"
]
},
{
"atOrAbove": "14.0.0",
"below": "14.2.21",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "15.0.0",
"below": "15.1.2",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
}
],
"extractors": {
Expand Down
63 changes: 63 additions & 0 deletions repository/jsrepository.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6930,6 +6930,27 @@
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.0.0",
"below": "13.5.8",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "13.4.0",
"below": "14.1.1",
Expand Down Expand Up @@ -7021,6 +7042,48 @@
"https://github.com/vercel/next.js",
"https://github.com/vercel/next.js/releases/tag/v14.2.15"
]
},
{
"atOrAbove": "14.0.0",
"below": "14.2.21",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
},
{
"atOrAbove": "15.0.0",
"below": "15.1.2",
"cwe": [
"CWE-770"
],
"severity": "medium",
"identifiers": {
"summary": "Next.js Allows a Denial of Service (DoS) with Server Actions",
"CVE": [
"CVE-2024-56332"
],
"githubID": "GHSA-7m27-7ghc-44w9"
},
"info": [
"https://github.com/advisories/GHSA-7m27-7ghc-44w9",
"https://github.com/vercel/next.js/security/advisories/GHSA-7m27-7ghc-44w9",
"https://nvd.nist.gov/vuln/detail/CVE-2024-56332",
"https://github.com/vercel/next.js"
]
}
],
"extractors": {
Expand Down

0 comments on commit 2eac2cb

Please sign in to comment.