-
Notifications
You must be signed in to change notification settings - Fork 347
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
142ec73
commit 17f4972
Showing
38 changed files
with
1,150 additions
and
10 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,7 +1,7 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-4xx3-xg55-3wr5", | ||
| "modified": "2023-08-08T15:31:24Z", | ||
| "modified": "2024-07-29T21:30:51Z", | ||
| "published": "2021-11-24T00:00:27Z", | ||
| "aliases": [ | ||
| "CVE-2021-38003" | ||
|
|
@@ -29,6 +29,10 @@ | |
| "type": "WEB", | ||
| "url": "https://crbug.com/1263462" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3W46HRT2UVHWSLZB6JZHQF6JNQWKV744" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/3W46HRT2UVHWSLZB6JZHQF6JNQWKV744" | ||
|
|
@@ -40,6 +44,7 @@ | |
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
| "CWE-755", | ||
| "CWE-787" | ||
| ], | ||
| "severity": "HIGH", | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,7 +1,7 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-gmxf-qj4v-rf52", | ||
| "modified": "2022-08-16T00:00:43Z", | ||
| "modified": "2024-07-29T21:30:51Z", | ||
| "published": "2022-05-24T19:05:33Z", | ||
| "aliases": [ | ||
| "CVE-2021-30551" | ||
|
|
@@ -29,6 +29,14 @@ | |
| "type": "WEB", | ||
| "url": "https://crbug.com/1216437" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ETMZL6IHCTCTREEL434BQ4THQ7EOHJ43" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PAT6EOXVQFE6JFMFQF4IKAOUQSHMHL54" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://lists.fedoraproject.org/archives/list/[email protected]/message/ETMZL6IHCTCTREEL434BQ4THQ7EOHJ43" | ||
|
|
||
38 changes: 38 additions & 0 deletions
38
advisories/unreviewed/2024/07/GHSA-2rmc-r8fj-3p89/GHSA-2rmc-r8fj-3p89.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,38 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-2rmc-r8fj-3p89", | ||
| "modified": "2024-07-29T21:30:54Z", | ||
| "published": "2024-07-29T21:30:54Z", | ||
| "aliases": [ | ||
| "CVE-2024-6620" | ||
| ], | ||
| "details": "Honeywell PC42t, PC42tp, and PC42d Printers, T10.19.020016 to T10.20.060398, contain a cross-site scripting vulnerability. A(n) attacker could potentially inject malicious code which may lead to information disclosure, session theft, or client-side request forgery. Honeywell recommends updating to the most recent version of this firmware, PC42 Printer Firmware Version 20.6 T10.20.060398.", | ||
| "severity": [ | ||
| { | ||
| "type": "CVSS_V3", | ||
| "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L" | ||
| } | ||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6620" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://sps.honeywell.com/us/en/support/productivity/cyber-security-notifications" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
| "CWE-602" | ||
| ], | ||
| "severity": "LOW", | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T20:15:03Z" | ||
| } | ||
| } |
31 changes: 31 additions & 0 deletions
31
advisories/unreviewed/2024/07/GHSA-2vvq-mgpq-88xw/GHSA-2vvq-mgpq-88xw.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,31 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-2vvq-mgpq-88xw", | ||
| "modified": "2024-07-29T21:30:54Z", | ||
| "published": "2024-07-29T21:30:53Z", | ||
| "aliases": [ | ||
| "CVE-2019-19761" | ||
| ], | ||
| "details": "Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19761" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T20:15:03Z" | ||
| } | ||
| } |
35 changes: 35 additions & 0 deletions
35
advisories/unreviewed/2024/07/GHSA-3394-cqqj-2g45/GHSA-3394-cqqj-2g45.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,35 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-3394-cqqj-2g45", | ||
| "modified": "2024-07-29T21:30:54Z", | ||
| "published": "2024-07-29T21:30:54Z", | ||
| "aliases": [ | ||
| "CVE-2023-42918" | ||
| ], | ||
| "details": "A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42918" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213940" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T21:15:11Z" | ||
| } | ||
| } |
47 changes: 47 additions & 0 deletions
47
advisories/unreviewed/2024/07/GHSA-3c78-wrg5-fqxr/GHSA-3c78-wrg5-fqxr.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,47 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-3c78-wrg5-fqxr", | ||
| "modified": "2024-07-29T21:30:54Z", | ||
| "published": "2024-07-29T21:30:54Z", | ||
| "aliases": [ | ||
| "CVE-2023-40396" | ||
| ], | ||
| "details": "The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able to execute arbitrary code with kernel privileges.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40396" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213936" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213937" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213938" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213940" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T21:15:11Z" | ||
| } | ||
| } |
43 changes: 43 additions & 0 deletions
43
advisories/unreviewed/2024/07/GHSA-52gh-pmq6-vv84/GHSA-52gh-pmq6-vv84.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,43 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-52gh-pmq6-vv84", | ||
| "modified": "2024-07-29T21:30:52Z", | ||
| "published": "2024-07-29T21:30:52Z", | ||
| "aliases": [ | ||
| "CVE-2024-37856" | ||
| ], | ||
| "details": "Cross Site Scripting vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via the first, last, middle name fields in the User Profile page.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37856" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://packetstormsecurity.com/files/179078/Lost-And-Found-Information-System-1.0-Cross-Site-Scripting.html" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://www.sourcecodester.com" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "http://lost.com" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T19:15:12Z" | ||
| } | ||
| } |
43 changes: 43 additions & 0 deletions
43
advisories/unreviewed/2024/07/GHSA-5488-c7c3-vx9f/GHSA-5488-c7c3-vx9f.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,43 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-5488-c7c3-vx9f", | ||
| "modified": "2024-07-29T21:30:55Z", | ||
| "published": "2024-07-29T21:30:55Z", | ||
| "aliases": [ | ||
| "CVE-2023-42957" | ||
| ], | ||
| "details": "A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10. An app may be able to read sensitive location information.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42957" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213937" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213938" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://support.apple.com/en-us/HT213940" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T21:15:11Z" | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
35 changes: 35 additions & 0 deletions
35
advisories/unreviewed/2024/07/GHSA-636v-w45r-96qj/GHSA-636v-w45r-96qj.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,35 @@ | ||
| { | ||
| "schema_version": "1.4.0", | ||
| "id": "GHSA-636v-w45r-96qj", | ||
| "modified": "2024-07-29T21:30:52Z", | ||
| "published": "2024-07-29T21:30:52Z", | ||
| "aliases": [ | ||
| "CVE-2024-28806" | ||
| ], | ||
| "details": "An issue was discovered in Italtel i-MCS NFV 12.1.0-20211215. Remote unauthenticated attackers can upload files at an arbitrary path.", | ||
| "severity": [ | ||
|
|
||
| ], | ||
| "affected": [ | ||
|
|
||
| ], | ||
| "references": [ | ||
| { | ||
| "type": "ADVISORY", | ||
| "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28806" | ||
| }, | ||
| { | ||
| "type": "WEB", | ||
| "url": "https://www.gruppotim.it/it/footer/red-team.html" | ||
| } | ||
| ], | ||
| "database_specific": { | ||
| "cwe_ids": [ | ||
|
|
||
| ], | ||
| "severity": null, | ||
| "github_reviewed": false, | ||
| "github_reviewed_at": null, | ||
| "nvd_published_at": "2024-07-29T19:15:12Z" | ||
| } | ||
| } |
Oops, something went wrong.