{ "source_id": "Linux Patch Wednesday January 2024", "data": { "products": { "drupal": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2022-24775" ], "Low": [], "All": [ "CVE-2022-24775" ] }, "value": 0.5, "comment": "Product detected by a:drupal:drupal (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:drupal:drupal (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Monit": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2022-26563" ], "Low": [], "All": [ "CVE-2022-26563" ] }, "value": 0.5, "comment": "Product detected by a:tildeslash:monit (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:tildeslash:monit (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Linux Kernel": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-6111", "CVE-2023-6606", "CVE-2023-6817", "CVE-2023-6931", "CVE-2023-6932" ], "Medium": [ "CVE-2022-36402", "CVE-2023-35827", "CVE-2023-45863", "CVE-2023-51780", "CVE-2023-51781", "CVE-2023-51782", "CVE-2023-6121", "CVE-2023-6622" ], "Low": [], "All": [ "CVE-2022-36402", "CVE-2023-35827", "CVE-2023-45863", "CVE-2023-51780", "CVE-2023-51781", "CVE-2023-51782", "CVE-2023-6111", "CVE-2023-6121", "CVE-2023-6606", "CVE-2023-6622", "CVE-2023-6817", "CVE-2023-6931", "CVE-2023-6932" ] }, "value": 0.9, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "data": { "prevalence": 0.9, "description": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "additional_detection_strings": [ "Linux kernel" ], "vendor": "Linux Foundation", "detection_priority": 0 } }, "ansible": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2022-3697" ], "Low": [], "All": [ "CVE-2022-3697" ] }, "value": 0.5, "comment": "Product detected by a:redhat:ansible (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:redhat:ansible (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Sudo": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2022-38060" ], "Medium": [], "Low": [], "All": [ "CVE-2022-38060" ] }, "value": 0.9, "comment": "Sudo is a program for Unix-like computer operating systems that allows users to run programs with the security privileges of another user", "data": { "prevalence": 0.9, "description": "Sudo is a program for Unix-like computer operating systems that allows users to run programs with the security privileges of another user", "additional_detection_strings": [ "visudo", "sudoers" ], "detection_priority": 0 } }, "sqlite": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-7104" ], "Medium": [ "CVE-2022-46908" ], "Low": [], "All": [ "CVE-2022-46908", "CVE-2023-7104" ] }, "value": 0.5, "comment": "Product detected by a:sqlite:sqlite (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:sqlite:sqlite (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Python": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-27043" ], "Medium": [], "Low": [], "All": [ "CVE-2023-27043" ] }, "value": 0.6, "comment": "Python is a high-level, general-purpose programming language", "data": { "prevalence": 0.6, "detection_priority": 0, "detection_comment": "...code to import Python modules...", "description": "Python is a high-level, general-purpose programming language", "short_cpes": [ "a:python:python" ], "additional_detection_strings": [] } }, "QEMU": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-40360", "CVE-2023-42467" ], "Medium": [ "CVE-2023-2861", "CVE-2023-3019", "CVE-2023-4135", "CVE-2023-5088" ], "Low": [], "All": [ "CVE-2023-2861", "CVE-2023-3019", "CVE-2023-40360", "CVE-2023-4135", "CVE-2023-42467", "CVE-2023-5088" ] }, "value": 0.7, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "data": { "prevalence": 0.7, "description": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "additional_detection_strings": [], "vendor": "QEMU", "detection_priority": 0 } }, "Psr-7": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-29197" ], "Low": [], "All": [ "CVE-2023-29197" ] }, "value": 0.5, "comment": "Product detected by a:guzzlephp:psr-7 (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:guzzlephp:psr-7 (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "TinyXML": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-34194" ], "Low": [], "All": [ "CVE-2023-34194" ] }, "value": 0.5, "comment": "Product detected by a:tinyxml_project:tinyxml (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:tinyxml_project:tinyxml (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Osslsigncode": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-36377" ], "Low": [], "All": [ "CVE-2023-36377" ] }, "value": 0.5, "comment": "Product detected by a:osslsigncode_project:osslsigncode (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:osslsigncode_project:osslsigncode (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Asterisk": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-49786" ], "Medium": [ "CVE-2023-37457", "CVE-2023-49294" ], "Low": [], "All": [ "CVE-2023-37457", "CVE-2023-49294", "CVE-2023-49786" ] }, "value": 0.5, "comment": "Product detected by a:digium:asterisk (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:digium:asterisk (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "xerces-c\\\\+\\\\+": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-37536" ], "Low": [], "All": [ "CVE-2023-37536" ] }, "value": 0.5, "comment": "Product detected by a:apache:xerces-c\\\\+\\\\+ (does NOT exist in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:apache:xerces-c\\\\+\\\\+ (does NOT exist in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "PJSIP": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-38703" ], "Low": [], "All": [ "CVE-2023-38703" ] }, "value": 0.5, "comment": "Product detected by a:teluu:pjsip (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:teluu:pjsip (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Go": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-45285" ], "Low": [ "CVE-2023-39326" ], "All": [ "CVE-2023-39326", "CVE-2023-45285" ] }, "value": 0.5, "comment": "Product detected by a:golang:go (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:golang:go (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "es450": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-40462" ], "Low": [], "All": [ "CVE-2023-40462" ] }, "value": 0.5, "comment": "Product detected by h:sierrawireless:es450 (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by h:sierrawireless:es450 (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "w3m": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-4255" ], "Medium": [], "Low": [], "All": [ "CVE-2023-4255" ] }, "value": 0.5, "comment": "Product detected by a:tats:w3m (does NOT exist in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:tats:w3m (does NOT exist in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Apache Tomcat": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-46589" ], "Medium": [ "CVE-2023-42794" ], "Low": [], "All": [ "CVE-2023-42794", "CVE-2023-46589" ] }, "value": 0.7, "comment": "Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies", "data": { "prevalence": 0.7, "description": "Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies", "additional_detection_strings": [ "Tomcat" ], "vendor": "Apache", "detection_priority": 0 } }, "Werkzeug": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-46136" ], "Low": [], "All": [ "CVE-2023-46136" ] }, "value": 0.5, "comment": "Werkzeug is a comprehensive WSGI web application library", "data": { "prevalence": 0.5, "description": "Werkzeug is a comprehensive WSGI web application library", "additional_detection_strings": [], "vendor": "Werkzeug", "detection_priority": 0 } }, "twisted": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-46137" ], "Medium": [], "Low": [], "All": [ "CVE-2023-46137" ] }, "value": 0.5, "comment": "Product detected by a:twistedmatrix:twisted (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:twistedmatrix:twisted (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Squid": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-49285", "CVE-2023-49286" ], "Medium": [ "CVE-2023-50269" ], "Low": [], "All": [ "CVE-2023-49285", "CVE-2023-49286", "CVE-2023-50269" ] }, "value": 0.5, "comment": "Product detected by a:squid-cache:squid (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:squid-cache:squid (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "libde265": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-49465", "CVE-2023-49467", "CVE-2023-49468" ], "Medium": [], "Low": [], "All": [ "CVE-2023-49465", "CVE-2023-49467", "CVE-2023-49468" ] }, "value": 0.5, "comment": "Product detected by a:struktur:libde265 (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:struktur:libde265 (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "cJSON": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-50471" ], "Medium": [], "Low": [], "All": [ "CVE-2023-50471" ] }, "value": 0.5, "comment": "Product detected by a:cjson_project:cjson (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:cjson_project:cjson (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "ansible_automation_platform": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-5115" ], "Low": [], "All": [ "CVE-2023-5115" ] }, "value": 0.5, "comment": "Product detected by a:redhat:ansible_automation_platform (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:redhat:ansible_automation_platform (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "OpenSSH": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-51385" ], "Medium": [ "CVE-2023-51384" ], "Low": [], "All": [ "CVE-2023-51384", "CVE-2023-51385" ] }, "value": 0.8, "comment": "OpenSSH is a suite of secure networking utilities based on the Secure Shell protocol, which provides a secure channel over an unsecured network in a client\u2013server architecture", "data": { "detection_priority": 2, "detection_priority_comment": "CVE-2023-48795 The SSH transport protocol with certain OpenSSH extensions...", "prevalence": 0.8, "description": "OpenSSH is a suite of secure networking utilities based on the Secure Shell protocol, which provides a secure channel over an unsecured network in a client\u2013server architecture", "additional_detection_strings": [], "vendor": "OpenBSD Project" } }, "Exim": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-51766" ], "Low": [], "All": [ "CVE-2023-51766" ] }, "value": 0.6, "comment": "Exim is a mail transfer agent (MTA) used on Unix-like operating systems", "data": { "prevalence": 0.6, "description": "Exim is a mail transfer agent (MTA) used on Unix-like operating systems", "additional_detection_strings": [], "vendor": "The Exim Maintainers", "type_of_product": "server application", "directly_accessible_from_the_internet": "always", "type_of_license": "open source", "license": "GPL", "language": "C", "country_of_origin": "USA", "poduct_url": "https://www.npmjs.com/package/vm2", "detection_priority": 0 } }, "Unknown Product": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [], "Low": [ "CVE-2023-51779", "CVE-2023-5388", "CVE-2023-6531", "CVE-2023-6816", "CVE-2024-0229", "CVE-2024-0408", "CVE-2024-0409", "CVE-2024-21885", "CVE-2024-21886" ], "All": [ "CVE-2023-51779", "CVE-2023-5388", "CVE-2023-6531", "CVE-2023-6816", "CVE-2024-0229", "CVE-2024-0408", "CVE-2024-0409", "CVE-2024-21885", "CVE-2024-21886" ] }, "value": 0, "comment": "Unknown Product", "data": {} }, "freeipa": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-5455" ], "Low": [], "All": [ "CVE-2023-5455" ] }, "value": 0.5, "comment": "Product detected by a:freeipa:freeipa (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:freeipa:freeipa (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "openshift_container_platform_for_arm64": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [], "Low": [ "CVE-2023-5625" ], "All": [ "CVE-2023-5625" ] }, "value": 0.5, "comment": "Product detected by a:redhat:openshift_container_platform_for_arm64 (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:redhat:openshift_container_platform_for_arm64 (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "libssh": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-6004" ], "Low": [ "CVE-2023-6918" ], "All": [ "CVE-2023-6004", "CVE-2023-6918" ] }, "value": 0.5, "comment": "Product detected by a:libssh:libssh (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:libssh:libssh (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Mozilla Firefox": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2023-6872" ], "Medium": [ "CVE-2023-6135", "CVE-2023-6866", "CVE-2023-6869", "CVE-2023-6871" ], "Low": [], "All": [ "CVE-2023-6135", "CVE-2023-6866", "CVE-2023-6869", "CVE-2023-6871", "CVE-2023-6872" ] }, "value": 0.8, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "data": { "prevalence": 0.8, "description": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "additional_detection_strings": [ "Firefox" ], "vendor": "Mozilla Foundation", "detection_priority": 0 } }, "keycloak": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2023-6927" ], "Low": [], "All": [ "CVE-2023-6927" ] }, "value": 0.5, "comment": "Product detected by a:redhat:keycloak (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:redhat:keycloak (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "spreadsheet::parseexcel": { "cves": { "Urgent": [], "Critical": [ "CVE-2023-7101" ], "High": [], "Medium": [], "Low": [], "All": [ "CVE-2023-7101" ] }, "value": 0.5, "comment": "Product detected by a:jmcnamara:spreadsheetparseexcel (does NOT exist in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:jmcnamara:spreadsheetparseexcel (does NOT exist in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } }, "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2024-0056" ], "Low": [], "All": [ "CVE-2024-0056" ] }, "value": 0.5, "comment": "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider", "data": { "prevalence": 0.5, "description": "", "additional_detection_strings": [], "vendor": "Microsoft", "detection_priority": 0 } }, "NET, .NET Framework, and Visual Studio": { "cves": { "Urgent": [], "Critical": [], "High": [ "CVE-2024-0057" ], "Medium": [], "Low": [], "All": [ "CVE-2024-0057" ] }, "value": 0.5, "comment": "NET, .NET Framework, and Visual Studio", "data": { "prevalence": 0.5, "description": "", "additional_detection_strings": [], "vendor": "Microsoft", "detection_priority": 0 } }, "Chromium": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [ "CVE-2024-0222", "CVE-2024-0223", "CVE-2024-0224", "CVE-2024-0225", "CVE-2024-0333" ], "Low": [], "All": [ "CVE-2024-0222", "CVE-2024-0223", "CVE-2024-0224", "CVE-2024-0225", "CVE-2024-0333" ] }, "value": 0.8, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "data": { "prevalence": 0.8, "detection_priority": 0.3, "detection_priority_comment": "For the vulnerabilities in Chrome, Chromium and Edge, it's better to choose Chromium", "description": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "additional_detection_strings": [], "vendor": "Google" } }, ".NET": { "cves": { "Urgent": [], "Critical": [], "High": [], "Medium": [], "Low": [ "CVE-2024-21319" ], "All": [ "CVE-2024-21319" ] }, "value": 0.5, "comment": "Product detected by a:microsoft:.net (exists in CPE dict)", "data": { "prevalence": 0.5, "description": "Product detected by a:microsoft:.net (exists in CPE dict)", "additional_detection_strings": [], "vendor": "", "detection_priority": 0 } } }, "vulnerabilities": [ { "vuln_id": "CVE-2023-7101", "vuln_type": "Remote Code Execution", "vuln_product": "spreadsheet::parseexcel", "level": "Critical", "vvs": 678, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.9, "weight": 10, "comment": "EPSS Probability is 0.02119, EPSS Percentile is 0.88014", "level": "Urgent" }, "Criticality of Vulnerability Type": { "value": 1.0, "weight": 15, "comment": "Remote Code Execution", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:jmcnamara:spreadsheetparseexcel (does NOT exist in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 1.0, "weight": 18, "comment": "Exploitation in the wild is mentioned on Vulners (cisa_kev object), AttackerKB, NVD:CISAKEV websites", "level": "Urgent" } }, "description": "Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability due to passing unvalidated input from a file into a string-type \u201ceval\u201d. Specifically, the issue stems from the evaluation of Number format strings (not to be confused with printf-style format strings) within the Excel parsing logic. ", "comments": [ { "comment_id": "CVE-2023-7101 was patched at 2023-12-30, 2023-12-31, unknown date" } ] }, { "vuln_id": "CVE-2023-49786", "vuln_type": "Denial of Service", "vuln_product": "Asterisk", "level": "High", "vvs": 589, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.7, "weight": 10, "comment": "EPSS Probability is 0.00513, EPSS Percentile is 0.74128", "level": "Critical" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:digium:asterisk (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1; as well as certified-asterisk prior to 18.9-cert6; Asterisk is susceptible to a DoS due to a race condition in the hello handshake phase of the DTLS protocol when handling DTLS-SRTP for media setup. This attack can be done continuously, thus denying new DTLS-SRTP encrypted calls during the attack. Abuse of this vulnerability may lead to a massive Denial of Service on vulnerable Asterisk servers for calls that rely on DTLS-SRTP. Commit d7d7764cb07c8a1872804321302ef93bf62cba05 contains a fix, which is part of versions 18.20.1, 20.5.1, 21.0.1, amd 18.9-cert6.", "comments": [ { "comment_id": "CVE-2023-49786 was patched at 2023-12-29, 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2023-27043", "vuln_type": "Security Feature Bypass", "vuln_product": "Python", "level": "High", "vvs": 570, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 5.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00095, EPSS Percentile is 0.39743", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.6, "weight": 14, "comment": "Python is a high-level, general-purpose programming language", "level": "Critical" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.", "comments": [ { "comment_id": "CVE-2023-27043 was patched at unknown date" }, { "comment_id": "CVE-2023-27043 was patched at 2024-01-15" }, { "comment_id": "CVE-2023-27043 was patched at 2024-01-16" }, { "comment_id": "CVE-2023-27043 was patched at 2024-01-15" } ] }, { "vuln_id": "CVE-2023-6606", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "High", "vvs": 536, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 7.1. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:bugzilla.redhat.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.", "comments": [ { "comment_id": "CVE-2023-6606 was patched at 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-49465", "vuln_type": "Memory Corruption", "vuln_product": "libde265", "level": "High", "vvs": 529, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00087, EPSS Percentile is 0.36604", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:struktur:libde265 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_spatial_luma_vector_prediction function at motion.cc.", "comments": [ { "comment_id": "CVE-2023-49465 was patched at 2023-12-30, unknown date" } ] }, { "vuln_id": "CVE-2023-49467", "vuln_type": "Memory Corruption", "vuln_product": "libde265", "level": "High", "vvs": 529, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00087, EPSS Percentile is 0.36604", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:struktur:libde265 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Libde265 v1.0.14 was discovered to contain a heap-buffer-overflow vulnerability in the derive_combined_bipredictive_merging_candidates function at motion.cc.", "comments": [ { "comment_id": "CVE-2023-49467 was patched at 2023-12-30, unknown date" } ] }, { "vuln_id": "CVE-2023-49468", "vuln_type": "Memory Corruption", "vuln_product": "libde265", "level": "High", "vvs": 529, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00087, EPSS Percentile is 0.36604", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:struktur:libde265 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.", "comments": [ { "comment_id": "CVE-2023-49468 was patched at 2023-12-30, unknown date" } ] }, { "vuln_id": "CVE-2023-46137", "vuln_type": "Security Feature Bypass", "vuln_product": "twisted", "level": "High", "vvs": 517, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 5.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00046, EPSS Percentile is 0.13816", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:twistedmatrix:twisted (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", "comments": [ { "comment_id": "CVE-2023-46137 was patched at unknown date" }, { "comment_id": "CVE-2023-46137 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-7104", "vuln_type": "Memory Corruption", "vuln_product": "sqlite", "level": "High", "vvs": 505, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00131, EPSS Percentile is 0.47886", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:sqlite:sqlite (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:sqlite.org website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-248999.", "comments": [ { "comment_id": "CVE-2023-7104 was patched at unknown date" }, { "comment_id": "CVE-2023-7104 was patched at 2024-01-03" }, { "comment_id": "CVE-2023-7104 was patched at 2024-01-15" }, { "comment_id": "CVE-2023-7104 was patched at 2024-01-16" }, { "comment_id": "CVE-2023-7104 was patched at 2024-01-15" } ] }, { "vuln_id": "CVE-2023-4255", "vuln_type": "Denial of Service", "vuln_product": "w3m", "level": "High", "vvs": 494, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00044, EPSS Percentile is 0.08163", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:tats:w3m (does NOT exist in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An out-of-bounds write issue has been discovered in the backspace handling of the checkType() function in etc.c within the W3M application. This vulnerability is triggered by supplying a specially crafted HTML file to the w3m binary. Exploitation of this flaw could lead to application crashes, resulting in a denial of service condition.", "comments": [ { "comment_id": "CVE-2023-4255 was patched at unknown date" }, { "comment_id": "CVE-2023-4255 was patched at 2024-01-15" } ] }, { "vuln_id": "CVE-2023-42467", "vuln_type": "Incorrect Calculation", "vuln_product": "QEMU", "level": "High", "vvs": 491, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Incorrect Calculation", "level": "High" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:gitlab.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately.", "comments": [ { "comment_id": "CVE-2023-42467 was patched at unknown date" }, { "comment_id": "CVE-2023-42467 was patched at 2024-01-08" } ] }, { "vuln_id": "CVE-2023-40360", "vuln_type": "Memory Corruption", "vuln_product": "QEMU", "level": "High", "vvs": 491, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00044, EPSS Percentile is 0.08163", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:gitlab.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "QEMU through 8.0.4 accesses a NULL pointer in nvme_directive_receive in hw/nvme/ctrl.c because there is no check for whether an endurance group is configured before checking whether Flexible Data Placement is enabled.", "comments": [ { "comment_id": "CVE-2023-40360 was patched at 2024-01-08" } ] }, { "vuln_id": "CVE-2023-50471", "vuln_type": "Memory Corruption", "vuln_product": "cJSON", "level": "High", "vvs": 482, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00046, EPSS Percentile is 0.13816", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:cjson_project:cjson (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:github.com website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.", "comments": [ { "comment_id": "CVE-2023-50471 was patched at 2023-12-30, unknown date" } ] }, { "vuln_id": "CVE-2023-51385", "vuln_type": "Command Injection", "vuln_product": "OpenSSH", "level": "High", "vvs": 461, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 6.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.6, "weight": 10, "comment": "EPSS Probability is 0.00189, EPSS Percentile is 0.56444", "level": "Critical" }, "Criticality of Vulnerability Type": { "value": 0.97, "weight": 15, "comment": "Command Injection", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "OpenSSH is a suite of secure networking utilities based on the Secure Shell protocol, which provides a secure channel over an unsecured network in a client\u2013server architecture", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.", "comments": [ { "comment_id": "CVE-2023-51385 was patched at 2023-12-22, 2023-12-26, unknown date" }, { "comment_id": "CVE-2023-51385 was patched at 2024-01-03, 2024-01-11" } ] }, { "vuln_id": "CVE-2023-46589", "vuln_type": "Security Feature Bypass", "vuln_product": "Apache Tomcat", "level": "High", "vvs": 455, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.7, "weight": 10, "comment": "EPSS Probability is 0.00484, EPSS Percentile is 0.73413", "level": "Critical" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.1.15, from 9.0.0-M1 through 9.0.82 and from 8.5.0 through 8.5.95 did not correctly parse HTTP trailer headers. A trailer header that exceeded the header size limit could cause Tomcat to treat a single request as multiple requests leading to the possibility of request smuggling when behind a reverse proxy. Users are recommended to upgrade to version 11.0.0-M11\u00a0onwards, 10.1.16 onwards, 9.0.83 onwards or 8.5.96 onwards, which fix the issue. ", "comments": [ { "comment_id": "CVE-2023-46589 was patched at 2024-01-05, unknown date" } ] }, { "vuln_id": "CVE-2023-6872", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Mozilla Firefox", "level": "High", "vvs": 454, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 6.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.3, "weight": 10, "comment": "EPSS Probability is 0.00064, EPSS Percentile is 0.26485", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "level": "Urgent" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:bugzilla.mozilla.org website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'Browser tab titles were being leaked by GNOME to system logs. This could potentially expose the browsing habits of users running in a private tab. This vulnerability affects Firefox < 121.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Browser tab titles were being leaked by GNOME to system logs. This could potentially expose the browsing habits of users running in a private tab. This vulnerability affects Firefox < 121.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6872 was patched at 2024-01-02" } ] }, { "vuln_id": "CVE-2024-0057", "vuln_type": "Security Feature Bypass", "vuln_product": "NET, .NET Framework, and Visual Studio", "level": "High", "vvs": 432, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 9.1. According to Microsoft data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "NET, .NET Framework, and Visual Studio", "level": "High" }, "Public Exploit Exists": { "value": 0.4, "weight": 17, "comment": "The exploit's existence is mentioned in Microsoft CVSS Temporal Metrics (Proof-of-Concept Exploit)", "level": "High" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "NET, .NET Framework, and Visual Studio Security Feature Bypass Vulnerability", "comments": [ { "comment_id": "CVE-2024-0057 was patched at 2024-01-11" }, { "comment_id": "CVE-2024-0057 was patched at 2024-01-10, 2024-01-15" }, { "comment_id": "CVE-2024-0057 was patched at 2024-01-12, 2024-01-16, 2024-01-17" }, { "comment_id": "CVE-2024-0057 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-49285", "vuln_type": "Denial of Service", "vuln_product": "Squid", "level": "High", "vvs": 422, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.6. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.9, "weight": 10, "comment": "EPSS Probability is 0.01468, EPSS Percentile is 0.85357", "level": "Urgent" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:squid-cache:squid (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a Buffer Overread bug Squid is vulnerable to a Denial of Service attack against Squid HTTP Message processing. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.", "comments": [ { "comment_id": "CVE-2023-49285 was patched at 2024-01-09, unknown date" }, { "comment_id": "CVE-2023-49285 was patched at 2024-01-03, 2024-01-08" }, { "comment_id": "CVE-2023-49285 was patched at 2024-01-04, 2024-01-10" }, { "comment_id": "CVE-2023-49285 was patched at 2024-01-03, 2024-01-08" } ] }, { "vuln_id": "CVE-2022-38060", "vuln_type": "Security Feature Bypass", "vuln_product": "Sudo", "level": "High", "vvs": 417, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00043, EPSS Percentile is 0.0685", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "Sudo is a program for Unix-like computer operating systems that allows users to run programs with the security privileges of another user", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla git master 05194e7618. A misconfiguration in /etc/sudoers within a container can lead to increased privileges.", "comments": [ { "comment_id": "CVE-2022-38060 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2023-49286", "vuln_type": "Denial of Service", "vuln_product": "Squid", "level": "High", "vvs": 410, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.6. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.8, "weight": 10, "comment": "EPSS Probability is 0.00597, EPSS Percentile is 0.76069", "level": "Urgent" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:squid-cache:squid (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to an Incorrect Check of Function Return Value bug Squid is vulnerable to a Denial of Service attack against its Helper process management. This bug is fixed by Squid version 6.5. Users are advised to upgrade. There are no known workarounds for this vulnerability.", "comments": [ { "comment_id": "CVE-2023-49286 was patched at 2024-01-09, unknown date" }, { "comment_id": "CVE-2023-49286 was patched at 2024-01-03, 2024-01-08" }, { "comment_id": "CVE-2023-49286 was patched at 2024-01-04, 2024-01-10" }, { "comment_id": "CVE-2023-49286 was patched at 2024-01-03, 2024-01-08" } ] }, { "vuln_id": "CVE-2023-6111", "vuln_type": "Elevation of Privilege", "vuln_product": "Linux Kernel", "level": "High", "vvs": 408, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.85, "weight": 15, "comment": "Elevation of Privilege", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_trans_gc_catchall did not remove the catchall set element from the catchall_list when the argument sync is true, making it possible to free a catchall set element many times. We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630. ", "comments": [ { "comment_id": "CVE-2023-6111 was patched at unknown date" }, { "comment_id": "CVE-2023-6111 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-6817", "vuln_type": "Elevation of Privilege", "vuln_product": "Linux Kernel", "level": "High", "vvs": 408, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.85, "weight": 15, "comment": "Elevation of Privilege", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free. We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a. ", "comments": [ { "comment_id": "CVE-2023-6817 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-6931", "vuln_type": "Elevation of Privilege", "vuln_product": "Linux Kernel", "level": "High", "vvs": 408, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.85, "weight": 15, "comment": "Elevation of Privilege", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A heap out-of-bounds write vulnerability in the Linux kernel's Performance Events system component can be exploited to achieve local privilege escalation. A perf_event's read_size can overflow, leading to an heap out-of-bounds increment or write in perf_read_group(). We recommend upgrading past commit 382c27f4ed28f803b1f1473ac2d8db0afc795a1b. ", "comments": [ { "comment_id": "CVE-2023-6931 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-6932", "vuln_type": "Elevation of Privilege", "vuln_product": "Linux Kernel", "level": "High", "vvs": 408, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.85, "weight": 15, "comment": "Elevation of Privilege", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A use-after-free vulnerability in the Linux kernel's ipv4: igmp component can be exploited to achieve local privilege escalation. A race condition can be exploited to cause a timer be mistakenly registered on a RCU read locked object which is freed by another thread. We recommend upgrading past commit e2b706c691905fe78468c361aaabc719d0a496f1. ", "comments": [ { "comment_id": "CVE-2023-6932 was patched at 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-50269", "vuln_type": "Denial of Service", "vuln_product": "Squid", "level": "Medium", "vvs": 386, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.6. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.6, "weight": 10, "comment": "EPSS Probability is 0.00191, EPSS Percentile is 0.56655", "level": "Critical" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:squid-cache:squid (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Squid is a caching proxy for the Web. Due to an Uncontrolled Recursion bug in versions 2.6 through 2.7.STABLE9, versions 3.1 through 5.9, and versions 6.0.1 through 6.5, Squid may be vulnerable to a Denial of Service attack against HTTP Request parsing. This problem allows a remote client to perform Denial of Service attack by sending a large X-Forwarded-For header when the follow_x_forwarded_for feature is configured. This bug is fixed by Squid version 6.6. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives.", "comments": [ { "comment_id": "CVE-2023-50269 was patched at 2024-01-09, unknown date" } ] }, { "vuln_id": "CVE-2022-24775", "vuln_type": "Security Feature Bypass", "vuln_product": "drupal", "level": "Medium", "vvs": 386, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00095, EPSS Percentile is 0.39678", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:drupal:drupal (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "guzzlehttp/psr7 is a PSR-7 HTTP message library. Versions prior to 1.8.4 and 2.1.1 are vulnerable to improper header parsing. An attacker could sneak in a new line character and pass untrusted values. The issue is patched in 1.8.4 and 2.1.1. There are currently no known workarounds.", "comments": [ { "comment_id": "CVE-2022-24775 was patched at 2024-01-01, unknown date" } ] }, { "vuln_id": "CVE-2022-46908", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "sqlite", "level": "Medium", "vvs": 380, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 7.3. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00045, EPSS Percentile is 0.12171", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:sqlite:sqlite (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 1.0, "weight": 17, "comment": "The existence of a publicly available exploit is mentioned on NVD:Exploit:sqlite.org website", "level": "Urgent" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'SQLite through 3.40.0, when relying on --safe for execution of an untrusted CLI script, does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'SQLite through 3.40.0, when relying on --safe for execution of an untrusted CLI script, does not properly implement the azProhibitedFunctions protection mechanism, and instead allows UDF functions such as WRITEFILE.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2022-46908 was patched at unknown date" }, { "comment_id": "CVE-2022-46908 was patched at 2024-01-03" } ] }, { "vuln_id": "CVE-2023-5455", "vuln_type": "Security Feature Bypass", "vuln_product": "freeipa", "level": "Medium", "vvs": 375, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 6.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00084, EPSS Percentile is 0.35138", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:freeipa:freeipa (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of confidentiality and system integrity. During community penetration testing it was found that for certain HTTP end-points FreeIPA does not ensure CSRF protection. Due to implementation details one cannot use this flaw for reflection of a cookie representing already logged-in user. An attacker would always have to go through a new authentication attempt.", "comments": [ { "comment_id": "CVE-2023-5455 was patched at unknown date" }, { "comment_id": "CVE-2023-5455 was patched at 2024-01-10, 2024-01-15" }, { "comment_id": "CVE-2023-5455 was patched at 2024-01-10, 2024-01-11, 2024-01-12" }, { "comment_id": "CVE-2023-5455 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-2861", "vuln_type": "Authentication Bypass", "vuln_product": "QEMU", "level": "Medium", "vvs": 369, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.0. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00043, EPSS Percentile is 0.0685", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.95, "weight": 15, "comment": "Authentication Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A flaw was found in the 9p passthrough filesystem (9pfs) implementation in QEMU. The 9pfs server did not prohibit opening special files on the host side, potentially allowing a malicious client to escape from the exported 9p tree by creating and opening a device file in the shared folder.", "comments": [ { "comment_id": "CVE-2023-2861 was patched at unknown date" }, { "comment_id": "CVE-2023-2861 was patched at 2024-01-08" } ] }, { "vuln_id": "CVE-2023-36377", "vuln_type": "Remote Code Execution", "vuln_product": "Osslsigncode", "level": "Medium", "vvs": 369, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 1.0, "weight": 15, "comment": "Remote Code Execution", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:osslsigncode_project:osslsigncode (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, .sys, and .dll files.", "comments": [ { "comment_id": "CVE-2023-36377 was patched at 2023-12-23, unknown date" } ] }, { "vuln_id": "CVE-2023-51766", "vuln_type": "Security Feature Bypass", "vuln_product": "Exim", "level": "Medium", "vvs": 367, "components": { "CVSS Base Score": { "value": 0.4, "weight": 10, "comment": "CVSS Base Score is 4.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00167, EPSS Percentile is 0.53342", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.6, "weight": 14, "comment": "Exim is a mail transfer agent (MTA) used on Unix-like operating systems", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.", "comments": [ { "comment_id": "CVE-2023-51766 was patched at 2024-01-04, 2024-01-06, unknown date" } ] }, { "vuln_id": "CVE-2023-6866", "vuln_type": "Incorrect Calculation", "vuln_product": "Mozilla Firefox", "level": "Medium", "vvs": 365, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.3, "weight": 10, "comment": "EPSS Probability is 0.00068, EPSS Percentile is 0.28226", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Incorrect Calculation", "level": "High" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "TypedArrays can be fallible and lacked proper exception handling. This could lead to abuse in other APIs which expect TypedArrays to always succeed. This vulnerability affects Firefox < 121.", "comments": [ { "comment_id": "CVE-2023-6866 was patched at 2024-01-02" } ] }, { "vuln_id": "CVE-2023-37457", "vuln_type": "Denial of Service", "vuln_product": "Asterisk", "level": "Medium", "vvs": 363, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00121, EPSS Percentile is 0.46225", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:digium:asterisk (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as ceritifed-asterisk 18.9-cert5 and prior, the 'update' functionality of the PJSIP_HEADER dialplan function can exceed the available buffer space for storing the new value of a header. By doing so this can overwrite memory or cause a crash. This is not externally exploitable, unless dialplan is explicitly written to update a header based on data from an outside source. If the 'update' functionality is not used the vulnerability does not occur. A patch is available at commit a1ca0268254374b515fa5992f01340f7717113fa.", "comments": [ { "comment_id": "CVE-2023-37457 was patched at 2023-12-29, 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2023-37536", "vuln_type": "Incorrect Calculation", "vuln_product": "xerces-c\\\\+\\\\+", "level": "Medium", "vvs": 363, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 8.2. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.8, "weight": 10, "comment": "EPSS Probability is 0.00677, EPSS Percentile is 0.77789", "level": "Urgent" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Incorrect Calculation", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:apache:xerces-c\\\\+\\\\+ (does NOT exist in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An integer overflow in xerces-c++ 3.2.3 in BigFix Platform allows remote attackers to cause out-of-bound access via HTTP request.", "comments": [ { "comment_id": "CVE-2023-37536 was patched at 2023-12-31, unknown date" } ] }, { "vuln_id": "CVE-2022-36402", "vuln_type": "Denial of Service", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 358, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.3. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).", "comments": [ { "comment_id": "CVE-2022-36402 was patched at unknown date" }, { "comment_id": "CVE-2022-36402 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-6622", "vuln_type": "Denial of Service", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 358, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux kernel. This issue may allow a local attacker with CAP_NET_ADMIN user privilege to trigger a denial of service.", "comments": [ { "comment_id": "CVE-2023-6622 was patched at 2024-01-01, unknown date" } ] }, { "vuln_id": "CVE-2023-6135", "vuln_type": "Information Disclosure", "vuln_product": "Mozilla Firefox", "level": "Medium", "vvs": 352, "components": { "CVSS Base Score": { "value": 0.4, "weight": 10, "comment": "CVSS Base Score is 4.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00052, EPSS Percentile is 0.18053", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.83, "weight": 15, "comment": "Information Disclosure", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox < 121.", "comments": [ { "comment_id": "CVE-2023-6135 was patched at unknown date" }, { "comment_id": "CVE-2023-6135 was patched at 2024-01-02" } ] }, { "vuln_id": "CVE-2024-0056", "vuln_type": "Security Feature Bypass", "vuln_product": "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider", "level": "Medium", "vvs": 351, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.7. According to Microsoft data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability", "comments": [ { "comment_id": "CVE-2024-0056 was patched at 2024-01-10, 2024-01-15" }, { "comment_id": "CVE-2024-0056 was patched at 2024-01-12, 2024-01-16, 2024-01-17" }, { "comment_id": "CVE-2024-0056 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-6004", "vuln_type": "Code Injection", "vuln_product": "libssh", "level": "Medium", "vvs": 339, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.1. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00045, EPSS Percentile is 0.12171", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.97, "weight": 15, "comment": "Code Injection", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:libssh:libssh (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter.", "comments": [ { "comment_id": "CVE-2023-6004 was patched at 2023-12-28, unknown date" } ] }, { "vuln_id": "CVE-2023-6927", "vuln_type": "Open Redirect", "vuln_product": "keycloak", "level": "Medium", "vvs": 336, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 4.6. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00118, EPSS Percentile is 0.45742", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.75, "weight": 15, "comment": "Open Redirect", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:redhat:keycloak (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A flaw was found in Keycloak. This issue may allow an attacker to steal authorization codes or tokens from clients using a wildcard in the JARM response mode "form_post.jwt" which could be used to bypass the security patch implemented to address CVE-2023-6134.", "comments": [ { "comment_id": "CVE-2023-6927 was patched at 2024-01-09" } ] }, { "vuln_id": "CVE-2023-35827", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 334, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 7.0. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c.", "comments": [ { "comment_id": "CVE-2023-35827 was patched at 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-6121", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 334, "components": { "CVSS Base Score": { "value": 0.4, "weight": 10, "comment": "CVSS Base Score is 4.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00111, EPSS Percentile is 0.44157", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote attacker to send a crafted TCP packet, triggering a heap-based buffer overflow that results in kmalloc data being printed and potentially leaked to the kernel ring buffer (dmesg).", "comments": [ { "comment_id": "CVE-2023-6121 was patched at 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2024-0222", "vuln_type": "Memory Corruption", "vuln_product": "Chromium", "level": "Medium", "vvs": 329, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Chromium: CVE-2024-0222 Use after free in ANGLE. This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.\n", "comments": [ { "comment_id": "CVE-2024-0222 was patched at 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2024-0223", "vuln_type": "Memory Corruption", "vuln_product": "Chromium", "level": "Medium", "vvs": 329, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Chromium: CVE-2024-0223 Heap buffer overflow in ANGLE. This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.\n", "comments": [ { "comment_id": "CVE-2024-0223 was patched at 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2024-0224", "vuln_type": "Memory Corruption", "vuln_product": "Chromium", "level": "Medium", "vvs": 329, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Chromium: CVE-2024-0224 Use after free in WebAudio. This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.\n", "comments": [ { "comment_id": "CVE-2024-0224 was patched at 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2024-0225", "vuln_type": "Memory Corruption", "vuln_product": "Chromium", "level": "Medium", "vvs": 329, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Chromium: CVE-2024-0225 Use after free in WebGPU. This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.\n", "comments": [ { "comment_id": "CVE-2024-0225 was patched at 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2023-34194", "vuln_type": "Denial of Service", "vuln_product": "TinyXML", "level": "Medium", "vvs": 327, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00052, EPSS Percentile is 0.17616", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:tinyxml_project:tinyxml (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "StringEqual in TiXmlDeclaration::Parse in tinyxmlparser.cpp in TinyXML through 2.6.2 has a reachable assertion (and application exit) via a crafted XML document with a '\\0' located after whitespace.", "comments": [ { "comment_id": "CVE-2023-34194 was patched at 2023-12-31, unknown date" } ] }, { "vuln_id": "CVE-2023-46136", "vuln_type": "Denial of Service", "vuln_product": "Werkzeug", "level": "Medium", "vvs": 327, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 8.0. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00053, EPSS Percentile is 0.18732", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Werkzeug is a comprehensive WSGI web application library", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Werkzeug is a comprehensive WSGI web application library. If an upload of a file that starts with CR or LF and then is followed by megabytes of data without these characters: all of these bytes are appended chunk by chunk into internal bytearray and lookup for boundary is performed on growing buffer. This allows an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests. This vulnerability has been patched in version 3.0.1.", "comments": [ { "comment_id": "CVE-2023-46136 was patched at unknown date" }, { "comment_id": "CVE-2023-46136 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2023-38703", "vuln_type": "Memory Corruption", "vuln_product": "PJSIP", "level": "Medium", "vvs": 327, "components": { "CVSS Base Score": { "value": 1.0, "weight": 10, "comment": "CVSS Base Score is 9.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.3, "weight": 10, "comment": "EPSS Probability is 0.00068, EPSS Percentile is 0.28226", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:teluu:pjsip (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "PJSIP is a free and open source multimedia communication library written in C with high level API in C, C++, Java, C#, and Python languages. SRTP is a higher level media transport which is stacked upon a lower level media transport such as UDP and ICE. Currently a higher level transport is not synchronized with its lower level transport that may introduce use-after-free issue. This vulnerability affects applications that have SRTP capability (`PJMEDIA_HAS_SRTP` is set) and use underlying media transport other than UDP. This vulnerability\u2019s impact may range from unexpected application termination to control flow hijack/memory corruption. The patch is available as a commit in the master branch. ", "comments": [ { "comment_id": "CVE-2023-38703 was patched at 2023-12-29, 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2023-42794", "vuln_type": "Denial of Service", "vuln_product": "Apache Tomcat", "level": "Medium", "vvs": 324, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.9. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00045, EPSS Percentile is 0.12432", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "Apache Tomcat is a free and open-source implementation of the Jakarta Servlet, Jakarta Expression Language, and WebSocket technologies", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased, in progress refactoring that exposed a potential denial of service on Windows if a web application opened a stream for an uploaded file but failed to close the stream. The file would never be deleted from disk creating the possibility of an eventual denial of service due to the disk being full. Users are recommended to upgrade to version 9.0.81 onwards or 8.5.94 onwards, which fixes the issue. ", "comments": [ { "comment_id": "CVE-2023-42794 was patched at 2024-01-10" }, { "comment_id": "CVE-2023-42794 was patched at 2024-01-11" }, { "comment_id": "CVE-2023-42794 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-3019", "vuln_type": "Denial of Service", "vuln_product": "QEMU", "level": "Medium", "vvs": 324, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.0. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.", "comments": [ { "comment_id": "CVE-2023-3019 was patched at unknown date" }, { "comment_id": "CVE-2023-3019 was patched at 2024-01-10" }, { "comment_id": "CVE-2023-3019 was patched at 2024-01-12" }, { "comment_id": "CVE-2023-3019 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-45863", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 322, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.4. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An issue was discovered in lib/kobject.c in the Linux kernel before 6.2.3. With root access, an attacker can trigger a race condition that results in a fill_kobj_path out-of-bounds write.", "comments": [ { "comment_id": "CVE-2023-45863 was patched at 2024-01-02, 2024-01-11, unknown date" }, { "comment_id": "CVE-2023-45863 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-40462", "vuln_type": "Denial of Service", "vuln_product": "es450", "level": "Medium", "vvs": 315, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00046, EPSS Percentile is 0.13816", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Denial of Service", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by h:sierrawireless:es450 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": " The ACEManager component of ALEOS 4.16 and earlier does not perform input sanitization during authentication, which could potentially result in a Denial of Service (DoS) condition for ACEManager without impairing other router functions. ACEManager recovers from the DoS condition by restarting within ten seconds of becoming unavailable. ", "comments": [ { "comment_id": "CVE-2023-40462 was patched at 2023-12-31" } ] }, { "vuln_id": "CVE-2023-49294", "vuln_type": "Path Traversal", "vuln_product": "Asterisk", "level": "Medium", "vvs": 315, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 4.9. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.00104, EPSS Percentile is 0.42298", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Path Traversal", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:digium:asterisk (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk prior to versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, it is possible to read any arbitrary file even when the `live_dangerously` is not enabled. This allows arbitrary files to be read. Asterisk versions 18.20.1, 20.5.1, and 21.0.1, as well as certified-asterisk prior to 18.9-cert6, contain a fix for this issue.", "comments": [ { "comment_id": "CVE-2023-49294 was patched at 2023-12-29, 2024-01-04, unknown date" } ] }, { "vuln_id": "CVE-2023-5115", "vuln_type": "Path Traversal", "vuln_product": "ansible_automation_platform", "level": "Medium", "vvs": 315, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.3. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.3, "weight": 10, "comment": "EPSS Probability is 0.00067, EPSS Percentile is 0.27738", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.7, "weight": 15, "comment": "Path Traversal", "level": "Critical" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:redhat:ansible_automation_platform (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path.", "comments": [ { "comment_id": "CVE-2023-5115 was patched at 2023-12-28, unknown date" } ] }, { "vuln_id": "CVE-2024-0333", "vuln_type": "Security Feature Bypass", "vuln_product": "Chromium", "level": "Medium", "vvs": 294, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.9, "weight": 15, "comment": "Security Feature Bypass", "level": "Urgent" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Chromium is a free and open-source web browser project, mainly developed and maintained by Google", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "Chromium: CVE-2024-0333 Insufficient data validation in Extensions. This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information.\n", "comments": [ { "comment_id": "CVE-2024-0333 was patched at 2024-01-10, unknown date" } ] }, { "vuln_id": "CVE-2023-5088", "vuln_type": "Incorrect Calculation", "vuln_product": "QEMU", "level": "Medium", "vvs": 289, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.4. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00042, EPSS Percentile is 0.05738", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Incorrect Calculation", "level": "High" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead (potentially overwriting the VM's boot code). This could be used, for example, by L2 guests with a virtual disk (vdiskL2) stored on a virtual disk of an L1 (vdiskL1) hypervisor to read and/or write data to LBA 0 of vdiskL1, potentially gaining control of L1 at its next reboot.", "comments": [ { "comment_id": "CVE-2023-5088 was patched at unknown date" }, { "comment_id": "CVE-2023-5088 was patched at 2024-01-08" } ] }, { "vuln_id": "CVE-2023-4135", "vuln_type": "Memory Corruption", "vuln_product": "QEMU", "level": "Medium", "vvs": 289, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 6.0. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00045, EPSS Percentile is 0.1259", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.7, "weight": 14, "comment": "QEMU is a generic and open source machine & userspace emulator and virtualizer", "level": "Critical" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "A heap out-of-bounds memory read flaw was found in the virtual nvme device in QEMU. The QEMU process does not validate an offset provided by the guest before computing a host heap pointer, which is used for copying data back to the guest. Arbitrary heap memory relative to an allocated buffer can be disclosed.", "comments": [ { "comment_id": "CVE-2023-4135 was patched at 2024-01-08" } ] }, { "vuln_id": "CVE-2023-51780", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 263, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00053, EPSS Percentile is 0.18903", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.", "comments": [ { "comment_id": "CVE-2023-51780 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-51781", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 263, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00053, EPSS Percentile is 0.18903", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition.", "comments": [ { "comment_id": "CVE-2023-51781 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-51782", "vuln_type": "Memory Corruption", "vuln_product": "Linux Kernel", "level": "Medium", "vvs": 263, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00053, EPSS Percentile is 0.18903", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0.5, "weight": 15, "comment": "Memory Corruption", "level": "High" }, "Vulnerable Product is Common": { "value": 0.9, "weight": 14, "comment": "The Linux kernel is a free and open-source, monolithic, modular, multitasking, Unix-like operating system kernel", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.", "comments": [ { "comment_id": "CVE-2023-51782 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-6869", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Mozilla Firefox", "level": "Medium", "vvs": 240, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 6.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00054, EPSS Percentile is 0.19557", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'A `&lt;dialog>` element could have been manipulated to paint content outside of a sandboxed iframe. This could allow untrusted content to display under the guise of trusted content. This vulnerability affects Firefox < 121.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'A `&lt;dialog>` element could have been manipulated to paint content outside of a sandboxed iframe. This could allow untrusted content to display under the guise of trusted content. This vulnerability affects Firefox < 121.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6869 was patched at 2024-01-02" } ] }, { "vuln_id": "CVE-2022-26563", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Monit", "level": "Medium", "vvs": 238, "components": { "CVSS Base Score": { "value": 0.9, "weight": 10, "comment": "CVSS Base Score is 8.8. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.4, "weight": 10, "comment": "EPSS Probability is 0.001, EPSS Percentile is 0.40779", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:tildeslash:monit (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2022-26563 was patched at unknown date" }, { "comment_id": "CVE-2022-26563 was patched at 2024-01-09" } ] }, { "vuln_id": "CVE-2022-3697", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "ansible", "level": "Medium", "vvs": 238, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00143, EPSS Percentile is 0.50002", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:redhat:ansible (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2022-3697 was patched at 2023-12-28, unknown date" } ] }, { "vuln_id": "CVE-2023-51384", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "OpenSSH", "level": "Medium", "vvs": 216, "components": { "CVSS Base Score": { "value": 0.6, "weight": 10, "comment": "CVSS Base Score is 5.5. According to NVD data source", "level": "Critical" }, "EPSS Percentile": { "value": 0.1, "weight": 10, "comment": "EPSS Probability is 0.00045, EPSS Percentile is 0.12171", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "OpenSSH is a suite of secure networking utilities based on the Secure Shell protocol, which provides a secure channel over an unsecured network in a client\u2013server architecture", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-51384 was patched at unknown date" }, { "comment_id": "CVE-2023-51384 was patched at 2024-01-03" } ] }, { "vuln_id": "CVE-2023-6871", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Mozilla Firefox", "level": "Medium", "vvs": 204, "components": { "CVSS Base Score": { "value": 0.4, "weight": 10, "comment": "CVSS Base Score is 4.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00052, EPSS Percentile is 0.18053", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.8, "weight": 14, "comment": "Mozilla Firefox, or simply Firefox, is a free and open-source web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation", "level": "Urgent" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'Under certain conditions, Firefox did not display a warning when a user attempted to navigate to a new protocol handler. This vulnerability affects Firefox < 121.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Under certain conditions, Firefox did not display a warning when a user attempted to navigate to a new protocol handler. This vulnerability affects Firefox < 121.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6871 was patched at 2024-01-02" } ] }, { "vuln_id": "CVE-2023-45285", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Go", "level": "Medium", "vvs": 202, "components": { "CVSS Base Score": { "value": 0.8, "weight": 10, "comment": "CVSS Base Score is 7.5. According to NVD data source", "level": "Urgent" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.0006, EPSS Percentile is 0.23811", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:golang:go (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'Using go get to fetch a module with the ".git" suffix may unexpectedly fallback to the insecure "git://" protocol if the module is unavailable via the secure "https://" and "git+ssh://" protocols, even if GOINSECURE is not set for said module. This only affects users who are not using the module proxy and are fetching modules directly (i.e. GOPROXY=off).', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Using go get to fetch a module with the ".git" suffix may unexpectedly fallback to the insecure "git://" protocol if the module is unavailable via the secure "https://" and "git+ssh://" protocols, even if GOINSECURE is not set for said module. This only affects users who are not using the module proxy and are fetching modules directly (i.e. GOPROXY=off).', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-45285 was patched at unknown date" }, { "comment_id": "CVE-2023-45285 was patched at 2024-01-11" } ] }, { "vuln_id": "CVE-2023-29197", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Psr-7", "level": "Medium", "vvs": 202, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 5.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.5, "weight": 10, "comment": "EPSS Probability is 0.00152, EPSS Percentile is 0.51457", "level": "High" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:guzzlephp:psr-7 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\\\\n) into both the header names and values. While the specification states that \\\\r\\\\n\\\\r\\\\n is used to terminate the header list, many servers in the wild will also accept \\\\n\\\\n. This is a follow-up to CVE-2022-24775 where the fix was incomplete. The issue has been patched in versions 1.9.1 and 2.4.5. There are no known workarounds for this vulnerability. Users are advised to upgrade.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\\\\n) into both the header names and values. While the specification states that \\\\r\\\\n\\\\r\\\\n is used to terminate the header list, many servers in the wild will also accept \\\\n\\\\n. This is a follow-up to CVE-2022-24775 where the fix was incomplete. The issue has been patched in versions 1.9.1 and 2.4.5. There are no known workarounds for this vulnerability. Users are advised to upgrade.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-29197 was patched at 2024-01-01, unknown date" } ] }, { "vuln_id": "CVE-2024-21319", "vuln_type": "Unknown Vulnerability Type", "vuln_product": ".NET", "level": "Low", "vvs": 166, "components": { "CVSS Base Score": { "value": 0.7, "weight": 10, "comment": "CVSS Base Score is 6.8. According to Microsoft data source", "level": "Critical" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:microsoft:.net (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': 'Microsoft Identity Denial of service vulnerability', 'nvd_cve_data_all': 'Microsoft Identity Denial of service vulnerability', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'Microsoft Identity Denial of service vulnerability', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-21319 was patched at 2024-01-11" }, { "comment_id": "CVE-2024-21319 was patched at 2024-01-10, 2024-01-15" }, { "comment_id": "CVE-2024-21319 was patched at 2024-01-12, 2024-01-16, 2024-01-17" }, { "comment_id": "CVE-2024-21319 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-39326", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Go", "level": "Low", "vvs": 166, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 5.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00052, EPSS Percentile is 0.1772", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:golang:go (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of data (up to about 1GiB) when a handler fails to read the entire body of a request. Chunk extensions are a little-used HTTP feature which permit including additional metadata in a request or response body sent using the chunked encoding. The net/http chunked encoding reader discards this metadata. A sender can exploit this by inserting a large metadata segment with each byte transferred. The chunk reader now produces an error if the ratio of real body to encoded bytes grows too small.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'A malicious HTTP sender can use chunk extensions to cause a receiver reading from a request or response body to read many more bytes from the network than are in the body. A malicious HTTP client can further exploit this to cause a server to automatically read a large amount of data (up to about 1GiB) when a handler fails to read the entire body of a request. Chunk extensions are a little-used HTTP feature which permit including additional metadata in a request or response body sent using the chunked encoding. The net/http chunked encoding reader discards this metadata. A sender can exploit this by inserting a large metadata segment with each byte transferred. The chunk reader now produces an error if the ratio of real body to encoded bytes grows too small.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-39326 was patched at unknown date" }, { "comment_id": "CVE-2023-39326 was patched at 2024-01-11" } ] }, { "vuln_id": "CVE-2023-5625", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "openshift_container_platform_for_arm64", "level": "Low", "vvs": 166, "components": { "CVSS Base Score": { "value": 0.5, "weight": 10, "comment": "CVSS Base Score is 5.3. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.00053, EPSS Percentile is 0.18732", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:redhat:openshift_container_platform_for_arm64 (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-5625 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2023-6918", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "libssh", "level": "Low", "vvs": 154, "components": { "CVSS Base Score": { "value": 0.4, "weight": 10, "comment": "CVSS Base Score is 3.7. According to NVD data source", "level": "High" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.0006, EPSS Percentile is 0.23775", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0.5, "weight": 14, "comment": "Product detected by a:libssh:libssh (exists in CPE dict)", "level": "High" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': 'A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The return values from these were not properly checked, which could cause low-memory situations failures, NULL dereferences, crashes, or usage of the uninitialized memory as an input for the KDF. In this case, non-matching keys will result in decryption/integrity failures, terminating the connection.', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported crypto backends. The return values from these were not properly checked, which could cause low-memory situations failures, NULL dereferences, crashes, or usage of the uninitialized memory as an input for the KDF. In this case, non-matching keys will result in decryption/integrity failures, terminating the connection.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6918 was patched at 2023-12-28, unknown date" } ] }, { "vuln_id": "CVE-2023-51779", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 23, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0.2, "weight": 10, "comment": "EPSS Probability is 0.0005, EPSS Percentile is 0.16907", "level": "Medium" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-51779 was patched at 2024-01-01, unknown date" } ] }, { "vuln_id": "CVE-2023-5388", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-5388 was patched at unknown date" }, { "comment_id": "CVE-2023-5388 was patched at 2024-01-09, 2024-01-10" }, { "comment_id": "CVE-2023-5388 was patched at 2024-01-10" }, { "comment_id": "CVE-2023-5388 was patched at 2024-01-10" } ] }, { "vuln_id": "CVE-2023-6531", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': '', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6531 was patched at 2024-01-01, 2024-01-02, 2024-01-11, unknown date" } ] }, { "vuln_id": "CVE-2023-6816", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2023-6816 was patched at unknown date" }, { "comment_id": "CVE-2023-6816 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2024-0229", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-0229 was patched at unknown date" }, { "comment_id": "CVE-2024-0229 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2024-0408", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-0408 was patched at unknown date" }, { "comment_id": "CVE-2024-0408 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2024-0409", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-0409 was patched at unknown date" }, { "comment_id": "CVE-2024-0409 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2024-21885", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-21885 was patched at unknown date" }, { "comment_id": "CVE-2024-21885 was patched at 2024-01-16" } ] }, { "vuln_id": "CVE-2024-21886", "vuln_type": "Unknown Vulnerability Type", "vuln_product": "Unknown Product", "level": "Low", "vvs": 0, "components": { "CVSS Base Score": { "value": 0.0, "weight": 10, "comment": "CVSS Base Score is NA. No data.", "level": "Low" }, "EPSS Percentile": { "value": 0, "weight": 10, "comment": "EPSS Probability is 0, EPSS Percentile is 0", "level": "Low" }, "Criticality of Vulnerability Type": { "value": 0, "weight": 15, "comment": "Unknown Vulnerability Type", "level": "Low" }, "Vulnerable Product is Common": { "value": 0, "weight": 14, "comment": "Unknown Product", "level": "Low" }, "Public Exploit Exists": { "value": 0, "weight": 17, "comment": "The exploit's existence is NOT mentioned in available Data Sources", "level": "Low" }, "Exploited in the Wild": { "value": 0, "weight": 18, "comment": "Exploitation in the wild is NOT mentioned in available Data Sources", "level": "Low" } }, "description": "{'ms_cve_data_all': '', 'nvd_cve_data_all': '', 'epss_cve_data_all': '', 'attackerkb_cve_data_all': '', 'vulners_cve_data_all': 'This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.', 'custom_cve_data_all': '', 'combined_cve_data_all': ''}", "comments": [ { "comment_id": "CVE-2024-21886 was patched at unknown date" }, { "comment_id": "CVE-2024-21886 was patched at 2024-01-16" } ] } ] } }