Skip to content

Commit

Permalink
4 changes (0 new | 4 updated):
Browse files Browse the repository at this point in the history 
      - 0 new CVEs:
      - 4 updated CVEs: CVE-2024-1625, CVE-2024-3501, CVE-2024-3502, CVE-2024-4148
  • Loading branch information
cvelistV5 Github Action committed Jan 30, 2025
1 parent 366f52b commit 7a0d83e
Show file tree
Hide file tree
Showing 6 changed files with 77 additions and 50 deletions.
8 changes: 4 additions & 4 deletions cves/2024/1xxx/CVE-2024-1625.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,15 +8,15 @@
"assignerShortName": "@huntr_ai",
"dateReserved": "2024-02-19T12:34:34.510Z",
"datePublished": "2024-04-10T17:07:55.385Z",
"dateUpdated": "2024-08-01T18:48:21.501Z"
"dateUpdated": "2025-01-30T13:09:20.467Z"
},
"containers": {
"cna": {
"title": "IDOR Vulnerability in lunary-ai/lunary",
"providerMetadata": {
"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a",
"shortName": "@huntr_ai",
"dateUpdated": "2024-04-16T11:10:26.520Z"
"dateUpdated": "2025-01-30T13:09:20.467Z"
},
"descriptions": [
{
Expand Down Expand Up @@ -70,8 +70,8 @@
{
"type": "CWE",
"lang": "en",
"description": "CWE-863 Incorrect Authorization",
"cweId": "CWE-863"
"description": "CWE-639 Authorization Bypass Through User-Controlled Key",
"cweId": "CWE-639"
}
]
}
Expand Down
8 changes: 4 additions & 4 deletions cves/2024/3xxx/CVE-2024-3501.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,15 +8,15 @@
"assignerShortName": "@huntr_ai",
"dateReserved": "2024-04-09T01:33:48.474Z",
"datePublished": "2024-11-14T17:34:36.048Z",
"dateUpdated": "2024-11-18T15:51:22.478Z"
"dateUpdated": "2025-01-30T13:09:20.820Z"
},
"containers": {
"cna": {
"title": "Exposure of Sensitive Information in lunary-ai/lunary",
"providerMetadata": {
"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a",
"shortName": "@huntr_ai",
"dateUpdated": "2024-11-14T17:34:36.048Z"
"dateUpdated": "2025-01-30T13:09:20.820Z"
},
"descriptions": [
{
Expand Down Expand Up @@ -70,8 +70,8 @@
{
"type": "CWE",
"lang": "en",
"description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
"cweId": "CWE-200"
"description": "CWE-922 Insecure Storage of Sensitive Information",
"cweId": "CWE-922"
}
]
}
Expand Down
8 changes: 4 additions & 4 deletions cves/2024/3xxx/CVE-2024-3502.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,15 +8,15 @@
"assignerShortName": "@huntr_ai",
"dateReserved": "2024-04-09T01:41:03.746Z",
"datePublished": "2024-11-14T17:34:45.226Z",
"dateUpdated": "2024-11-18T15:47:47.820Z"
"dateUpdated": "2025-01-30T13:09:21.095Z"
},
"containers": {
"cna": {
"title": "Exposure of Sensitive Information in lunary-ai/lunary",
"providerMetadata": {
"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a",
"shortName": "@huntr_ai",
"dateUpdated": "2024-11-14T17:34:45.226Z"
"dateUpdated": "2025-01-30T13:09:21.095Z"
},
"descriptions": [
{
Expand Down Expand Up @@ -70,8 +70,8 @@
{
"type": "CWE",
"lang": "en",
"description": "CWE-200 Exposure of Sensitive Information to an Unauthorized Actor",
"cweId": "CWE-200"
"description": "CWE-922 Insecure Storage of Sensitive Information",
"cweId": "CWE-922"
}
]
}
Expand Down
15 changes: 9 additions & 6 deletions cves/2024/4xxx/CVE-2024-4148.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,15 +8,15 @@
"assignerShortName": "@huntr_ai",
"dateReserved": "2024-04-24T21:01:47.587Z",
"datePublished": "2024-06-01T15:54:36.486Z",
"dateUpdated": "2024-08-01T20:33:52.524Z"
"dateUpdated": "2025-01-30T13:09:21.705Z"
},
"containers": {
"cna": {
"title": "Redos (Regular Expression Denial of Service) in lunary-ai/lunary",
"providerMetadata": {
"orgId": "c09c270a-b464-47c1-9133-acb35b22c19a",
"shortName": "@huntr_ai",
"dateUpdated": "2024-06-01T15:54:36.486Z"
"dateUpdated": "2025-01-30T13:09:21.705Z"
},
"descriptions": [
{
Expand All @@ -31,16 +31,19 @@
"versions": [
{
"version": "unspecified",
"lessThan": "1.3.4",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "latest"
"versionType": "custom"
}
]
}
],
"references": [
{
"url": "https://huntr.com/bounties/eca4ad45-2a38-4f3c-9ec1-8205cd51be31"
},
{
"url": "https://github.com/lunary-ai/lunary/commit/1e8a3d941ba5cfef2c478dd5bac4e4a4b4d67830"
}
],
"metrics": [
Expand All @@ -67,8 +70,8 @@
{
"type": "CWE",
"lang": "en",
"description": "CWE-400 Uncontrolled Resource Consumption",
"cweId": "CWE-400"
"description": "CWE-1333 Inefficient Regular Expression Complexity",
"cweId": "CWE-1333"
}
]
}
Expand Down
36 changes: 24 additions & 12 deletions cves/delta.json
View file
Original file line number Diff line number Diff line change
@@ -1,20 +1,32 @@
{
"fetchTime": "2025-01-30T13:03:06.450Z",
"numberOfChanges": 2,
"new": [
"fetchTime": "2025-01-30T13:13:56.397Z",
"numberOfChanges": 4,
"new": [],
"updated": [
{
"cveId": "CVE-2025-0869",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2025-0869",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2025/0xxx/CVE-2025-0869.json",
"dateUpdated": "2025-01-30T13:00:12.408Z"
"cveId": "CVE-2024-1625",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-1625",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/1xxx/CVE-2024-1625.json",
"dateUpdated": "2025-01-30T13:09:20.467Z"
},
{
"cveId": "CVE-2025-0870",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2025-0870",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2025/0xxx/CVE-2025-0870.json",
"dateUpdated": "2025-01-30T13:00:20.408Z"
"cveId": "CVE-2024-3501",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-3501",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/3xxx/CVE-2024-3501.json",
"dateUpdated": "2025-01-30T13:09:20.820Z"
},
{
"cveId": "CVE-2024-3502",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-3502",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/3xxx/CVE-2024-3502.json",
"dateUpdated": "2025-01-30T13:09:21.095Z"
},
{
"cveId": "CVE-2024-4148",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-4148",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/4xxx/CVE-2024-4148.json",
"dateUpdated": "2025-01-30T13:09:21.705Z"
}
],
"updated": [],
"error": []
}
52 changes: 32 additions & 20 deletions cves/deltaLog.json
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,36 @@
[
{
"fetchTime": "2025-01-30T13:13:56.397Z",
"numberOfChanges": 4,
"new": [],
"updated": [
{
"cveId": "CVE-2024-1625",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-1625",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/1xxx/CVE-2024-1625.json",
"dateUpdated": "2025-01-30T13:09:20.467Z"
},
{
"cveId": "CVE-2024-3501",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-3501",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/3xxx/CVE-2024-3501.json",
"dateUpdated": "2025-01-30T13:09:20.820Z"
},
{
"cveId": "CVE-2024-3502",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-3502",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/3xxx/CVE-2024-3502.json",
"dateUpdated": "2025-01-30T13:09:21.095Z"
},
{
"cveId": "CVE-2024-4148",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-4148",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/4xxx/CVE-2024-4148.json",
"dateUpdated": "2025-01-30T13:09:21.705Z"
}
],
"error": []
},
{
"fetchTime": "2025-01-30T13:03:06.450Z",
"numberOfChanges": 2,
Expand Down Expand Up @@ -138410,25 +138442,5 @@
],
"updated": [],
"error": []
},
{
"fetchTime": "2024-12-31T13:06:48.837Z",
"numberOfChanges": 2,
"new": [
{
"cveId": "CVE-2024-56041",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-56041",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/56xxx/CVE-2024-56041.json",
"dateUpdated": "2024-12-31T12:57:11.222Z"
},
{
"cveId": "CVE-2024-56042",
"cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-56042",
"githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/56xxx/CVE-2024-56042.json",
"dateUpdated": "2024-12-31T12:57:48.175Z"
}
],
"updated": [],
"error": []
}
]

0 comments on commit 7a0d83e

Please sign in to comment.