misc batch for 2024-06-04

Signed-off-by: Weston Steimel <[email protected]>
anchore · Jun 4, 2024 · b8991b6 · b8991b6
1 parent 6fc4a66
commit b8991b6
Show file tree

Hide file tree

Showing 3 changed files with 110 additions and 0 deletions.
diff --git a/data/anchore/2024/CVE-2024-32983.json b/data/anchore/2024/CVE-2024-32983.json
@@ -0,0 +1,37 @@
+{
+  "additionalMetadata": {
+    "cna": "github_m",
+    "cveId": "CVE-2024-32983",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://github.com/misskey-dev/misskey/commit/d2a5bb39e344fcb84a24ae60faafe4694b227b88",
+      "https://github.com/misskey-dev/misskey/security/advisories/GHSA-2vxv-pv3m-3wvj"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://github.com",
+        "cpes": [
+          "cpe:2.3:a:misskey:misskey:*:*:*:*:*:*:*:*"
+        ],
+        "packageName": "misskey-dev/misskey",
+        "product": "misskey",
+        "repo": "https://github.com/misskey-dev/misskey",
+        "vendor": "misskey-dev",
+        "versions": [
+          {
+            "lessThan": "2024.5.0",
+            "status": "affected",
+            "version": "0",
+            "versionType": "custom"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-36128.json b/data/anchore/2024/CVE-2024-36128.json
@@ -0,0 +1,38 @@
+{
+  "additionalMetadata": {
+    "cna": "github_m",
+    "cveId": "CVE-2024-36128",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://github.com/directus/directus/commit/7d2a1392f43613094de700062aba168a9400dd3b",
+      "https://github.com/directus/directus/security/advisories/GHSA-632p-p495-25m5"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "collectionURL": "https://github.com",
+        "cpes": [
+          "cpe:2.3:a:monospace:directus:*:*:*:*:*:node.js:*:*",
+          "cpe:2.3:a:rangerstudio:directus:*:*:*:*:*:*:*:*"
+        ],
+        "packageName": "directus/directus",
+        "product": "directus",
+        "repo": "https://github.com/directus/directus",
+        "vendor": "directus",
+        "versions": [
+          {
+            "lessThan": "10.11.2",
+            "status": "affected",
+            "version": "0",
+            "versionType": "custom"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}
diff --git a/data/anchore/2024/CVE-2024-5197.json b/data/anchore/2024/CVE-2024-5197.json
@@ -0,0 +1,35 @@
+{
+  "additionalMetadata": {
+    "cna": "google",
+    "cveId": "CVE-2024-5197",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://g-issues.chromium.org/issues/332382766"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:webmproject:libvpx:*:*:*:*:*:*:*:*"
+        ],
+        "packageName": "libvpx",
+        "product": "libvpx",
+        "repo": "https://chromium.googlesource.com/webm/libvpx",
+        "vendor": "Chromium",
+        "versions": [
+          {
+            "lessThan": "1.14.1",
+            "status": "affected",
+            "version": "0",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    }
+  }
+}