From f6e25d004bbea3242dbc637e7eb585644b4a7192 Mon Sep 17 00:00:00 2001 From: Weston Steimel Date: Thu, 23 May 2024 14:20:36 +0100 Subject: [PATCH] latest mozilla and google chrome reported vulns Signed-off-by: Weston Steimel --- data/anchore/2024/CVE-2024-4947.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-4948.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-4949.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-4950.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-5022.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-5157.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-5158.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-5159.json | 34 ++++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-5160.json | 34 ++++++++++++++++++++++++++++ 9 files changed, 306 insertions(+) create mode 100644 data/anchore/2024/CVE-2024-4947.json create mode 100644 data/anchore/2024/CVE-2024-4948.json create mode 100644 data/anchore/2024/CVE-2024-4949.json create mode 100644 data/anchore/2024/CVE-2024-4950.json create mode 100644 data/anchore/2024/CVE-2024-5022.json create mode 100644 data/anchore/2024/CVE-2024-5157.json create mode 100644 data/anchore/2024/CVE-2024-5158.json create mode 100644 data/anchore/2024/CVE-2024-5159.json create mode 100644 data/anchore/2024/CVE-2024-5160.json diff --git a/data/anchore/2024/CVE-2024-4947.json b/data/anchore/2024/CVE-2024-4947.json new file mode 100644 index 00000000..09f74205 --- /dev/null +++ b/data/anchore/2024/CVE-2024-4947.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-4947", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html", + "https://issues.chromium.org/issues/340221135" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.60", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-4948.json b/data/anchore/2024/CVE-2024-4948.json new file mode 100644 index 00000000..a3010e39 --- /dev/null +++ b/data/anchore/2024/CVE-2024-4948.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-4948", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html", + "https://issues.chromium.org/issues/333414294" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.60", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-4949.json b/data/anchore/2024/CVE-2024-4949.json new file mode 100644 index 00000000..ce77e034 --- /dev/null +++ b/data/anchore/2024/CVE-2024-4949.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-4949", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html", + "https://issues.chromium.org/issues/326607001" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.60", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-4950.json b/data/anchore/2024/CVE-2024-4950.json new file mode 100644 index 00000000..e5586f6b --- /dev/null +++ b/data/anchore/2024/CVE-2024-4950.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-4950", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_15.html", + "https://issues.chromium.org/issues/40065403" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.60", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-5022.json b/data/anchore/2024/CVE-2024-5022.json new file mode 100644 index 00000000..00a1a48e --- /dev/null +++ b/data/anchore/2024/CVE-2024-5022.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "mozilla", + "cveId": "CVE-2024-5022", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://bugzilla.mozilla.org/show_bug.cgi?id=1874560", + "https://www.mozilla.org/security/advisories/mfsa2024-24/" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:mozilla:firefox_focus:*:*:*:*:*:iphone_os:*:*" + ], + "product": "Focus for iOS", + "vendor": "Mozilla", + "versions": [ + { + "lessThan": "126", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-5157.json b/data/anchore/2024/CVE-2024-5157.json new file mode 100644 index 00000000..0e28ef87 --- /dev/null +++ b/data/anchore/2024/CVE-2024-5157.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-5157", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_21.html", + "https://issues.chromium.org/issues/336012573" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.76", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-5158.json b/data/anchore/2024/CVE-2024-5158.json new file mode 100644 index 00000000..83064f18 --- /dev/null +++ b/data/anchore/2024/CVE-2024-5158.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-5158", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_21.html", + "https://issues.chromium.org/issues/338908243" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.76", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-5159.json b/data/anchore/2024/CVE-2024-5159.json new file mode 100644 index 00000000..571069e8 --- /dev/null +++ b/data/anchore/2024/CVE-2024-5159.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-5159", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_21.html", + "https://issues.chromium.org/issues/335613092" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.76", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-5160.json b/data/anchore/2024/CVE-2024-5160.json new file mode 100644 index 00000000..1a9c0bdb --- /dev/null +++ b/data/anchore/2024/CVE-2024-5160.json @@ -0,0 +1,34 @@ +{ + "additionalMetadata": { + "cna": "chrome", + "cveId": "CVE-2024-5160", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://chromereleases.googleblog.com/2024/05/stable-channel-update-for-desktop_21.html", + "https://issues.chromium.org/issues/338161969" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*" + ], + "product": "Chrome", + "vendor": "Google", + "versions": [ + { + "lessThan": "125.0.6422.76", + "status": "affected", + "version": "0", + "versionType": "custom" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file