Skip to content

Commit

Permalink
enrich several more github_m submissions
Browse files Browse the repository at this point in the history 
Signed-off-by: Weston Steimel <[email protected]>
  • Loading branch information
@westonsteimel
westonsteimel committed May 28, 2024
1 parent c65d776 commit ffedf61
Show file tree
Hide file tree
Showing 26 changed files with 1,055 additions and 0 deletions.
108 changes: 108 additions & 0 deletions data/anchore/2024/CVE-2024-22201.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,108 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-22201",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"http://www.openwall.com/lists/oss-security/2024/03/20/2",
"https://github.com/jetty/jetty.project/issues/11256",
"https://github.com/jetty/jetty.project/security/advisories/GHSA-rggv-cv7r-mw98",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00002.html",
"https://security.netapp.com/advisory/ntap-20240329-0001/"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://repo.maven.apache.org",
"cpes": [
"cpe:2.3:a:org.eclipse.jetty.http2:http2-common:*:*:*:*:*:*:*:*"
],
"packageName": "org.eclipse.jetty.http2:http2-common",
"product": "Jetty HTTP2 Common",
"vendor": "Eclipse",
"versions": [
{
"lessThan": "9.4.54",
"status": "affected",
"version": "9.3.0",
"versionType": "maven"
},
{
"lessThan": "10.0.20",
"status": "affected",
"version": "10",
"versionType": "maven"
},
{
"lessThan": "11.0.20",
"status": "affected",
"version": "11",
"versionType": "maven"
}
]
},
{
"collectionURL": "https://repo.maven.apache.org",
"cpes": [
"cpe:2.3:a:org.eclipse.jetty.http2:jetty-http2-common:*:*:*:*:*:*:*:*"
],
"packageName": "org.eclipse.jetty.http2:jetty-http2-common",
"product": "Jetty HTTP2 Common",
"vendor": "Eclipse",
"versions": [
{
"lessThan": "12.0.6",
"status": "affected",
"version": "12",
"versionType": "maven"
}
]
},
{
"collectionURL": "https://repo.maven.apache.org",
"cpes": [
"cpe:2.3:a:org.eclipse.jetty.http3:http3-common:*:*:*:*:*:*:*:*"
],
"packageName": "org.eclipse.jetty.http3:http3-common",
"product": "Jetty HTTP3 Common",
"vendor": "Eclipse",
"versions": [
{
"lessThan": "10.0.20",
"status": "affected",
"version": "10",
"versionType": "maven"
},
{
"lessThan": "11.0.20",
"status": "affected",
"version": "11",
"versionType": "maven"
}
]
},
{
"collectionURL": "https://repo.maven.apache.org",
"cpes": [
"cpe:2.3:a:org.eclipse.jetty.http3:jetty-http3-common:*:*:*:*:*:*:*:*"
],
"packageName": "org.eclipse.jetty.http3:jetty-http3-common",
"product": "Jetty HTTP3 Common",
"vendor": "Eclipse",
"versions": [
{
"lessThan": "12.0.6",
"status": "affected",
"version": "12",
"versionType": "maven"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
36 changes: 36 additions & 0 deletions data/anchore/2024/CVE-2024-24751.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-24751",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/derhansen/sf_event_mgt/commit/a08c2cd48695c07e462d15eeb70434ddc0206e4c",
"https://github.com/derhansen/sf_event_mgt/security/advisories/GHSA-4576-pgh2-g34j"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:derhansen:event_management_and_registration:*:*:*:*:*:typo3:*:*"
],
"packageName": "derhansen/sf_event_mgt",
"product": "sf_event_mgt",
"vendor": "derhansen",
"versions": [
{
"lessThan": "7.4.0",
"status": "affected",
"version": "7.0.0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
36 changes: 36 additions & 0 deletions data/anchore/2024/CVE-2024-26135.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-26135",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/Ylianst/MeshCentral/commit/f2e43cc6da9f5447dbff0948e6c6024c8a315af3",
"https://github.com/Ylianst/MeshCentral/security/advisories/GHSA-cp68-qrhr-g9h8"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:meshcentral:meshcentral:*:*:*:*:*:*:*:*"
],
"packageName": "ylianst/meshcentral",
"product": "MeshCentral",
"vendor": "Ylianst",
"versions": [
{
"lessThan": "1.1.21",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
35 changes: 35 additions & 0 deletions data/anchore/2024/CVE-2024-26139.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-26139",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/OpenCTI-Platform/opencti/security/advisories/GHSA-qx4j-f4f2-vjw9"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:citeum:opencti:*:*:*:*:*:*:*:*"
],
"packageName": "opencti-platform/opencti",
"product": "opencti",
"vendor": "OpenCTI-Platform",
"versions": [
{
"lessThanOrEqual": "5.12.31",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
36 changes: 36 additions & 0 deletions data/anchore/2024/CVE-2024-27081.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-27081",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/esphome/esphome/commit/d814ed1d4adc71fde47c4df41215bee449884513",
"https://github.com/esphome/esphome/security/advisories/GHSA-8p25-3q46-8q2p"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:esphome:esphome:*:*:*:*:*:*:*:*"
],
"packageName": "esphome/esphome",
"product": "esphome",
"vendor": "esphome",
"versions": [
{
"lessThan": "2024.2.1",
"status": "affected",
"version": "2023.12.9",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
41 changes: 41 additions & 0 deletions data/anchore/2024/CVE-2024-27285.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,41 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-27285",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/lsegal/yard/commit/1fcb2d8b316caf8779cfdcf910715e9ab583f0aa",
"https://github.com/lsegal/yard/commit/2069e2bf08293bda2fcc78f7d0698af6354054be",
"https://github.com/lsegal/yard/pull/1538",
"https://github.com/lsegal/yard/security/advisories/GHSA-8mq4-9jjh-9xrc",
"https://github.com/rubysec/ruby-advisory-db/blob/master/gems/yard/CVE-2024-27285.yml",
"https://lists.debian.org/debian-lts-announce/2024/03/msg00006.html",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/MR3Z2E2UIZZ7YOR7R645EVSBGWMB2RGA/"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:yardoc:yard:*:*:*:*:*:*:*:*"
],
"packageName": "lsegal/yard",
"product": "yard",
"vendor": "lsegal",
"versions": [
{
"lessThan": "0.9.36",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
36 changes: 36 additions & 0 deletions data/anchore/2024/CVE-2024-27287.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-27287",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/esphome/esphome/commit/37d2b3c7977a4ccbec59726ca7549cb776661455",
"https://github.com/esphome/esphome/security/advisories/GHSA-9p43-hj5j-96h5"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:esphome:esphome:*:*:*:*:*:*:*:*"
],
"packageName": "esphome/esphome",
"product": "esphome",
"vendor": "esphome",
"versions": [
{
"lessThan": "2024.2.2",
"status": "affected",
"version": "2023.12.9",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
36 changes: 36 additions & 0 deletions data/anchore/2024/CVE-2024-28102.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,36 @@
{
"additionalMetadata": {
"cna": "github_m",
"cveId": "CVE-2024-28102",
"reason": "Added CPE configurations because not yet analyzed by NVD.",
"references": [
"https://github.com/latchset/jwcrypto/commit/90477a3b6e73da69740e00b8161f53fea19b831f",
"https://github.com/latchset/jwcrypto/security/advisories/GHSA-j857-7rvv-vj97"
]
},
"adp": {
"affected": [
{
"collectionURL": "https://github.com",
"cpes": [
"cpe:2.3:a:jwcrypto_project:jwcrypto:*:*:*:*:*:*:*:*"
],
"packageName": "latchset/jwcrypto",
"product": "jwcrypto",
"vendor": "latchset",
"versions": [
{
"lessThan": "1.5.6",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"orgId": "00000000-0000-4000-8000-000000000000",
"shortName": "anchoreadp"
}
}
}
Loading

0 comments on commit ffedf61

Please sign in to comment.