From 852c0c66327d6afa25b70b385f91c9d8ce63440e Mon Sep 17 00:00:00 2001 From: cvelistV5 Github Action Date: Fri, 3 Jan 2025 23:00:32 +0000 Subject: [PATCH] 1 changes (0 new | 1 updated): - 0 new CVEs: - 1 updated CVEs: CVE-2025-22376 --- cves/2025/22xxx/CVE-2025-22376.json | 66 ++++++++++++++++++++++++++++- cves/delta.json | 10 ++--- cves/deltaLog.json | 14 ++++++ 3 files changed, 83 insertions(+), 7 deletions(-) diff --git a/cves/2025/22xxx/CVE-2025-22376.json b/cves/2025/22xxx/CVE-2025-22376.json index ae80fa887e7a..e6e2d7acfc42 100644 --- a/cves/2025/22xxx/CVE-2025-22376.json +++ b/cves/2025/22xxx/CVE-2025-22376.json @@ -5,7 +5,7 @@ "cveId": "CVE-2025-22376", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", - "dateUpdated": "2025-01-03T21:14:03.744Z", + "dateUpdated": "2025-01-03T22:55:57.511Z", "dateReserved": "2025-01-03T00:00:00", "datePublished": "2025-01-03T00:00:00" }, @@ -57,7 +57,69 @@ "x_generator": { "engine": "enrichogram 0.0.1" } - } + }, + "adp": [ + { + "problemTypes": [ + { + "descriptions": [ + { + "type": "CWE", + "cweId": "CWE-338", + "lang": "en", + "description": "CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)" + } + ] + } + ], + "metrics": [ + { + "cvssV3_1": { + "scope": "UNCHANGED", + "version": "3.1", + "baseScore": 9.8, + "attackVector": "NETWORK", + "baseSeverity": "CRITICAL", + "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", + "integrityImpact": "HIGH", + "userInteraction": "NONE", + "attackComplexity": "LOW", + "availabilityImpact": "HIGH", + "privilegesRequired": "NONE", + "confidentialityImpact": "HIGH" + } + }, + { + "other": { + "type": "ssvc", + "content": { + "timestamp": "2025-01-03T22:54:50.482941Z", + "id": "CVE-2025-22376", + "options": [ + { + "Exploitation": "none" + }, + { + "Automatable": "yes" + }, + { + "Technical Impact": "total" + } + ], + "role": "CISA Coordinator", + "version": "2.0.3" + } + } + } + ], + "title": "CISA ADP Vulnrichment", + "providerMetadata": { + "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", + "shortName": "CISA-ADP", + "dateUpdated": "2025-01-03T22:55:57.511Z" + } + } + ] }, "dataVersion": "5.1" } \ No newline at end of file diff --git a/cves/delta.json b/cves/delta.json index ad53fff73d7a..f7657f3d5033 100644 --- a/cves/delta.json +++ b/cves/delta.json @@ -1,13 +1,13 @@ { - "fetchTime": "2025-01-03T22:54:20.715Z", + "fetchTime": "2025-01-03T23:00:20.868Z", "numberOfChanges": 1, "new": [], "updated": [ { - "cveId": "CVE-2024-11624", - "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2024-11624", - "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2024/11xxx/CVE-2024-11624.json", - "dateUpdated": "2025-01-03T22:52:26.983Z" + "cveId": "CVE-2025-22376", + "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2025-22376", + "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2025/22xxx/CVE-2025-22376.json", + "dateUpdated": "2025-01-03T22:55:57.511Z" } ], "error": [] diff --git a/cves/deltaLog.json b/cves/deltaLog.json index fc254f1723f6..e5c4f00e4d75 100644 --- a/cves/deltaLog.json +++ b/cves/deltaLog.json @@ -1,4 +1,18 @@ [ + { + "fetchTime": "2025-01-03T23:00:20.868Z", + "numberOfChanges": 1, + "new": [], + "updated": [ + { + "cveId": "CVE-2025-22376", + "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2025-22376", + "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2025/22xxx/CVE-2025-22376.json", + "dateUpdated": "2025-01-03T22:55:57.511Z" + } + ], + "error": [] + }, { "fetchTime": "2025-01-03T22:54:20.715Z", "numberOfChanges": 1,