3 changes (1 new | 2 updated):

- 1 new CVEs: CVE-2018-9377 - 2 updated CVEs: CVE-2023-39327, CVE-2023-39329
CVEProject · Nov 28, 2024 · f3879ad · f3879ad
1 parent 8810121
commit f3879ad
Show file tree

Hide file tree

Showing 5 changed files with 134 additions and 11 deletions.
diff --git a/cves/2018/9xxx/CVE-2018-9377.json b/cves/2018/9xxx/CVE-2018-9377.json
@@ -0,0 +1,83 @@
+{
+    "dataType": "CVE_RECORD",
+    "dataVersion": "5.1",
+    "cveMetadata": {
+        "cveId": "CVE-2018-9377",
+        "assignerOrgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
+        "state": "PUBLISHED",
+        "assignerShortName": "google_android",
+        "dateReserved": "2018-04-05T00:00:00.000Z",
+        "datePublished": "2024-11-28T00:23:14.763Z",
+        "dateUpdated": "2024-11-28T00:23:14.763Z"
+    },
+    "containers": {
+        "cna": {
+            "affected": [
+                {
+                    "defaultStatus": "unaffected",
+                    "product": "Android",
+                    "vendor": "Google",
+                    "versions": [
+                        {
+                            "status": "affected",
+                            "version": "6"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "6.0.1"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "7"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "7.1.1"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "7.1.2"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "8"
+                        },
+                        {
+                            "status": "affected",
+                            "version": "8.1"
+                        }
+                    ]
+                }
+            ],
+            "descriptions": [
+                {
+                    "lang": "en",
+                    "supportingMedia": [
+                        {
+                            "base64": false,
+                            "type": "text/html",
+                            "value": "<span style=\"background-color: rgb(255, 255, 255);\">In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a&nbsp;</span><span style=\"background-color: rgb(255, 255, 255);\">possible information disclosure due to uninitialized data. This could lead&nbsp;</span><span style=\"background-color: rgb(255, 255, 255);\">to local information disclosure with no additional execution privileges&nbsp;</span><span style=\"background-color: rgb(255, 255, 255);\">needed. User interaction is not needed for exploitation.</span><br>"
+                        }
+                    ],
+                    "value": "In BnAudioPolicyService::onTransact of IAudioPolicyService.cpp, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation."
+                }
+            ],
+            "providerMetadata": {
+                "orgId": "baff130e-b8d5-4e15-b3d3-c3cf5d5545c6",
+                "shortName": "google_android",
+                "dateUpdated": "2024-11-28T00:23:14.763Z"
+            },
+            "references": [
+                {
+                    "url": "https://source.android.com/docs/security/bulletin/pixel/2018-06-01"
+                }
+            ],
+            "source": {
+                "discovery": "UNKNOWN"
+            },
+            "x_generator": {
+                "engine": "Vulnogram 0.2.0"
+            }
+        }
+    }
+}
diff --git a/cves/2023/39xxx/CVE-2023-39327.json b/cves/2023/39xxx/CVE-2023-39327.json
@@ -8,7 +8,7 @@
         "assignerShortName": "redhat",
         "dateReserved": "2023-07-27T18:04:08.247Z",
         "datePublished": "2024-07-13T03:08:48.501Z",
-        "dateUpdated": "2024-09-23T12:36:22.619Z"
+        "dateUpdated": "2024-11-28T00:20:10.906Z"
     },
     "containers": {
         "cna": {
@@ -175,7 +175,7 @@
             "providerMetadata": {
                 "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
                 "shortName": "redhat",
-                "dateUpdated": "2024-09-23T12:36:22.619Z"
+                "dateUpdated": "2024-11-28T00:20:10.906Z"
             }
         },
         "adp": [

diff --git a/cves/2023/39xxx/CVE-2023-39329.json b/cves/2023/39xxx/CVE-2023-39329.json
@@ -8,7 +8,7 @@
         "assignerShortName": "redhat",
         "dateReserved": "2023-07-27T18:04:08.248Z",
         "datePublished": "2024-07-13T03:09:18.573Z",
-        "dateUpdated": "2024-09-30T21:09:01.532Z"
+        "dateUpdated": "2024-11-28T00:20:15.550Z"
     },
     "containers": {
         "cna": {
@@ -175,7 +175,7 @@
             "providerMetadata": {
                 "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
                 "shortName": "redhat",
-                "dateUpdated": "2024-09-30T21:09:01.532Z"
+                "dateUpdated": "2024-11-28T00:20:15.550Z"
             }
         },
         "adp": [

diff --git a/cves/delta.json b/cves/delta.json
@@ -1,14 +1,27 @@
 {
-  "fetchTime": "2024-11-27T23:49:52.639Z",
-  "numberOfChanges": 1,
+  "fetchTime": "2024-11-28T00:28:45.867Z",
+  "numberOfChanges": 3,
   "new": [
     {
-      "cveId": "CVE-2018-9374",
-      "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2018-9374",
-      "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2018/9xxx/CVE-2018-9374.json",
-      "dateUpdated": "2024-11-27T23:42:11.151Z"
+      "cveId": "CVE-2018-9377",
+      "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2018-9377",
+      "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2018/9xxx/CVE-2018-9377.json",
+      "dateUpdated": "2024-11-28T00:23:14.763Z"
+    }
+  ],
+  "updated": [
+    {
+      "cveId": "CVE-2023-39327",
+      "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2023-39327",
+      "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2023/39xxx/CVE-2023-39327.json",
+      "dateUpdated": "2024-11-28T00:20:10.906Z"
+    },
+    {
+      "cveId": "CVE-2023-39329",
+      "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2023-39329",
+      "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2023/39xxx/CVE-2023-39329.json",
+      "dateUpdated": "2024-11-28T00:20:15.550Z"
     }
   ],
-  "updated": [],
   "error": []
 }
diff --git a/cves/deltaLog.json b/cves/deltaLog.json
@@ -1,4 +1,31 @@
 [
+  {
+    "fetchTime": "2024-11-28T00:28:45.867Z",
+    "numberOfChanges": 3,
+    "new": [
+      {
+        "cveId": "CVE-2018-9377",
+        "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2018-9377",
+        "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2018/9xxx/CVE-2018-9377.json",
+        "dateUpdated": "2024-11-28T00:23:14.763Z"
+      }
+    ],
+    "updated": [
+      {
+        "cveId": "CVE-2023-39327",
+        "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2023-39327",
+        "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2023/39xxx/CVE-2023-39327.json",
+        "dateUpdated": "2024-11-28T00:20:10.906Z"
+      },
+      {
+        "cveId": "CVE-2023-39329",
+        "cveOrgLink": "https://www.cve.org/CVERecord?id=CVE-2023-39329",
+        "githubLink": "https://raw.githubusercontent.com/CVEProject/cvelistV5/main/cves/2023/39xxx/CVE-2023-39329.json",
+        "dateUpdated": "2024-11-28T00:20:15.550Z"
+      }
+    ],
+    "error": []
+  },
   {
     "fetchTime": "2024-11-27T23:49:52.639Z",
     "numberOfChanges": 1,