{ "document": { "category": "csaf_security_advisory", "csaf_version": "2.0", "distribution": { "tlp": { "label": "WHITE" } }, "lang": "nl", "notes": [ { "category": "legal_disclaimer", "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings." }, { "category": "description", "text": "Er zijn kwetsbaarheden verholpen in Adobe producten.", "title": "Feiten" }, { "category": "description", "text": "De kwetsbaarheden stellen een kwaadwillende in staat aanvallen uit te voeren die leiden tot de volgende categorieën schade:\n\n- Denial-of-Service (DoS)\n- (Remote) code execution (Gebruikersrechten)\n- Toegang tot systeemgegevens\n", "title": "Interpretaties" }, { "category": "description", "text": "Adobe heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie. ", "title": "Oplossingen" }, { "category": "general", "text": "medium", "title": "Kans" }, { "category": "general", "text": "high", "title": "Schade" }, { "category": "general", "text": "Access of Resource Using Incompatible Type ('Type Confusion')", "title": "CWE-843" }, { "category": "general", "text": "Use After Free", "title": "CWE-416" }, { "category": "general", "text": "Integer Overflow or Wraparound", "title": "CWE-190" }, { "category": "general", "text": "Out-of-bounds Write", "title": "CWE-787" }, { "category": "general", "text": "Integer Underflow (Wrap or Wraparound)", "title": "CWE-191" }, { "category": "general", "text": "Heap-based Buffer Overflow", "title": "CWE-122" }, { "category": "general", "text": "Out-of-bounds Read", "title": "CWE-125" }, { "category": "general", "text": "Improper Input Validation", "title": "CWE-20" }, { "category": "general", "text": "Stack-based Buffer Overflow", "title": "CWE-121" }, { "category": "general", "text": "NULL Pointer Dereference", "title": "CWE-476" }, { "category": "general", "text": "Deserialization of Untrusted Data", "title": "CWE-502" } ], "publisher": { "category": "coordinator", "contact_details": "cert@ncsc.nl", "name": "Nationaal Cyber Security Centrum", "namespace": "https://www.ncsc.nl/" }, "references": [ { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/acrobat/apsb24-70.html" }, { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/after_effects/apsb24-55.html" }, { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/illustrator/apsb24-66.html" }, { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/premiere_pro/apsb24-58.html" }, { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/photoshop/apsb24-72.html" }, { "category": "external", "summary": "Source - adobe", "url": "https://helpx.adobe.com/security/products/coldfusion/apsb24-71.html" } ], "title": "Kwetsbaarheden verholpen in Adobe producten", "tracking": { "current_release_date": "2024-09-11T09:31:21.515977Z", "id": "NCSC-2024-0368", "initial_release_date": "2024-09-11T09:31:21.515977Z", "revision_history": [ { "date": "2024-09-11T09:31:21.515977Z", "number": "0", "summary": "Initiele versie" } ], "status": "final", "version": "1.0.0" } }, "product_tree": { "branches": [ { "branches": [ { "category": "product_name", "name": "acrobat_2020", "product": { "name": "acrobat_2020", "product_id": "CSAFPID-422885", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:acrobat_2020:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "acrobat_2024", "product": { "name": "acrobat_2024", "product_id": "CSAFPID-1615953", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:acrobat_2024:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "acrobat_dc", "product": { "name": "acrobat_dc", "product_id": "CSAFPID-422884", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "acrobat_reader_2020", "product": { "name": "acrobat_reader_2020", "product_id": "CSAFPID-422886", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:acrobat_reader_2020:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "acrobat_reader_dc", "product": { "name": "acrobat_reader_dc", "product_id": "CSAFPID-371567", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "adobe_after_effects", "product": { "name": "adobe_after_effects", "product_id": "CSAFPID-691360", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:adobe_after_effects:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "adobe_premiere_pro", "product": { "name": "adobe_premiere_pro", "product_id": "CSAFPID-691359", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:adobe_premiere_pro:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "after_effects", "product": { "name": "after_effects", "product_id": "CSAFPID-297806", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:after_effects:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-483579", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-1465370", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:0:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-906096", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:27.9.0:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-906097", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:27.9.1:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-904631", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:27.9.2:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-959492", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:27.9.3:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-1616521", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:27.9.4:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-747384", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.0:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-906098", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.1:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-906099", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.2:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-904630", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.3:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-959493", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.4:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator", "product": { "name": "illustrator", "product_id": "CSAFPID-1616522", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator:28.5:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator_2023", "product": { "name": "illustrator_2023", "product_id": "CSAFPID-743678", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator_2023:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "illustrator_2024", "product": { "name": "illustrator_2024", "product_id": "CSAFPID-743677", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:illustrator_2024:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "photoshop", "product": { "name": "photoshop", "product_id": "CSAFPID-326357", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:photoshop:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "photoshop_2023", "product": { "name": "photoshop_2023", "product_id": "CSAFPID-603105", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:photoshop_2023:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "photoshop_2024", "product": { "name": "photoshop_2024", "product_id": "CSAFPID-603106", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:photoshop_2024:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "premiere_pro", "product": { "name": "premiere_pro", "product_id": "CSAFPID-488055", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:premiere_pro:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "coldfusion_2021", "product": { "name": "coldfusion_2021", "product_id": "CSAFPID-691352", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:coldfusion_2021:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "coldfusion_2023", "product": { "name": "coldfusion_2023", "product_id": "CSAFPID-691351", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:coldfusion_2023:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "adobe_audition", "product": { "name": "adobe_audition", "product_id": "CSAFPID-691358", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:adobe_audition:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "audition", "product": { "name": "audition", "product_id": "CSAFPID-669754", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:audition:*:*:*:*:*:*:*:*" } } }, { "category": "product_name", "name": "adobe_media_encoder", "product": { "name": "adobe_media_encoder", "product_id": "CSAFPID-691357", "product_identification_helper": { "cpe": "cpe:2.3:a:adobe:adobe_media_encoder:*:*:*:*:*:*:*:*" } } } ], "category": "vendor", "name": "adobe" } ] }, "vulnerabilities": [ { "cve": "CVE-2024-34121", "cwe": { "id": "CWE-190", "name": "Integer Overflow or Wraparound" }, "notes": [ { "category": "other", "text": "Integer Overflow or Wraparound", "title": "CWE-190" } ], "product_status": { "known_affected": [ "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-34121", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-34121.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-34121" }, { "cve": "CVE-2024-39381", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-691360", "CSAFPID-297806" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39381", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39381.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691360", "CSAFPID-297806" ] } ], "title": "CVE-2024-39381" }, { "cve": "CVE-2024-39384", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-691359", "CSAFPID-488055" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39384", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39384.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691359", "CSAFPID-488055" ] } ], "title": "CVE-2024-39384" }, { "cve": "CVE-2024-41857", "cwe": { "id": "CWE-191", "name": "Integer Underflow (Wrap or Wraparound)" }, "notes": [ { "category": "other", "text": "Integer Underflow (Wrap or Wraparound)", "title": "CWE-191" } ], "product_status": { "known_affected": [ "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41857", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41857.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-41857" }, { "cve": "CVE-2024-41859", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-691360" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41859", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41859.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691360" ] } ], "title": "CVE-2024-41859" }, { "cve": "CVE-2024-41869", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "other", "text": "Use After Free", "title": "CWE-416" } ], "product_status": { "known_affected": [ "CSAFPID-422884", "CSAFPID-371567", "CSAFPID-1615953", "CSAFPID-422885", "CSAFPID-422886" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41869", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41869.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-422884", "CSAFPID-371567", "CSAFPID-1615953", "CSAFPID-422885", "CSAFPID-422886" ] } ], "title": "CVE-2024-41869" }, { "cve": "CVE-2024-43756", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "other", "text": "Heap-based Buffer Overflow", "title": "CWE-122" } ], "product_status": { "known_affected": [ "CSAFPID-603105", "CSAFPID-603106" ] }, "references": [ { "category": "self", "summary": "CVE-2024-43756", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-43756.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-603105", "CSAFPID-603106" ] } ], "title": "CVE-2024-43756" }, { "cve": "CVE-2024-43758", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "other", "text": "Use After Free", "title": "CWE-416" } ], "product_status": { "known_affected": [ "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-43758", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-43758.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-43758" }, { "cve": "CVE-2024-43760", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-603105", "CSAFPID-603106", "CSAFPID-326357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-43760", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-43760.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-603105", "CSAFPID-603106", "CSAFPID-326357" ] } ], "title": "CVE-2024-43760" }, { "cve": "CVE-2024-45108", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-603105", "CSAFPID-603106" ] }, "references": [ { "category": "self", "summary": "CVE-2024-45108", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45108.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-603105", "CSAFPID-603106" ] } ], "title": "CVE-2024-45108" }, { "cve": "CVE-2024-45109", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-603105", "CSAFPID-603106" ] }, "references": [ { "category": "self", "summary": "CVE-2024-45109", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45109.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-603105", "CSAFPID-603106" ] } ], "title": "CVE-2024-45109" }, { "cve": "CVE-2024-45112", "cwe": { "id": "CWE-843", "name": "Access of Resource Using Incompatible Type ('Type Confusion')" }, "notes": [ { "category": "other", "text": "Access of Resource Using Incompatible Type ('Type Confusion')", "title": "CWE-843" } ], "product_status": { "known_affected": [ "CSAFPID-422884", "CSAFPID-371567", "CSAFPID-1615953", "CSAFPID-422885", "CSAFPID-422886" ] }, "references": [ { "category": "self", "summary": "CVE-2024-45112", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45112.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "baseScore": 8.6, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-422884", "CSAFPID-371567", "CSAFPID-1615953", "CSAFPID-422885", "CSAFPID-422886" ] } ], "title": "CVE-2024-45112" }, { "cve": "CVE-2024-39380", "cwe": { "id": "CWE-122", "name": "Heap-based Buffer Overflow" }, "notes": [ { "category": "other", "text": "Heap-based Buffer Overflow", "title": "CWE-122" } ], "product_status": { "known_affected": [ "CSAFPID-691360" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39380", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39380.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691360" ] } ], "title": "CVE-2024-39380" }, { "cve": "CVE-2024-39382", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691360", "CSAFPID-297806" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39382", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39382.json" } ], "title": "CVE-2024-39382" }, { "cve": "CVE-2024-39385", "cwe": { "id": "CWE-416", "name": "Use After Free" }, "notes": [ { "category": "other", "text": "Use After Free", "title": "CWE-416" } ], "product_status": { "known_affected": [ "CSAFPID-691359", "CSAFPID-488055" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39385", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39385.json" } ], "title": "CVE-2024-39385" }, { "cve": "CVE-2024-41856", "cwe": { "id": "CWE-20", "name": "Improper Input Validation" }, "notes": [ { "category": "other", "text": "Improper Input Validation", "title": "CWE-20" } ], "product_status": { "known_affected": [ "CSAFPID-904631", "CSAFPID-959492", "CSAFPID-1616521", "CSAFPID-747384", "CSAFPID-1465370", "CSAFPID-483579", "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41856", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41856.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-904631", "CSAFPID-959492", "CSAFPID-1616521", "CSAFPID-747384", "CSAFPID-1465370", "CSAFPID-483579", "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-41856" }, { "cve": "CVE-2024-41867", "cwe": { "id": "CWE-121", "name": "Stack-based Buffer Overflow" }, "notes": [ { "category": "other", "text": "Stack-based Buffer Overflow", "title": "CWE-121" } ], "product_status": { "known_affected": [ "CSAFPID-691360" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41867", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41867.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691360" ] } ], "title": "CVE-2024-41867" }, { "cve": "CVE-2024-43759", "cwe": { "id": "CWE-476", "name": "NULL Pointer Dereference" }, "notes": [ { "category": "other", "text": "NULL Pointer Dereference", "title": "CWE-476" } ], "product_status": { "known_affected": [ "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-43759", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-43759.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L", "baseScore": 3.3, "baseSeverity": "LOW" }, "products": [ "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-43759" }, { "cve": "CVE-2024-45110", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-603105", "CSAFPID-603106" ] }, "references": [ { "category": "self", "summary": "CVE-2024-45110", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45110.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-603105", "CSAFPID-603106" ] } ], "title": "CVE-2024-45110" }, { "cve": "CVE-2024-45111", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-743677", "CSAFPID-743678" ] }, "references": [ { "category": "self", "summary": "CVE-2024-45111", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-45111.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-743677", "CSAFPID-743678" ] } ], "title": "CVE-2024-45111" }, { "cve": "CVE-2024-41874", "cwe": { "id": "CWE-502", "name": "Deserialization of Untrusted Data" }, "notes": [ { "category": "other", "text": "Deserialization of Untrusted Data", "title": "CWE-502" } ], "product_status": { "known_affected": [ "CSAFPID-691351", "CSAFPID-691352" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41874", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41874.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL" }, "products": [ "CSAFPID-691351", "CSAFPID-691352" ] } ], "title": "CVE-2024-41874" }, { "cve": "CVE-2024-39377", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-691357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39377", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39377.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691357" ] } ], "title": "CVE-2024-39377" }, { "cve": "CVE-2024-39378", "cwe": { "id": "CWE-787", "name": "Out-of-bounds Write" }, "notes": [ { "category": "other", "text": "Out-of-bounds Write", "title": "CWE-787" } ], "product_status": { "known_affected": [ "CSAFPID-691358", "CSAFPID-669754" ] }, "references": [ { "category": "self", "summary": "CVE-2024-39378", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-39378.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH" }, "products": [ "CSAFPID-691358", "CSAFPID-669754" ] } ], "title": "CVE-2024-39378" }, { "cve": "CVE-2024-41868", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691358" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41868", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41868.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691358" ] } ], "title": "CVE-2024-41868" }, { "cve": "CVE-2024-41870", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41870", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41870.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691357" ] } ], "title": "CVE-2024-41870" }, { "cve": "CVE-2024-41871", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41871", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41871.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691357" ] } ], "title": "CVE-2024-41871" }, { "cve": "CVE-2024-41872", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41872", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41872.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691357" ] } ], "title": "CVE-2024-41872" }, { "cve": "CVE-2024-41873", "cwe": { "id": "CWE-125", "name": "Out-of-bounds Read" }, "notes": [ { "category": "other", "text": "Out-of-bounds Read", "title": "CWE-125" } ], "product_status": { "known_affected": [ "CSAFPID-691357" ] }, "references": [ { "category": "self", "summary": "CVE-2024-41873", "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-41873.json" } ], "scores": [ { "cvss_v3": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", "baseScore": 5.5, "baseSeverity": "MEDIUM" }, "products": [ "CSAFPID-691357" ] } ], "title": "CVE-2024-41873" } ] }