Update KEV: Tue Feb 25 00:11:40 UTC 2025

aboutcode-automation · aboutcode-automation · commit d262905e7e4b · 2025-02-25T00:11:40.000Z
Signed-off-by: AboutCode Automation &lt;automation@aboutcode.org&gt;
diff --git a/known_exploited_vulnerabilities.json b/known_exploited_vulnerabilities.json
@@ -1,9 +1,39 @@
 {
     "title": "CISA Catalog of Known Exploited Vulnerabilities",
-    "catalogVersion": "2025.02.21",
-    "dateReleased": "2025-02-21T17:07:48.4896Z",
-    "count": 1276,
+    "catalogVersion": "2025.02.24",
+    "dateReleased": "2025-02-24T17:55:31.6365Z",
+    "count": 1278,
     "vulnerabilities": [
+        {
+            "cveID": "CVE-2024-20953",
+            "vendorProject": "Oracle",
+            "product": "Agile Product Lifecycle Management (PLM)",
+            "vulnerabilityName": "Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability",
+            "dateAdded": "2025-02-24",
+            "shortDescription": "Oracle Agile Product Lifecycle Management (PLM) contains a deserialization vulnerability that allows a low-privileged attacker with network access via HTTP to compromise the system.",
+            "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2025-03-17",
+            "knownRansomwareCampaignUse": "Unknown",
+            "notes": "https:\/\/www.oracle.com\/security-alerts\/cpujan2024.html ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2024-20953",
+            "cwes": [
+                "CWE-502"
+            ]
+        },
+        {
+            "cveID": "CVE-2017-3066",
+            "vendorProject": "Adobe",
+            "product": "ColdFusion",
+            "vulnerabilityName": "Adobe ColdFusion Deserialization Vulnerability",
+            "dateAdded": "2025-02-24",
+            "shortDescription": "Adobe ColdFusion contains a deserialization vulnerability in the Apache BlazeDS library that allows for arbitrary code execution.",
+            "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
+            "dueDate": "2025-03-17",
+            "knownRansomwareCampaignUse": "Unknown",
+            "notes": "https:\/\/helpx.adobe.com\/security\/products\/coldfusion\/apsb17-14.html ; https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2017-3066",
+            "cwes": [
+                "CWE-502"
+            ]
+        },
         {
             "cveID": "CVE-2025-24989",
             "vendorProject": "Microsoft",
@@ -1348,10 +1378,10 @@
         {
             "cveID": "CVE-2024-45519",
             "vendorProject": "Synacor",
-            "product": "Zimbra Collaboration",
-            "vulnerabilityName": "Synacor Zimbra Collaboration Command Execution Vulnerability",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Command Execution Vulnerability",
             "dateAdded": "2024-10-03",
-            "shortDescription": "Synacor Zimbra Collaboration contains an unspecified vulnerability in the postjournal service that may allow an unauthenticated user to execute commands.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains an unspecified vulnerability in the postjournal service that may allow an unauthenticated user to execute commands.",
             "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
             "dueDate": "2024-10-24",
             "knownRansomwareCampaignUse": "Unknown",
@@ -4435,11 +4465,11 @@
         },
         {
             "cveID": "CVE-2023-37580",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability",
             "dateAdded": "2023-07-27",
-            "shortDescription": "Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability impacting the confidentiality and integrity of data.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability impacting the confidentiality and integrity of data.",
             "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
             "dueDate": "2023-08-17",
             "knownRansomwareCampaignUse": "Unknown",
@@ -5530,11 +5560,11 @@
         },
         {
             "cveID": "CVE-2022-27926",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Cross-Site Scripting (XSS) Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability",
             "dateAdded": "2023-04-03",
-            "shortDescription": "Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability by allowing an endpoint URL to accept parameters without sanitizing.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability by allowing an endpoint URL to accept parameters without sanitizing.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2023-04-24",
             "knownRansomwareCampaignUse": "Unknown",
@@ -6505,11 +6535,11 @@
         },
         {
             "cveID": "CVE-2022-41352",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability",
             "dateAdded": "2022-10-20",
-            "shortDescription": "Zimbra Collaboration (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other user accounts.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other user accounts.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-11-10",
             "knownRansomwareCampaignUse": "Unknown",
@@ -7201,11 +7231,11 @@
         },
         {
             "cveID": "CVE-2022-27925",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Arbitrary File Upload Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Arbitrary File Upload Vulnerability",
             "dateAdded": "2022-08-11",
-            "shortDescription": "Zimbra Collaboration (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains flaw in the mboximport functionality, allowing an authenticated attacker to upload arbitrary files to perform remote code execution. This vulnerability was chained with CVE-2022-37042 which allows for unauthenticated remote code execution.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-09-01",
             "knownRansomwareCampaignUse": "Unknown",
@@ -7216,11 +7246,11 @@
         },
         {
             "cveID": "CVE-2022-37042",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Authentication Bypass Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Authentication Bypass Vulnerability",
             "dateAdded": "2022-08-11",
-            "shortDescription": "Zimbra Collaboration (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains an authentication bypass vulnerability in MailboxImportServlet. This vulnerability was chained with CVE-2022-27925 which allows for unauthenticated remote code execution.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-09-01",
             "knownRansomwareCampaignUse": "Unknown",
@@ -7260,11 +7290,11 @@
         },
         {
             "cveID": "CVE-2022-27924",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration (ZCS) Command Injection Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Command Injection Vulnerability",
             "dateAdded": "2022-08-04",
-            "shortDescription": "Zimbra Collaboration (ZCS) allows an attacker to inject memcache commands into a targeted instance which causes an overwrite of arbitrary cached entries.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) allows an attacker to inject memcache commands into a targeted instance which causes an overwrite of arbitrary cached entries.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-08-25",
             "knownRansomwareCampaignUse": "Unknown",
@@ -9357,11 +9387,11 @@
         },
         {
             "cveID": "CVE-2018-6882",
-            "vendorProject": "Zimbra",
-            "product": "Collaboration Suite (ZCS)",
-            "vulnerabilityName": "Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability",
             "dateAdded": "2022-04-19",
-            "shortDescription": "Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability that might allow remote attackers to inject arbitrary web script or HTML.",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting vulnerability that might allow remote attackers to inject arbitrary web script or HTML.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-05-10",
             "knownRansomwareCampaignUse": "Known",
@@ -13255,11 +13285,11 @@
         },
         {
             "cveID": "CVE-2022-24682",
-            "vendorProject": "Zimbra",
-            "product": "Webmail",
-            "vulnerabilityName": "Zimbra Webmail Cross-Site Scripting Vulnerability",
+            "vendorProject": "Synacor",
+            "product": "Zimbra Webmail",
+            "vulnerabilityName": "Synacor Zimbra Webmail Cross-Site Scripting Vulnerability",
             "dateAdded": "2022-02-25",
-            "shortDescription": "Zimbra webmail clients running versions 8.8.15 P29 & P30 contain a XSS vulnerability that would allow attackers to steal session cookie files.",
+            "shortDescription": "Synacor Zimbra webmail clients running versions 8.8.15 P29 & P30 contain a XSS vulnerability that would allow attackers to steal session cookie files.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-03-11",
             "knownRansomwareCampaignUse": "Known",
@@ -14195,10 +14225,10 @@
         {
             "cveID": "CVE-2019-9670",
             "vendorProject": "Synacor",
-            "product": "Zimbra Collaboration (ZCS)",
-            "vulnerabilityName": "Synacor Zimbra Collaboration (ZCS) Improper Restriction of XML External Entity Reference",
+            "product": "Zimbra Collaboration Suite (ZCS)",
+            "vulnerabilityName": "Synacor Zimbra Collaboration Suite (ZCS) Improper Restriction of XML External Entity Reference",
             "dateAdded": "2022-01-10",
-            "shortDescription": "Improper Restriction of XML External Entity Reference vulnerability affecting Synacor Zimbra Collaboration (ZCS).",
+            "shortDescription": "Synacor Zimbra Collaboration Suite (ZCS) contains an improper restriction of XML external entity (XXE) vulnerability in the mailboxd component.",
             "requiredAction": "Apply updates per vendor instructions.",
             "dueDate": "2022-07-10",
             "knownRansomwareCampaignUse": "Unknown",
