From d6cb4a3cb322f1c3dfb4bc33032c8324d186f4fa Mon Sep 17 00:00:00 2001 From: Weston Steimel Date: Mon, 20 May 2024 10:15:51 +0100 Subject: [PATCH] conversion for elastic records Signed-off-by: Weston Steimel --- data/anchore/2024/CVE-2024-23449.json | 35 ++++++++++++++++++++++ data/anchore/2024/CVE-2024-23450.json | 42 +++++++++++++++++++++++++++ data/anchore/2024/CVE-2024-23451.json | 35 ++++++++++++++++++++++ 3 files changed, 112 insertions(+) create mode 100644 data/anchore/2024/CVE-2024-23449.json create mode 100644 data/anchore/2024/CVE-2024-23450.json create mode 100644 data/anchore/2024/CVE-2024-23451.json diff --git a/data/anchore/2024/CVE-2024-23449.json b/data/anchore/2024/CVE-2024-23449.json new file mode 100644 index 00000000..8c25f2ab --- /dev/null +++ b/data/anchore/2024/CVE-2024-23449.json @@ -0,0 +1,35 @@ +{ + "additionalMetadata": { + "cna": "elastic", + "cveId": "CVE-2024-23449", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://discuss.elastic.co/t/elasticsearch-8-11-1-security-update-esa-2024-05/356458" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", + "cpe:2.3:a:org.elasticsearch:elasticsearch:*:*:*:*:*:*:*:*" + ], + "product": "Elasticsearch", + "repo": "https://github.com/elastic/elasticsearch", + "vendor": "Elastic", + "versions": [ + { + "lessThan": "8.11.1", + "status": "affected", + "version": "8.4.0", + "versionType": "semver" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-23450.json b/data/anchore/2024/CVE-2024-23450.json new file mode 100644 index 00000000..1f89c3b9 --- /dev/null +++ b/data/anchore/2024/CVE-2024-23450.json @@ -0,0 +1,42 @@ +{ + "additionalMetadata": { + "cna": "elastic", + "cveId": "CVE-2024-23450", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://discuss.elastic.co/t/elasticsearch-8-13-0-7-17-19-security-update-esa-2024-06/356314", + "https://www.elastic.co/community/security" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", + "cpe:2.3:a:org.elasticsearch:elasticsearch:*:*:*:*:*:*:*:*" + ], + "product": "Elasticsearch", + "repo": "https://github.com/elastic/elasticsearch", + "vendor": "Elastic", + "versions": [ + { + "lessThan": "7.17.19", + "status": "affected", + "version": "7.0.0", + "versionType": "semver" + }, + { + "lessThan": "8.13.0", + "status": "affected", + "version": "8.0.0", + "versionType": "semver" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file diff --git a/data/anchore/2024/CVE-2024-23451.json b/data/anchore/2024/CVE-2024-23451.json new file mode 100644 index 00000000..6b8e9fc0 --- /dev/null +++ b/data/anchore/2024/CVE-2024-23451.json @@ -0,0 +1,35 @@ +{ + "additionalMetadata": { + "cna": "elastic", + "cveId": "CVE-2024-23451", + "reason": "Added CPE configurations because not yet analyzed by NVD.", + "references": [ + "https://discuss.elastic.co/t/elasticsearch-8-13-0-security-update-esa-2024-07/356315" + ] + }, + "adp": { + "affected": [ + { + "cpes": [ + "cpe:2.3:a:elastic:elasticsearch:*:*:*:*:*:*:*:*", + "cpe:2.3:a:org.elasticsearch:elasticsearch:*:*:*:*:*:*:*:*" + ], + "product": "Elasticsearch", + "repo": "https://github.com/elastic/elasticsearch", + "vendor": "Elastic", + "versions": [ + { + "lessThan": "8.13.0", + "status": "affected", + "version": "8.10.0", + "versionType": "semver" + } + ] + } + ], + "providerMetadata": { + "orgId": "00000000-0000-4000-8000-000000000000", + "shortName": "anchoreadp" + } + } +} \ No newline at end of file