cvelist/2019/6xxx/CVE-2019-6557.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "ics-cert@hq.dhs.gov",
      "DATE_PUBLIC" : "2019-03-05T00:00:00",
      "ID" : "CVE-2019-6557",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "Moxa IKS, EDS",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "ICS-CERT"
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "Several buffer overflow vulnerabilities have been identified in Moxa IKS and EDS, which may allow remote code execution. Ivan B, Sergey Fedonin, and Vyacheslav Moskvin of Positive Technologies Security reported these vulnerabilities to ICS-CERT."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "Buffer overflow CWE-120"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "url" : "https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01"
         }
      ]
   }
}
- Synchronized data. 2019-01-22 15:05:16 -05:00			`{`
			`"CVE_data_meta" : {`
pushing icscert mass publication request. 2019-03-05 14:50:34 -05:00			`"ASSIGNER" : "ics-cert@hq.dhs.gov",`
			`"DATE_PUBLIC" : "2019-03-05T00:00:00",`
- Synchronized data. 2019-01-22 15:05:16 -05:00			`"ID" : "CVE-2019-6557",`
pushing icscert mass publication request. 2019-03-05 14:50:34 -05:00			`"STATE" : "PUBLIC"`
			`},`
			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
			`"product_name" : "Moxa IKS, EDS",`
			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name" : "ICS-CERT"`
			`}`
			`]`
			`}`
- Synchronized data. 2019-01-22 15:05:16 -05:00			`},`
			`"data_format" : "MITRE",`
			`"data_type" : "CVE",`
			`"data_version" : "4.0",`
			`"description" : {`
			`"description_data" : [`
			`{`
			`"lang" : "eng",`
pushing icscert mass publication request. 2019-03-05 14:50:34 -05:00			`"value" : "Several buffer overflow vulnerabilities have been identified in Moxa IKS and EDS, which may allow remote code execution. Ivan B, Sergey Fedonin, and Vyacheslav Moskvin of Positive Technologies Security reported these vulnerabilities to ICS-CERT."`
			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "Buffer overflow CWE-120"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references" : {`
			`"reference_data" : [`
			`{`
			`"url" : "https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01"`
- Synchronized data. 2019-01-22 15:05:16 -05:00			`}`
			`]`
			`}`
			`}`