admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-07-20 11:00:56 +00:00
parent 7873948680
commit 0a0e4eeffa
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
35 changed files with 294 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2018/25xxx/CVE-2018-25015.json
View File

@ -71,6 +71,11 @@
"url": "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.16",
"refsource": "MISC",
"name": "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.16"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0002/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0002/"
}
]
}

10
2018/8xxx/CVE-2018-8012.json
View File

@ -102,6 +102,16 @@
"refsource": "MLIST",
"name": "[jackrabbit-dev] 20210716 [GitHub] [jackrabbit-oak] nit0906 commented on pull request #326: OAK-9496 | Update zookeeper version to handle CVE-2018-8012",
"url": "https://lists.apache.org/thread.html/rc5bc4ddb0deabf8cfb69378cecee56fcdc76929bea9e6373cb863870@%3Cdev.jackrabbit.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[jackrabbit-oak-commits] 20210720 [jackrabbit-oak] branch trunk updated: OAK-9496 | Update zookeeper version to handle CVE-2018-8012 (#326)",
"url": "https://lists.apache.org/thread.html/r73daf1fc5d85677d9a854707e1908d14e174b7bbb0c603709c0ab33f@%3Coak-commits.jackrabbit.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[jackrabbit-dev] 20210720 [GitHub] [jackrabbit-oak] nit0906 merged pull request #326: OAK-9496 | Update zookeeper version to handle CVE-2018-8012",
"url": "https://lists.apache.org/thread.html/re3a4048e9515d4afea416df907a612ed384a16c57cf99e97ee4a12f2@%3Cdev.jackrabbit.apache.org%3E"
}
]
}

5
2019/25xxx/CVE-2019-25045.json
View File

@ -71,6 +71,11 @@
"url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dbb2483b2a46fbaf833cfb5deb5ed9cace9c7399",
"refsource": "MISC",
"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dbb2483b2a46fbaf833cfb5deb5ed9cace9c7399"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0003/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0003/"
}
]
}

5
2020/15xxx/CVE-2020-15260.json
View File

@ -83,6 +83,11 @@
"name": "https://github.com/pjsip/pjproject/pull/2663",
"refsource": "MISC",
"url": "https://github.com/pjsip/pjproject/pull/2663"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-42",
"url": "https://security.gentoo.org/glsa/202107-42"
}
]
},

5
2020/27xxx/CVE-2020-27661.json
View File

@ -71,6 +71,11 @@
"refsource": "MISC",
"name": "https://git.qemu.org/?p=qemu.git;a=commit;h=bea2a9e3e00b275dc40cfa09c760c715b8753e03",
"url": "https://git.qemu.org/?p=qemu.git;a=commit;h=bea2a9e3e00b275dc40cfa09c760c715b8753e03"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0010/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0010/"
}
]
}

5
2020/35xxx/CVE-2020-35503.json
View File

@ -48,6 +48,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1910346",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1910346"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0008/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0008/"
}
]
},

5
2020/36xxx/CVE-2020-36385.json
View File

@ -71,6 +71,11 @@
"url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10",
"refsource": "MISC",
"name": "https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0004/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0004/"
}
]
}

5
2020/4xxx/CVE-2020-4885.json
View File

@ -84,6 +84,11 @@
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/190909",
"name": "ibm-db2-cve20204885-sym-link (190909)"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0006/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0006/"
}
]
}

5
2020/4xxx/CVE-2020-4945.json
View File

@ -61,6 +61,11 @@
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/191945",
"refsource": "XF",
"title": "X-Force Vulnerability Report"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0006/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0006/"
}
]
},

5
2020/7xxx/CVE-2020-7469.json
View File

@ -48,6 +48,11 @@
"refsource": "MISC",
"name": "https://security.FreeBSD.org/advisories/FreeBSD-SA-20:31.icmp6.asc",
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-20:31.icmp6.asc"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0001/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0001/"
}
]
},

91
2020/7xxx/CVE-2020-7866.json
View File

@ -1,18 +1,97 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ASSIGNER": "vuln@krcert.or.kr",
"ID": "CVE-2020-7866",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"STATE": "PUBLIC",
"TITLE": "Tobesoft XPLATFORM Arbitrary Command Execution Vulnerability"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "XPLATFORM",
"version": {
"version_data": [
{
"version_affected": "<=",
"version_value": "9.2.2.270"
}
]
}
}
]
},
"vendor_name": "Tobesoft"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Thanks to Jeongun Baek for reporting this vulnerability"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20 Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "http://support.tobesoft.co.kr/Support/index.html",
"name": "http://support.tobesoft.co.kr/Support/index.html"
},
{
"refsource": "MISC",
"url": "https://krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=36082",
"name": "https://krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=36082"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
}

5
2021/20xxx/CVE-2021-20181.json
View File

@ -58,6 +58,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0009/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0009/"
}
]
},

5
2021/20xxx/CVE-2021-20266.json
View File

@ -58,6 +58,11 @@
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TMGXO3W6DHPO62GJ4VVF5DEUX5DRUR5K/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-43",
"url": "https://security.gentoo.org/glsa/202107-43"
}
]
},

5
2021/20xxx/CVE-2021-20271.json
View File

@ -68,6 +68,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-662680e477",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YILPBTPSBRYL4POBI3F4YUSVPSOQNJBY/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-43",
"url": "https://security.gentoo.org/glsa/202107-43"
}
]
},

5
2021/20xxx/CVE-2021-20307.json
View File

@ -73,6 +73,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-af806dd42d",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FVJRXUOBN56ZWP6QQ3NTA6DIFZMDZAEQ/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-47",
"url": "https://security.gentoo.org/glsa/202107-47"
}
]
},

5
2021/20xxx/CVE-2021-20461.json
View File

@ -46,6 +46,11 @@
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/196770",
"name": "ibm-cognos-cve202120461-gain-access (196770)"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0007/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0007/"
}
]
},

5
2021/20xxx/CVE-2021-20579.json
View File

@ -49,6 +49,11 @@
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/199283",
"name": "ibm-db2-cve202120579-info-disc (199283)"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0006/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0006/"
}
]
},

5
2021/21xxx/CVE-2021-21375.json
View File

@ -88,6 +88,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210523 [SECURITY] [DLA 2665-1] ring security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/05/msg00020.html"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-42",
"url": "https://security.gentoo.org/glsa/202107-42"
}
]
},

2
2021/26xxx/CVE-2021-26095.json
View File

@ -71,7 +71,7 @@
"description_data": [
{
"lang": "eng",
"value": "The combination of various cryptographic issues in the session management of FortiMail 6.4.0 through 6.4.4 and 6.2.0 through 6.2.6, including\u00a0the encryption construction of the session\u00a0cookie,\u00a0may allow a remote attacker already in possession of a cookie to possibly reveal and alter or forge its content, thereby escalating privileges."
"value": "The combination of various cryptographic issues in the session management of FortiMail 6.4.0 through 6.4.4 and 6.2.0 through 6.2.6, including the encryption construction of the session cookie, may allow a remote attacker already in possession of a cookie to possibly reveal and alter or forge its content, thereby escalating privileges."
}
]
}

5
2021/26xxx/CVE-2021-26291.json
View File

@ -198,6 +198,11 @@
"refsource": "MLIST",
"name": "[karaf-issues] 20210719 [jira] [Assigned] (KARAF-7223) Upgrade maven artifacts to mitigate CVE-2021-26291",
"url": "https://lists.apache.org/thread.html/r07a89b32783f73bda6903c1f9aadeb859e5bef0a4daed6d87db8e4a9@%3Cissues.karaf.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[karaf-issues] 20210720 [jira] [Commented] (KARAF-7224) Impact of CVE-2021-26291 on Karaf",
"url": "https://lists.apache.org/thread.html/r96cc126d3ee9aa42af9d3bb4baa94828b0a5f656584a50dcc594125f@%3Cissues.karaf.apache.org%3E"
}
]
},

50
2021/27xxx/CVE-2021-27021.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2021-27021",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "security@puppet.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Puppet DB",
"version": {
"version_data": [
{
"version_value": "All prior versions before Puppet DB 6.17.0, 7.4.1, Puppet Platform 6.23, 7.8.0 and PE 2021.2, 2019.8.7"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "[CWE-1027|https://cwe.mitre.org/data/definitions/1027.html]"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://puppet.com/security/cve/cve-2021-27021/",
"url": "https://puppet.com/security/cve/cve-2021-27021/"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "A flaw was discovered in Puppet DB, this flaw results in an escalation of privileges which allows the user to delete tables via an SQL query."
}
]
}

5
2021/29xxx/CVE-2021-29702.json
View File

@ -72,6 +72,11 @@
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/200658",
"refsource": "XF",
"title": "X-Force Vulnerability Report"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0005/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0005/"
}
]
},

5
2021/29xxx/CVE-2021-29703.json
View File

@ -26,6 +26,11 @@
"refsource": "XF",
"name": "ibm-db2-cve202129703-dos (200659)",
"title": "X-Force Vulnerability Report"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0006/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0006/"
}
]
},

5
2021/29xxx/CVE-2021-29777.json
View File

@ -96,6 +96,11 @@
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/203031",
"title": "X-Force Vulnerability Report"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0006/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0006/"
}
]
}

5
2021/30xxx/CVE-2021-30005.json
View File

@ -61,6 +61,11 @@
"refsource": "MISC",
"name": "https://blog.jetbrains.com/blog/2021/05/07/jetbrains-security-bulletin-q1-2021/",
"url": "https://blog.jetbrains.com/blog/2021/05/07/jetbrains-security-bulletin-q1-2021/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-45",
"url": "https://security.gentoo.org/glsa/202107-45"
}
]
}

5
2021/30xxx/CVE-2021-30145.json
View File

@ -71,6 +71,11 @@
"refsource": "MISC",
"name": "https://github.com/mpv-player/mpv/commit/d0c530919d8cd4d7a774e38ab064e0fabdae34e6",
"url": "https://github.com/mpv-player/mpv/commit/d0c530919d8cd4d7a774e38ab064e0fabdae34e6"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-46",
"url": "https://security.gentoo.org/glsa/202107-46"
}
]
}

5
2021/3xxx/CVE-2021-3421.json
View File

@ -63,6 +63,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1927747",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927747"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-43",
"url": "https://security.gentoo.org/glsa/202107-43"
}
]
},

5
2021/3xxx/CVE-2021-3544.json
View File

@ -53,6 +53,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0008/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0008/"
}
]
},

5
2021/3xxx/CVE-2021-3545.json
View File

@ -53,6 +53,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0008/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0008/"
}
]
},

5
2021/3xxx/CVE-2021-3546.json
View File

@ -53,6 +53,11 @@
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210720-0008/",
"url": "https://security.netapp.com/advisory/ntap-20210720-0008/"
}
]
},

5
2021/3xxx/CVE-2021-3592.json
View File

@ -58,6 +58,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-7cd749f133",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-44",
"url": "https://security.gentoo.org/glsa/202107-44"
}
]
},

5
2021/3xxx/CVE-2021-3593.json
View File

@ -58,6 +58,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-7cd749f133",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-44",
"url": "https://security.gentoo.org/glsa/202107-44"
}
]
},

5
2021/3xxx/CVE-2021-3594.json
View File

@ -58,6 +58,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-7cd749f133",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-44",
"url": "https://security.gentoo.org/glsa/202107-44"
}
]
},

5
2021/3xxx/CVE-2021-3595.json
View File

@ -58,6 +58,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2021-7cd749f133",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SGPQZFVJCFGDSISFXPCQTTBBD7QZLJKI/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202107-44",
"url": "https://security.gentoo.org/glsa/202107-44"
}
]
},