admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-09-20 14:00:52 +00:00
parent 83502b24f5
commit 135ca4c9d1
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
16 changed files with 767 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
2019/0xxx/CVE-2019-0223.json
View File

@ -123,6 +123,16 @@
"refsource": "REDHAT",
"name": "RHSA-2019:2780",
"url": "https://access.redhat.com/errata/RHSA-2019:2780"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2781",
"url": "https://access.redhat.com/errata/RHSA-2019:2781"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2782",
"url": "https://access.redhat.com/errata/RHSA-2019:2782"
}
]
},

5
2019/13xxx/CVE-2019-13272.json
View File

@ -171,6 +171,11 @@
"refsource": "UBUNTU",
"name": "USN-4118-1",
"url": "https://usn.ubuntu.com/4118-1/"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2809",
"url": "https://access.redhat.com/errata/RHSA-2019:2809"
}
]
}

67
2019/14xxx/CVE-2019-14911.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14911",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly escape output on error, leading to reflected XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/14xxx/CVE-2019-14912.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14912",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly check the goto parameter, leading to an open redirect that leaks the session cookie."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/14xxx/CVE-2019-14913.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14913",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/14xxx/CVE-2019-14914.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14914",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. The path is not properly escaped in the medatadata_del method, leading to an arbitrary file read and deletion via Directory Traversal."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/14xxx/CVE-2019-14915.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14915",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. Certificate data are not properly escaped. This leads to XSS when submitting a rogue certificate."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/14xxx/CVE-2019-14916.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-14916",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. A file's format is not properly checked, leading to an unrestricted file upload."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/15xxx/CVE-2019-15085.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15085",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. The current database password is embedded in the change password form."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/15xxx/CVE-2019-15086.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15086",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. The newentityID parameter is not properly escaped, leading to a reflected XSS in the error message."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/15xxx/CVE-2019-15087.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15087",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. An authenticated user can change the function used to hash passwords to any function, leading to remote code execution."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/15xxx/CVE-2019-15088.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15088",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. Password hashes are compared using the equality operator. Thus, under specific circumstances, it is possible to bypass login authentication."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

67
2019/15xxx/CVE-2019-15089.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-15089",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in PRiSE adAS 1.7.0. Forms have no CSRF protection, letting an attacker execute actions as the administrator."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.adas-sso.com/es/extra/download.php",
"refsource": "MISC",
"name": "http://www.adas-sso.com/es/extra/download.php"
},
{
"refsource": "MISC",
"name": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas",
"url": "https://security-garage.com/index.php/cves/from-open-redirect-to-rce-in-adas"
}
]
}
}

5
2019/16xxx/CVE-2019-16525.json
View File

@ -52,6 +52,11 @@
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/9877",
"url": "https://wpvulndb.com/vulnerabilities/9877"
},
{
"url": "https://plugins.trac.wordpress.org/changeset/2155029/",
"refsource": "MISC",

5
2019/5xxx/CVE-2019-5489.json
View File

@ -146,6 +146,11 @@
"refsource": "REDHAT",
"name": "RHSA-2019:2837",
"url": "https://access.redhat.com/errata/RHSA-2019:2837"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2809",
"url": "https://access.redhat.com/errata/RHSA-2019:2809"
}
]
}

5
2019/6xxx/CVE-2019-6974.json
View File

@ -171,6 +171,11 @@
"refsource": "REDHAT",
"name": "RHBA-2019:0959",
"url": "https://access.redhat.com/errata/RHBA-2019:0959"
},
{
"refsource": "REDHAT",
"name": "RHSA-2019:2809",
"url": "https://access.redhat.com/errata/RHSA-2019:2809"
}
]
}