IBM20190513-114659

Added CVE-2019-4259
2025-06-12 02:05:39 +00:00 · 2019-05-13 11:46:59 -04:00 · 2019-05-13 11:46:59 -04:00 · 13e6f4eb62
commit 13e6f4eb62
parent a338be33e2
1 changed files with 102 additions and 15 deletions
--- a/2019/4xxx/CVE-2019-4259.json
+++ b/2019/4xxx/CVE-2019-4259.json
@ -1,18 +1,105 @@
 {
-    "CVE_data_meta": {
-        "ASSIGNER": "cve@mitre.org",
-        "ID": "CVE-2019-4259",
-        "STATE": "RESERVED"
-    },
-    "data_format": "MITRE",
-    "data_type": "CVE",
-    "data_version": "4.0",
-    "description": {
-        "description_data": [
+   "impact" : {
+      "cvssv3" : {
+         "BM" : {
+            "I" : "N",
+            "C" : "L",
+            "S" : "U",
+            "SCORE" : "4.000",
+            "A" : "N",
+            "AC" : "L",
+            "PR" : "N",
+            "UI" : "N",
+            "AV" : "L"
+         },
+         "TM" : {
+            "RC" : "C",
+            "RL" : "O",
+            "E" : "U"
+         }
+      }
+   },
+   "description" : {
+      "description_data" : [
+         {
+            "lang" : "eng",
+            "value" : "A security vulnerability has been identified in IBM Spectrum Scale 4.1.1, 4.2.0, 4.2.1, 4.2.2, 4.2.3, and 5.0.0 with CES stack enabled that could allow sensitive data to be included with service snaps.  IBM X-Force ID:  160011."
+         }
+      ]
+   },
+   "references" : {
+      "reference_data" : [
+         {
+            "name" : "https://www.ibm.com/support/docview.wss?uid=ibm10883568",
+            "title" : "IBM Security Bulletin 883568 (Spectrum Scale)",
+            "url" : "https://www.ibm.com/support/docview.wss?uid=ibm10883568",
+            "refsource" : "CONFIRM"
+         },
+         {
+            "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/160011",
+            "refsource" : "XF",
+            "name" : "ibm-spectrum-cve20194259-info-disc (160011)",
+            "title" : "X-Force Vulnerability Report"
+         }
+      ]
+   },
+   "data_version" : "4.0",
+   "problemtype" : {
+      "problemtype_data" : [
+         {
+            "description" : [
+               {
+                  "value" : "Obtain Information",
+                  "lang" : "eng"
+               }
+            ]
+         }
+      ]
+   },
+   "CVE_data_meta" : {
+      "ASSIGNER" : "psirt@us.ibm.com",
+      "ID" : "CVE-2019-4259",
+      "DATE_PUBLIC" : "2019-05-10T00:00:00",
+      "STATE" : "PUBLIC"
+   },
+   "data_format" : "MITRE",
+   "data_type" : "CVE",
+   "affects" : {
+      "vendor" : {
+         "vendor_data" : [
            {
-                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+               "vendor_name" : "IBM",
+               "product" : {
+                  "product_data" : [
+                     {
+                        "product_name" : "Spectrum Scale",
+                        "version" : {
+                           "version_data" : [
+                              {
+                                 "version_value" : "4.1.1"
+                              },
+                              {
+                                 "version_value" : "4.2.0"
+                              },
+                              {
+                                 "version_value" : "4.2.1"
+                              },
+                              {
+                                 "version_value" : "4.2.2"
+                              },
+                              {
+                                 "version_value" : "4.2.3"
+                              },
+                              {
+                                 "version_value" : "5.0.0"
+                              }
+                           ]
+                        }
+                     }
+                  ]
+               }
            }
-        ]
-    }
-}
+         ]
+      }
+   }
+}