diff --git a/2019/17xxx/CVE-2019-17178.json b/2019/17xxx/CVE-2019-17178.json index dfbeff79e31..f1f21bc5b7b 100644 --- a/2019/17xxx/CVE-2019-17178.json +++ b/2019/17xxx/CVE-2019-17178.json @@ -57,11 +57,6 @@ "refsource": "MISC", "name": "https://github.com/FreeRDP/FreeRDP/issues/5645" }, - { - "url": "https://github.com/akallabeth/FreeRDP/commit/fc80ab45621bd966f70594c0b7393ec005a94007", - "refsource": "MISC", - "name": "https://github.com/akallabeth/FreeRDP/commit/fc80ab45621bd966f70594c0b7393ec005a94007" - }, { "refsource": "SUSE", "name": "openSUSE-SU-2019:2604", @@ -71,6 +66,11 @@ "refsource": "SUSE", "name": "openSUSE-SU-2019:2608", "url": "http://lists.opensuse.org/opensuse-security-announce/2019-12/msg00005.html" + }, + { + "refsource": "MISC", + "name": "https://github.com/FreeRDP/FreeRDP/commit/9fee4ae076b1ec97b97efb79ece08d1dab4df29a", + "url": "https://github.com/FreeRDP/FreeRDP/commit/9fee4ae076b1ec97b97efb79ece08d1dab4df29a" } ] } diff --git a/2020/14xxx/CVE-2020-14163.json b/2020/14xxx/CVE-2020-14163.json index 1e7e4532260..23609c1e6ca 100644 --- a/2020/14xxx/CVE-2020-14163.json +++ b/2020/14xxx/CVE-2020-14163.json @@ -58,9 +58,9 @@ "name": "https://github.com/jerryscript-project/jerryscript/issues/3804" }, { - "url": "https://github.com/jerryscript-project/jerryscript/pull/3805/commits/9d76c134c24cfb92ec079ce4298f8eff51a50416", "refsource": "MISC", - "name": "https://github.com/jerryscript-project/jerryscript/pull/3805/commits/9d76c134c24cfb92ec079ce4298f8eff51a50416" + "name": "https://github.com/jerryscript-project/jerryscript/commit/c2b662170245a16f46ce02eae68815c325d99821", + "url": "https://github.com/jerryscript-project/jerryscript/commit/c2b662170245a16f46ce02eae68815c325d99821" } ] } diff --git a/2020/15xxx/CVE-2020-15241.json b/2020/15xxx/CVE-2020-15241.json index bb715632315..4fd9c344f47 100644 --- a/2020/15xxx/CVE-2020-15241.json +++ b/2020/15xxx/CVE-2020-15241.json @@ -53,7 +53,7 @@ "description_data": [ { "lang": "eng", - "value": "TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like `{showFullName ? fullName : defaultValue}`. Updated versions of this package are bundled in following TYPO3 (`typo3/cms-core`) versions as well: TYPO3 v8.7.25 (using `typo3fluid/fluid` v2.5.4) and TYPO3 v9.5.6 (using `typo3fluid/fluid` v2.6.1)." + "value": "TYPO3 Fluid Engine (package `typo3fluid/fluid`) before versions 2.0.5, 2.1.4, 2.2.1, 2.3.5, 2.4.1, 2.5.5 or 2.6.1 is vulnerable to cross-site scripting when making use of the ternary conditional operator in templates like `{showFullName ? fullName : defaultValue}`. Updated versions of this package are bundled in following TYPO3 (`typo3/cms-core`) versions as well: TYPO3 v8.7.25 (using `typo3fluid/fluid` v2.5.4) and TYPO3 v9.5.6 (using `typo3fluid/fluid` v2.6.1)." } ] }, diff --git a/2020/17xxx/CVE-2020-17365.json b/2020/17xxx/CVE-2020-17365.json index e8b7bbf07b5..a16fce83074 100644 --- a/2020/17xxx/CVE-2020-17365.json +++ b/2020/17xxx/CVE-2020-17365.json @@ -56,6 +56,11 @@ "refsource": "MISC", "name": "https://www.pango.co/sec31944/", "url": "https://www.pango.co/sec31944/" + }, + { + "refsource": "MISC", + "name": "https://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/", + "url": "https://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/" } ] } diff --git a/2020/26xxx/CVE-2020-26894.json b/2020/26xxx/CVE-2020-26894.json index 294b3650885..022512ae60d 100644 --- a/2020/26xxx/CVE-2020-26894.json +++ b/2020/26xxx/CVE-2020-26894.json @@ -1,17 +1,61 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-26894", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-26894", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Faulkner Wildlife Issues in the New Millennium 18.0.160 on Windows allows local, low-privileged users to gain privileges by creating a malicious \"%SYSTEMDRIVE%\\Course Software Material 18.0.1.9\\cmd.exe\" file." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://john-woodman.com/posts/Privilege-Escalation-Vulnerability-Faulkner-Press/", + "refsource": "MISC", + "name": "https://john-woodman.com/posts/Privilege-Escalation-Vulnerability-Faulkner-Press/" } ] }