"-Synchronized-Data."

2025-08-04 08:44:25 +00:00 · 2019-06-26 19:00:56 +00:00 · 2019-06-26 19:00:56 +00:00 · 1e37e35b16
commit 1e37e35b16
parent bda3c19cf2
14 changed files with 110 additions and 8 deletions
--- a/2017/5xxx/CVE-2017-5715.json
+++ b/2017/5xxx/CVE-2017-5715.json
@ -482,6 +482,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    }
--- a/2017/5xxx/CVE-2017-5753.json
+++ b/2017/5xxx/CVE-2017-5753.json
@ -372,6 +372,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    }
--- a/2017/5xxx/CVE-2017-5754.json
+++ b/2017/5xxx/CVE-2017-5754.json
@ -367,6 +367,11 @@
                "url": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",
                "refsource": "MISC",
                "name": "https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    }
--- a/2018/12xxx/CVE-2018-12126.json
+++ b/2018/12xxx/CVE-2018-12126.json
@ -83,6 +83,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    },
--- a/2018/12xxx/CVE-2018-12127.json
+++ b/2018/12xxx/CVE-2018-12127.json
@ -83,6 +83,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    },
--- a/2018/12xxx/CVE-2018-12130.json
+++ b/2018/12xxx/CVE-2018-12130.json
@ -83,6 +83,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    },
--- a/2019/10xxx/CVE-2019-10133.json
+++ b/2019/10xxx/CVE-2019-10133.json
@ -4,7 +4,8 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2019-10133",
-        "ASSIGNER": "psampaio@redhat.com"
+        "ASSIGNER": "secalert@redhat.com",
+        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
--- a/2019/10xxx/CVE-2019-10134.json
+++ b/2019/10xxx/CVE-2019-10134.json
@ -4,7 +4,8 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2019-10134",
-        "ASSIGNER": "psampaio@redhat.com"
+        "ASSIGNER": "secalert@redhat.com",
+        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
--- a/2019/10xxx/CVE-2019-10154.json
+++ b/2019/10xxx/CVE-2019-10154.json
@ -4,7 +4,8 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2019-10154",
-        "ASSIGNER": "psampaio@redhat.com"
+        "ASSIGNER": "secalert@redhat.com",
+        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
--- a/2019/11xxx/CVE-2019-11091.json
+++ b/2019/11xxx/CVE-2019-11091.json
@ -83,6 +83,11 @@
                "refsource": "BUGTRAQ",
                "name": "20190624 [SECURITY] [DSA 4469-1] libvirt security update",
                "url": "https://seclists.org/bugtraq/2019/Jun/36"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt",
+                "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt"
            }
        ]
    },
--- a/2019/1xxx/CVE-2019-1897.json
+++ b/2019/1xxx/CVE-2019-1897.json
@ -73,6 +73,11 @@
                "refsource": "CISCO",
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-dos"
            },
+            {
+                "refsource": "MISC",
+                "name": "https://www.tenable.com/security/research/tra-2019-29",
+                "url": "https://www.tenable.com/security/research/tra-2019-29"
+            },
            {
                "refsource": "BID",
                "name": "108848",
--- a/2019/1xxx/CVE-2019-1898.json
+++ b/2019/1xxx/CVE-2019-1898.json
@ -73,6 +73,11 @@
                "refsource": "CISCO",
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-fileaccess"
            },
+            {
+                "refsource": "MISC",
+                "name": "https://www.tenable.com/security/research/tra-2019-29",
+                "url": "https://www.tenable.com/security/research/tra-2019-29"
+            },
            {
                "refsource": "BID",
                "name": "108865",
--- a/2019/1xxx/CVE-2019-1899.json
+++ b/2019/1xxx/CVE-2019-1899.json
@ -73,6 +73,11 @@
                "refsource": "CISCO",
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-infodis"
            },
+            {
+                "refsource": "MISC",
+                "name": "https://www.tenable.com/security/research/tra-2019-29",
+                "url": "https://www.tenable.com/security/research/tra-2019-29"
+            },
            {
                "refsource": "BID",
                "name": "108867",
--- a/2019/9xxx/CVE-2019-9039.json
+++ b/2019/9xxx/CVE-2019-9039.json
@ -2,7 +2,30 @@
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2019-9039",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
@ -11,7 +34,33 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "The Couchbase Sync Gateway 2.1.2 in combination with a Couchbase Server is affected by a previously undisclosed N1QL-injection vulnerability in the REST API. An attacker with access to the public REST API can insert additional N1QL statements through the parameters \u201cstartkey\u201d and \u201cendkey\u201d of the \u201c_all_docs\u201d endpoint."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "CONFIRM",
+                "name": "https://docs.couchbase.com/sync-gateway/2.5/release-notes.html",
+                "url": "https://docs.couchbase.com/sync-gateway/2.5/release-notes.html"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://research.hisolutions.com/2019/06/n1ql-injection-in-couchbase-sync-gateway-cve-2019-9039/",
+                "url": "https://research.hisolutions.com/2019/06/n1ql-injection-in-couchbase-sync-gateway-cve-2019-9039/"
            }
        ]
    }