admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-30 18:04:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-08-20 16:06:20 -04:00
parent b17ed8f1d1
commit 27766fd8b8
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
15 changed files with 899 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

66
2018/1000xxx/CVE-2018-1000215.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.505150", "DATE_REQUESTED": "2018-07-23T16:30:00", "ID": "CVE-2018-1000215", "REQUESTER": "secure@veritas.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "cJSON", "version": { "version_data": [ { "version_value": "1.7.6 and earlier" } ] } } ] }, "vendor_name": "Dave Gamble" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force the data to be printed and the system is in low memory it can force a leak of memory. This vulnerability appears to have been fixed in 1.7.7." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-772" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/DaveGamble/cJSON/issues/267" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.505150",
"DATE_REQUESTED" : "2018-07-23T16:30:00",
"ID" : "CVE-2018-1000215",
"REQUESTER" : "secure@veritas.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "cJSON",
"version" : {
"version_data" : [
{
"version_value" : "1.7.6 and earlier"
}
]
}
}
]
},
"vendor_name" : "Dave Gamble"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force the data to be printed and the system is in low memory it can force a leak of memory. This vulnerability appears to have been fixed in 1.7.7."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "CWE-772"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/DaveGamble/cJSON/issues/267",
"refsource" : "CONFIRM",
"url" : "https://github.com/DaveGamble/cJSON/issues/267"
}
]
}
}

66
2018/1000xxx/CVE-2018-1000216.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.506666", "DATE_REQUESTED": "2018-07-23T16:43:09", "ID": "CVE-2018-1000216", "REQUESTER": "secure@veritas.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "cJSON", "version": { "version_data": [ { "version_value": "1.7.2 and earlier" } ] } } ] }, "vendor_name": "Dave Gamble" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could be either local or over a network. This vulnerability appears to have been fixed in 1.7.3." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-415: Double Free" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/DaveGamble/cJSON/issues/241" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.506666",
"DATE_REQUESTED" : "2018-07-23T16:43:09",
"ID" : "CVE-2018-1000216",
"REQUESTER" : "secure@veritas.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "cJSON",
"version" : {
"version_data" : [
{
"version_value" : "1.7.2 and earlier"
}
]
}
}
]
},
"vendor_name" : "Dave Gamble"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to print JSON data, depending on how cJSON library is used this could be either local or over a network. This vulnerability appears to have been fixed in 1.7.3."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "CWE-415: Double Free"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/DaveGamble/cJSON/issues/241",
"refsource" : "CONFIRM",
"url" : "https://github.com/DaveGamble/cJSON/issues/241"
}
]
}
}

66
2018/1000xxx/CVE-2018-1000217.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.507726", "DATE_REQUESTED": "2018-07-23T16:54:45", "ID": "CVE-2018-1000217", "REQUESTER": "secure@veritas.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "cJSON", "version": { "version_data": [ { "version_value": "1.7.3 and earlier" } ] } } ] }, "vendor_name": "Dave Gamble" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network interface then can be exploited over a network, otherwise just local.. This vulnerability appears to have been fixed in 1.7.4." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-416: Use After Free" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/DaveGamble/cJSON/issues/248" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.507726",
"DATE_REQUESTED" : "2018-07-23T16:54:45",
"ID" : "CVE-2018-1000217",
"REQUESTER" : "secure@veritas.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "cJSON",
"version" : {
"version_data" : [
{
"version_value" : "1.7.3 and earlier"
}
]
}
}
]
},
"vendor_name" : "Dave Gamble"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on how application uses cJSON library. If application provides network interface then can be exploited over a network, otherwise just local.. This vulnerability appears to have been fixed in 1.7.4."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "CWE-416: Use After Free"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/DaveGamble/cJSON/issues/248",
"refsource" : "CONFIRM",
"url" : "https://github.com/DaveGamble/cJSON/issues/248"
}
]
}
}

71
2018/1000xxx/CVE-2018-1000218.json
View File

@ -1 +1,70 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.508649", "DATE_REQUESTED": "2018-07-24T16:22:06", "ID": "CVE-2018-1000218", "REQUESTER": "iremembermodems@gmail.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "OpenEMR", "version": { "version_data": [ { "version_value": "v5_0_1_4" } ] } } ] }, "vendor_name": "OpenEMR" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'file' parameter in line #43 of interface/fax/fax_view.php that can result in The vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML.. This attack appear to be exploitable via The victim must visit on a specially crafted URL.." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Scripting (XSS)" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L43" }, { "url": "https://github.com/openemr/openemr/issues/1781" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.508649",
"DATE_REQUESTED" : "2018-07-24T16:22:06",
"ID" : "CVE-2018-1000218",
"REQUESTER" : "iremembermodems@gmail.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "OpenEMR",
"version" : {
"version_data" : [
{
"version_value" : "v5_0_1_4"
}
]
}
}
]
},
"vendor_name" : "OpenEMR"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'file' parameter in line #43 of interface/fax/fax_view.php that can result in The vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML.. This attack appear to be exploitable via The victim must visit on a specially crafted URL.."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Cross Site Scripting (XSS)"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L43",
"refsource" : "MISC",
"url" : "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L43"
},
{
"name" : "https://github.com/openemr/openemr/issues/1781",
"refsource" : "CONFIRM",
"url" : "https://github.com/openemr/openemr/issues/1781"
}
]
}
}

71
2018/1000xxx/CVE-2018-1000219.json
View File

@ -1 +1,70 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.509616", "DATE_REQUESTED": "2018-07-24T16:24:43", "ID": "CVE-2018-1000219", "REQUESTER": "iremembermodems@gmail.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "OpenEMR", "version": { "version_data": [ { "version_value": "v5_0_1_4" } ] } } ] }, "vendor_name": "OpenEMR" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'scan' parameter in line #41 of interface/fax/fax_view.php that can result in The vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML.. This attack appear to be exploitable via The victim must visit on a specially crafted URL.." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Scripting (XSS)" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L41" }, { "url": "https://github.com/openemr/openemr/issues/1781" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.509616",
"DATE_REQUESTED" : "2018-07-24T16:24:43",
"ID" : "CVE-2018-1000219",
"REQUESTER" : "iremembermodems@gmail.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "OpenEMR",
"version" : {
"version_data" : [
{
"version_value" : "v5_0_1_4"
}
]
}
}
]
},
"vendor_name" : "OpenEMR"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "OpenEMR version v5_0_1_4 contains a Cross Site Scripting (XSS) vulnerability in The 'scan' parameter in line #41 of interface/fax/fax_view.php that can result in The vulnerability could allow remote authenticated attackers to inject arbitrary web script or HTML.. This attack appear to be exploitable via The victim must visit on a specially crafted URL.."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Cross Site Scripting (XSS)"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L41",
"refsource" : "MISC",
"url" : "https://github.com/openemr/openemr/blob/1b495b0b3cd16daf1e5f085145d9e19dea479c7f/interface/fax/fax_view.php#L41"
},
{
"name" : "https://github.com/openemr/openemr/issues/1781",
"refsource" : "CONFIRM",
"url" : "https://github.com/openemr/openemr/issues/1781"
}
]
}
}

2
2018/1000xxx/CVE-2018-1000220.json
View File

@ -12,7 +12,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-5462. Reason: This candidate is a reservation duplicate of 2014-5462. Notes: All CVE users should reference 2014-5462 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage."
"value" : "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-5462. Reason: This candidate is a reservation duplicate of CVE-2014-5462. Notes: All CVE users should reference CVE-2014-5462 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage."
}
]
}

66
2018/1000xxx/CVE-2018-1000221.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.511508", "DATE_REQUESTED": "2018-07-29T01:28:57", "ID": "CVE-2018-1000221", "REQUESTER": "nenolod@gmail.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "pkgconf", "version": { "version_data": [ { "version_value": "1.5.0 to 1.5.2" } ] } } ] }, "vendor_name": "pkgconf" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote() that can result in dequote() function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to have been fixed in 1.5.3." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Buffer Overflow" } ] } ] }, "references": { "reference_data": [ { "url": "https://git.dereferenced.org/pkgconf/pkgconf/pulls/3" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.511508",
"DATE_REQUESTED" : "2018-07-29T01:28:57",
"ID" : "CVE-2018-1000221",
"REQUESTER" : "nenolod@gmail.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "pkgconf",
"version" : {
"version_data" : [
{
"version_value" : "1.5.0 to 1.5.2"
}
]
}
}
]
},
"vendor_name" : "pkgconf"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote() that can result in dequote() function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to have been fixed in 1.5.3."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Buffer Overflow"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://git.dereferenced.org/pkgconf/pkgconf/pulls/3",
"refsource" : "CONFIRM",
"url" : "https://git.dereferenced.org/pkgconf/pkgconf/pulls/3"
}
]
}
}

66
2018/1000xxx/CVE-2018-1000222.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.512430", "DATE_REQUESTED": "2018-07-29T15:06:35", "ID": "CVE-2018-1000222", "REQUESTER": "solmaz.salimi@sharif.edu" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Libgd", "version": { "version_data": [ { "version_value": "2.2.5" } ] } } ] }, "vendor_name": "Libgd" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Double Free Vulnerability " } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/libgd/libgd/issues/447" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.512430",
"DATE_REQUESTED" : "2018-07-29T15:06:35",
"ID" : "CVE-2018-1000222",
"REQUESTER" : "solmaz.salimi@sharif.edu",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Libgd",
"version" : {
"version_data" : [
{
"version_value" : "2.2.5"
}
]
}
}
]
},
"vendor_name" : "Libgd"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit ac16bdf2d41724b5a65255d4c28fb0ec46bc42f5."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Double Free Vulnerability "
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/libgd/libgd/issues/447",
"refsource" : "CONFIRM",
"url" : "https://github.com/libgd/libgd/issues/447"
}
]
}
}

66
2018/1000xxx/CVE-2018-1000223.json
View File

@ -1 +1,65 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.513482", "DATE_REQUESTED": "2018-08-01T09:38:03", "ID": "CVE-2018-1000223", "REQUESTER": "amaris@redhat.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "soundtouch", "version": { "version_data": [ { "version_value": "up to and including 2.0.0" } ] } } ] }, "vendor_name": "soundtouch" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Buffer Overflow" } ] } ] }, "references": { "reference_data": [ { "url": "https://gitlab.com/soundtouch/soundtouch/issues/6" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.513482",
"DATE_REQUESTED" : "2018-08-01T09:38:03",
"ID" : "CVE-2018-1000223",
"REQUESTER" : "amaris@redhat.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "soundtouch",
"version" : {
"version_data" : [
{
"version_value" : "up to and including 2.0.0"
}
]
}
}
]
},
"vendor_name" : "soundtouch"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Buffer Overflow"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://gitlab.com/soundtouch/soundtouch/issues/6",
"refsource" : "CONFIRM",
"url" : "https://gitlab.com/soundtouch/soundtouch/issues/6"
}
]
}
}

76
2018/1000xxx/CVE-2018-1000224.json
View File

@ -1 +1,75 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.514568", "DATE_REQUESTED": "2018-07-31T16:33:51", "ID": "CVE-2018-1000224", "REQUESTER": "fabio.alessandrelli@gmail.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Godot Engine", "version": { "version_data": [ { "version_value": "All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6." } ] } } ] }, "vendor_name": "Godot Engine" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization vulnerability in (De)Serialization functions (core/io/marshalls.cpp) that can result in DoS (packet of death), possible leak of uninitialized memory. This attack appear to be exploitable via A malformed packet is received over the network by a Godot application that uses built-in serialization (e.g. game server, or game client). Could be triggered by multiplayer opponent. This vulnerability appears to have been fixed in 2.1.5, 3.0.6, master branch after commit feaf03421dda0213382b51aff07bd5a96b29487b." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization" } ] } ] }, "references": { "reference_data": [ { "url": "https://github.com/godotengine/godot/issues/20558" }, { "url": "https://godotengine.org/article/maintenance-release-godot-3-0-6" }, { "url": "https://godotengine.org/article/maintenance-release-godot-2-1-5" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.514568",
"DATE_REQUESTED" : "2018-07-31T16:33:51",
"ID" : "CVE-2018-1000224",
"REQUESTER" : "fabio.alessandrelli@gmail.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Godot Engine",
"version" : {
"version_data" : [
{
"version_value" : "All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6."
}
]
}
}
]
},
"vendor_name" : "Godot Engine"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization vulnerability in (De)Serialization functions (core/io/marshalls.cpp) that can result in DoS (packet of death), possible leak of uninitialized memory. This attack appear to be exploitable via A malformed packet is received over the network by a Godot application that uses built-in serialization (e.g. game server, or game client). Could be triggered by multiplayer opponent. This vulnerability appears to have been fixed in 2.1.5, 3.0.6, master branch after commit feaf03421dda0213382b51aff07bd5a96b29487b."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/godotengine/godot/issues/20558",
"refsource" : "CONFIRM",
"url" : "https://github.com/godotengine/godot/issues/20558"
},
{
"name" : "https://godotengine.org/article/maintenance-release-godot-2-1-5",
"refsource" : "CONFIRM",
"url" : "https://godotengine.org/article/maintenance-release-godot-2-1-5"
},
{
"name" : "https://godotengine.org/article/maintenance-release-godot-3-0-6",
"refsource" : "CONFIRM",
"url" : "https://godotengine.org/article/maintenance-release-godot-3-0-6"
}
]
}
}

71
2018/1000xxx/CVE-2018-1000225.json
View File

@ -1 +1,70 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.515834", "DATE_REQUESTED": "2018-08-02T16:09:44", "ID": "CVE-2018-1000225", "REQUESTER": "cvereports@movermeyer.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Cobbler", "version": { "version_data": [ { "version_value": "Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable" } ] } } ] }, "vendor_name": "Cobbler" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Cross Site Scripting (XSS) vulnerability in cobbler-web that can result in Privilege escalation to admin.. This attack appear to be exploitable via \"network connectivity\". Sending unauthenticated JavaScript payload to the Cobbler XMLRPC API (/cobbler-api)." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Cross Site Scripting (XSS)" } ] } ] }, "references": { "reference_data": [ { "url": "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/" }, { "url": "https://github.com/cobbler/cobbler/issues/1917" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.515834",
"DATE_REQUESTED" : "2018-08-02T16:09:44",
"ID" : "CVE-2018-1000225",
"REQUESTER" : "cvereports@movermeyer.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Cobbler",
"version" : {
"version_data" : [
{
"version_value" : "Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable"
}
]
}
}
]
},
"vendor_name" : "Cobbler"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Cross Site Scripting (XSS) vulnerability in cobbler-web that can result in Privilege escalation to admin.. This attack appear to be exploitable via \"network connectivity\". Sending unauthenticated JavaScript payload to the Cobbler XMLRPC API (/cobbler-api)."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Cross Site Scripting (XSS)"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/",
"refsource" : "MISC",
"url" : "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/"
},
{
"name" : "https://github.com/cobbler/cobbler/issues/1917",
"refsource" : "CONFIRM",
"url" : "https://github.com/cobbler/cobbler/issues/1917"
}
]
}
}

71
2018/1000xxx/CVE-2018-1000226.json
View File

@ -1 +1,70 @@
{ "CVE_data_meta": { "ASSIGNER": "kurt@seifried.org", "DATE_ASSIGNED": "2018-08-02T16:41:53.516803", "DATE_REQUESTED": "2018-08-02T16:12:25", "ID": "CVE-2018-1000226", "REQUESTER": "cvereports@movermeyer.com" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "Cobbler", "version": { "version_data": [ { "version_value": "Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable" } ] } } ] }, "vendor_name": "Cobbler" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Incorrect Access Control vulnerability in XMLRPC API (/cobbler-api) that can result in Privilege escalation, data manipulation or exfiltration, LDAP credential harvesting. This attack appear to be exploitable via \"network connectivity\". Taking advantage of improper validation of security tokens in API endpoints. Please note this is a different issue than CVE-2018-10931." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Incorrect Access Control" } ] } ] }, "references": { "reference_data": [ { "url": "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/" }, { "url": "https://github.com/cobbler/cobbler/issues/1916" } ] } }
{
"CVE_data_meta" : {
"ASSIGNER" : "kurt@seifried.org",
"DATE_ASSIGNED" : "2018-08-02T16:41:53.516803",
"DATE_REQUESTED" : "2018-08-02T16:12:25",
"ID" : "CVE-2018-1000226",
"REQUESTER" : "cvereports@movermeyer.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Cobbler",
"version" : {
"version_data" : [
{
"version_value" : "Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable"
}
]
}
}
]
},
"vendor_name" : "Cobbler"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Cobbler version Verified as present in Cobbler versions 2.6.11+, but code inspection suggests at least 2.0.0+ or possibly even older versions may be vulnerable contains a Incorrect Access Control vulnerability in XMLRPC API (/cobbler-api) that can result in Privilege escalation, data manipulation or exfiltration, LDAP credential harvesting. This attack appear to be exploitable via \"network connectivity\". Taking advantage of improper validation of security tokens in API endpoints. Please note this is a different issue than CVE-2018-10931."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Incorrect Access Control"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/",
"refsource" : "MISC",
"url" : "https://movermeyer.com/2018-08-02-privilege-escalation-exploits-in-cobblers-api/"
},
{
"name" : "https://github.com/cobbler/cobbler/issues/1916",
"refsource" : "CONFIRM",
"url" : "https://github.com/cobbler/cobbler/issues/1916"
}
]
}
}

53
2018/14xxx/CVE-2018-14077.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-14077",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,33 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to backup the device configuration via a direct request to /Maintenance/configfile.cfg."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d",
"refsource" : "MISC",
"url" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d"
},
{
"name" : "https://vulncode.com/advisory/CVE-2018-14077",
"refsource" : "MISC",
"url" : "https://vulncode.com/advisory/CVE-2018-14077"
}
]
}

53
2018/14xxx/CVE-2018-14078.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-14078",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,33 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to reset the admin password via the /ConfigWizard/ChangePwd.esp?2admin URL (Attackers can login using the \"admin\" username with password \"admin\" after a successful attack)."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d",
"refsource" : "MISC",
"url" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d"
},
{
"name" : "https://vulncode.com/advisory/CVE-2018-14078",
"refsource" : "MISC",
"url" : "https://vulncode.com/advisory/CVE-2018-14078"
}
]
}

53
2018/14xxx/CVE-2018-14079.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-14079",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,33 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "Wi2be SMART HP WMT R1.2.20_201400922 allows unauthorized remote attackers to obtain sensitive information via /Status/SystemStatusRpm.esp."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d",
"refsource" : "MISC",
"url" : "https://gist.github.com/herwonowr/22b652ea43264c5f4d7efd8cdad5871d"
},
{
"name" : "https://vulncode.com/advisory/CVE-2018-14079",
"refsource" : "MISC",
"url" : "https://vulncode.com/advisory/CVE-2018-14079"
}
]
}