diff --git a/2018/16xxx/CVE-2018-16060.json b/2018/16xxx/CVE-2018-16060.json index 56fcde8d8ab..62b7ebf0284 100644 --- a/2018/16xxx/CVE-2018-16060.json +++ b/2018/16xxx/CVE-2018-16060.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-16060", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Mitsubishi Electric SmartRTU devices allow remote attackers to obtain sensitive information (directory listing and source code) via a direct request to the /web URI." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://drive.google.com/open?id=1QMHwTnBbIqrTkR0NEpnTKssYdi8vRsHH", + "refsource": "MISC", + "name": "https://drive.google.com/open?id=1QMHwTnBbIqrTkR0NEpnTKssYdi8vRsHH" } ] } diff --git a/2018/16xxx/CVE-2018-16061.json b/2018/16xxx/CVE-2018-16061.json index 98ffdd5a269..d3408367e1c 100644 --- a/2018/16xxx/CVE-2018-16061.json +++ b/2018/16xxx/CVE-2018-16061.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-16061", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,28 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Mitsubishi Electric SmartRTU devices allow XSS via the username parameter or PATH_INFO to login.php." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://drive.google.com/open?id=1DEZQqfpIgcflY2cF6O0y7vtlWYe8Wjjv", + "refsource": "MISC", + "name": "https://drive.google.com/open?id=1DEZQqfpIgcflY2cF6O0y7vtlWYe8Wjjv" } ] } diff --git a/2021/41xxx/CVE-2021-41072.json b/2021/41xxx/CVE-2021-41072.json index f6cb2fb889b..5861a523262 100644 --- a/2021/41xxx/CVE-2021-41072.json +++ b/2021/41xxx/CVE-2021-41072.json @@ -61,6 +61,11 @@ "url": "https://github.com/plougher/squashfs-tools/issues/72#issuecomment-913833405", "refsource": "MISC", "name": "https://github.com/plougher/squashfs-tools/issues/72#issuecomment-913833405" + }, + { + "refsource": "DEBIAN", + "name": "DSA-4987", + "url": "https://www.debian.org/security/2021/dsa-4987" } ] } diff --git a/2021/41xxx/CVE-2021-41824.json b/2021/41xxx/CVE-2021-41824.json index d5e1bafd54f..6977d6f5444 100644 --- a/2021/41xxx/CVE-2021-41824.json +++ b/2021/41xxx/CVE-2021-41824.json @@ -61,6 +61,11 @@ "url": "https://twitter.com/craftcmsupdates/status/1442928690145366018", "refsource": "MISC", "name": "https://twitter.com/craftcmsupdates/status/1442928690145366018" + }, + { + "refsource": "MISC", + "name": "https://github.com/craftcms/cms/security/advisories/GHSA-h7vq-5qgw-jwwq", + "url": "https://github.com/craftcms/cms/security/advisories/GHSA-h7vq-5qgw-jwwq" } ] }