diff --git a/2020/25xxx/CVE-2020-25461.json b/2020/25xxx/CVE-2020-25461.json index d071dc92a06..18ea37c11b3 100644 --- a/2020/25xxx/CVE-2020-25461.json +++ b/2020/25xxx/CVE-2020-25461.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-25461", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-25461", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Invalid Memory Access in the fxProxyGetter function in moddable/xs/sources/xsProxy.c in Moddable SDK before OS200908 causes a denial of service (SEGV)." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Moddable-OpenSource/moddable/issues/441", + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/issues/441" + }, + { + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908", + "url": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908" } ] } diff --git a/2020/25xxx/CVE-2020-25462.json b/2020/25xxx/CVE-2020-25462.json index 32db5017260..94d29faef87 100644 --- a/2020/25xxx/CVE-2020-25462.json +++ b/2020/25xxx/CVE-2020-25462.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-25462", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-25462", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Heap buffer overflow in the fxCheckArrowFunction function at moddable/xs/sources/xsSyntaxical.c:3562 in Moddable SDK before OS200903." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Moddable-OpenSource/moddable/issues/432", + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/issues/432" + }, + { + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200903", + "url": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200903" } ] } diff --git a/2020/25xxx/CVE-2020-25463.json b/2020/25xxx/CVE-2020-25463.json index c0bf81b2e84..e51e1fc6cb7 100644 --- a/2020/25xxx/CVE-2020-25463.json +++ b/2020/25xxx/CVE-2020-25463.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-25463", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-25463", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Invalid Memory Access in fxUTF8Decode at moddable/xs/sources/xsCommon.c:916 in Moddable SDK before OS200908 causes a denial of service (SEGV)." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Moddable-OpenSource/moddable/issues/440", + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/issues/440" + }, + { + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908", + "url": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908" } ] } diff --git a/2020/25xxx/CVE-2020-25464.json b/2020/25xxx/CVE-2020-25464.json index eab7775fbf7..2d87200f5b0 100644 --- a/2020/25xxx/CVE-2020-25464.json +++ b/2020/25xxx/CVE-2020-25464.json @@ -1,17 +1,61 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-25464", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-25464", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Heap buffer overflow at moddable/xs/sources/xsDebug.c in Moddable SDK before before 20200903. The top stack frame is only partially initialized because the stack overflowed while creating the frame. This leads to a crash in the code sending the stack frame to the debugger." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Moddable-OpenSource/moddable/issues/431", + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/issues/431" } ] } diff --git a/2020/25xxx/CVE-2020-25465.json b/2020/25xxx/CVE-2020-25465.json index 5ceaffc2e9f..5e3e9b71a91 100644 --- a/2020/25xxx/CVE-2020-25465.json +++ b/2020/25xxx/CVE-2020-25465.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-25465", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-25465", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Null Pointer Dereference. in xObjectBindingFromExpression at moddable/xs/sources/xsSyntaxical.c:3419 in Moddable SDK before OS200908 causes a denial of service (SEGV)." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Moddable-OpenSource/moddable/issues/442", + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/issues/442" + }, + { + "refsource": "MISC", + "name": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908", + "url": "https://github.com/Moddable-OpenSource/moddable/releases/tag/OS200908" } ] } diff --git a/2020/28xxx/CVE-2020-28976.json b/2020/28xxx/CVE-2020-28976.json index 392df36190e..168d5ebff0e 100644 --- a/2020/28xxx/CVE-2020-28976.json +++ b/2020/28xxx/CVE-2020-28976.json @@ -71,6 +71,11 @@ "refsource": "MISC", "name": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0", "url": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html", + "url": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html" } ] } diff --git a/2020/28xxx/CVE-2020-28977.json b/2020/28xxx/CVE-2020-28977.json index d02753b39ca..48f8ae011fd 100644 --- a/2020/28xxx/CVE-2020-28977.json +++ b/2020/28xxx/CVE-2020-28977.json @@ -71,6 +71,11 @@ "refsource": "MISC", "name": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0", "url": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html", + "url": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html" } ] } diff --git a/2020/28xxx/CVE-2020-28978.json b/2020/28xxx/CVE-2020-28978.json index 8f5a08fddfd..c1887df535d 100644 --- a/2020/28xxx/CVE-2020-28978.json +++ b/2020/28xxx/CVE-2020-28978.json @@ -71,6 +71,11 @@ "refsource": "MISC", "name": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0", "url": "https://gist.github.com/p4nk4jv/87aebd999ce4b28063943480e95fd9e0" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html", + "url": "http://packetstormsecurity.com/files/160358/WordPress-Canto-1.3.0-Server-Side-Request-Forgery.html" } ] } diff --git a/2020/6xxx/CVE-2020-6519.json b/2020/6xxx/CVE-2020-6519.json index b4df4c8b4b9..f118688c001 100644 --- a/2020/6xxx/CVE-2020-6519.json +++ b/2020/6xxx/CVE-2020-6519.json @@ -89,6 +89,11 @@ "refsource": "SUSE", "name": "openSUSE-SU-2020:1048", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00041.html" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/160353/Chromium-83-CSP-Bypass.html", + "url": "http://packetstormsecurity.com/files/160353/Chromium-83-CSP-Bypass.html" } ] },