"-Synchronized-Data."

2025-06-19 17:32:41 +00:00 · 2019-11-15 22:01:43 +00:00 · 2019-11-15 22:01:43 +00:00 · 383ec254b5
commit 383ec254b5
parent 7c10444792
4 changed files with 16 additions and 1 deletions
--- a/2019/11xxx/CVE-2019-11168.json
+++ b/2019/11xxx/CVE-2019-11168.json
@ -48,6 +48,11 @@
                "refsource": "MISC",
                "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00313.html",
                "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00313.html"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://support.f5.com/csp/article/K64346530?utm_source=f5support&amp;utm_medium=RSS",
+                "url": "https://support.f5.com/csp/article/K64346530?utm_source=f5support&amp;utm_medium=RSS"
            }
        ]
    },
--- a/2019/13xxx/CVE-2019-13120.json
+++ b/2019/13xxx/CVE-2019-13120.json
@ -34,7 +34,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Amazon FreeRTOS up to and including v1.4.8 for AWS lacks length checking in prvProcessReceivedPublish, resulting in leakage of arbitrary memory contents on a device to an attacker. An attacker sends a malformed MQTT publish packet, and waits for an MQTTACK packet containing the leaked data."
+                "value": "Amazon FreeRTOS up to and including v1.4.8 lacks length checking in prvProcessReceivedPublish, resulting in untargetable leakage of arbitrary memory contents on a device to an attacker. If an attacker has the authorization to send a malformed MQTT publish packet to an Amazon IoT Thing, which interacts with an associated vulnerable MQTT message in the application, specific circumstances could trigger this vulnerability."
            }
        ]
    },
--- a/2019/18xxx/CVE-2019-18895.json
+++ b/2019/18xxx/CVE-2019-18895.json
@ -66,6 +66,11 @@
                "refsource": "MISC",
                "name": "https://packetstormsecurity.com/files/155319/ScanGuard-Antivirus-Insecure-Permissions.html",
                "url": "https://packetstormsecurity.com/files/155319/ScanGuard-Antivirus-Insecure-Permissions.html"
+            },
+            {
+                "refsource": "FULLDISC",
+                "name": "20191115 ScanGuard Antivirus (latest version) / Insecure Permissions",
+                "url": "http://seclists.org/fulldisclosure/2019/Nov/5"
            }
        ]
    }
--- a/2019/18xxx/CVE-2019-18957.json
+++ b/2019/18xxx/CVE-2019-18957.json
@ -61,6 +61,11 @@
                "refsource": "MISC",
                "name": "https://seclists.org/bugtraq/2019/Nov/23",
                "url": "https://seclists.org/bugtraq/2019/Nov/23"
+            },
+            {
+                "refsource": "FULLDISC",
+                "name": "20191115 Vulnerability Disclosure and CVE assign",
+                "url": "http://seclists.org/fulldisclosure/2019/Nov/4"
            }
        ]
    }