"-Synchronized-Data."

This commit is contained in:
CVE Team 2020-08-13 18:01:27 +00:00
parent 21558f405f
commit 39067f9c63
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
2 changed files with 60 additions and 6 deletions

View File

@ -83,6 +83,11 @@
"refsource": "FULLDISC",
"name": "20200717 APPLE-SA-2020-07-15-1 iOS 13.6 and iPadOS 13.6",
"url": "http://seclists.org/fulldisclosure/2020/Jul/23"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20200813 Blind in/on-path attacks against VPN-tunneled connections (CVE-2019-14899 follow-up)",
"url": "http://www.openwall.com/lists/oss-security/2020/08/13/2"
}
]
},

View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-14979",
"ASSIGNER": "cve@mitre.org",
"STATE": "REJECT"
"ID": "CVE-2020-14979",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none."
"value": "The WinRing0.sys and WinRing0x64.sys drivers 1.2.0 in EVGA Precision X1 through 1.0.6 allow local users, including low integrity processes, to read and write to arbitrary memory locations. This allows any user to gain NT AUTHORITY\\SYSTEM privileges by mapping \\Device\\PhysicalMemory into the calling process."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.evga.com/precisionx1/",
"refsource": "MISC",
"name": "https://www.evga.com/precisionx1/"
},
{
"refsource": "MISC",
"name": "https://posts.specterops.io/cve-2020-14979-local-privilege-escalation-in-evga-precisionx1-cf63c6b95896",
"url": "https://posts.specterops.io/cve-2020-14979-local-privilege-escalation-in-evga-precisionx1-cf63c6b95896"
}
]
}