From 47a00c0745f8236863b8ae7e0c553b0a428b724e Mon Sep 17 00:00:00 2001 From: unknown Date: Mon, 27 Jul 2020 12:14:29 +0800 Subject: [PATCH] Update TWCERT/CC CVE-2020-3933 CVE-2020-3934 CVE-2020-3935 --- 2020/3xxx/CVE-2020-3933.json | 23 ++++++++++------------- 2020/3xxx/CVE-2020-3934.json | 23 ++++++++++------------- 2020/3xxx/CVE-2020-3935.json | 23 ++++++++++------------- 3 files changed, 30 insertions(+), 39 deletions(-) diff --git a/2020/3xxx/CVE-2020-3933.json b/2020/3xxx/CVE-2020-3933.json index 87f8e4e7732..2fd83627114 100644 --- a/2020/3xxx/CVE-2020-3933.json +++ b/2020/3xxx/CVE-2020-3933.json @@ -1,11 +1,11 @@ { "CVE_data_meta": { "AKA": "TWCERT/CC", - "ASSIGNER": "cve@cert.org.tw", + "ASSIGNER": "twcert@cert.org.tw", "DATE_PUBLIC": "2020-02-11T03:59:00.000Z", "ID": "CVE-2020-3933", "STATE": "PUBLIC", - "TITLE": " Secom Co. Dr.ID - User Account Enumeration" + "TITLE": "TAIWAN SECOM CO., LTD. - User Account Enumeration" }, "affects": { "vendor": { @@ -39,7 +39,7 @@ } ] }, - "vendor_name": "Secom Co." + "vendor_name": "TAIWAN SECOM CO., LTD." } ] } @@ -51,7 +51,7 @@ "description_data": [ { "lang": "eng", - "value": "Secom Co. Dr.ID, a Door Access Control and Personnel Attendance Management system, allows attackers to enumerate and exam user account in the system." + "value": "TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, allows attackers to enumerate and exam user account in the system." } ] }, @@ -89,19 +89,16 @@ "references": { "reference_data": [ { - "refsource": "MISC", - "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910017", - "name": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910017" + "refsource": "CONFIRM", + "url": "https://www.twcert.org.tw/en/cp-139-3317-d4edc-2.html" }, { - "refsource": "MISC", - "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac", - "name": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" + "refsource": "CONFIRM", + "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" }, { - "refsource": "MISC", - "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b", - "name": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" + "refsource": "CONFIRM", + "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" } ] }, diff --git a/2020/3xxx/CVE-2020-3934.json b/2020/3xxx/CVE-2020-3934.json index 930894a392b..ee1b66bbe23 100644 --- a/2020/3xxx/CVE-2020-3934.json +++ b/2020/3xxx/CVE-2020-3934.json @@ -1,11 +1,11 @@ { "CVE_data_meta": { "AKA": "TWCERT/CC", - "ASSIGNER": "cve@cert.org.tw", + "ASSIGNER": "twcert@cert.org.tw", "DATE_PUBLIC": "2020-02-11T03:59:00.000Z", "ID": "CVE-2020-3934", "STATE": "PUBLIC", - "TITLE": "Secom Co. Dr.ID - Pre-auth SQL Injection" + "TITLE": "TAIWAN SECOM CO., LTD. - Pre-auth SQL Injection" }, "affects": { "vendor": { @@ -39,7 +39,7 @@ } ] }, - "vendor_name": "Secom Co." + "vendor_name": "TAIWAN SECOM CO., LTD." } ] } @@ -51,7 +51,7 @@ "description_data": [ { "lang": "eng", - "value": "Secom Co. Dr.ID, a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command." + "value": "TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command." } ] }, @@ -89,19 +89,16 @@ "references": { "reference_data": [ { - "refsource": "MISC", - "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac", - "name": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" + "refsource": "CONFIRM", + "url": "https://www.twcert.org.tw/en/cp-139-3318-89f76-2.html" }, { - "refsource": "MISC", - "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b", - "name": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" + "refsource": "CONFIRM", + "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" }, { - "refsource": "MISC", - "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910016", - "name": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910016" + "refsource": "CONFIRM", + "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" } ] }, diff --git a/2020/3xxx/CVE-2020-3935.json b/2020/3xxx/CVE-2020-3935.json index accbc06bced..2afa3c99ee3 100644 --- a/2020/3xxx/CVE-2020-3935.json +++ b/2020/3xxx/CVE-2020-3935.json @@ -1,11 +1,11 @@ { "CVE_data_meta": { "AKA": "TWCERT/CC", - "ASSIGNER": "cve@cert.org.tw", + "ASSIGNER": "twcert@cert.org.tw", "DATE_PUBLIC": "2020-02-11T03:59:00.000Z", "ID": "CVE-2020-3935", "STATE": "PUBLIC", - "TITLE": "Secom Co. Dr.ID \u2013 Sensitivity Information Exposure" + "TITLE": "TAIWAN SECOM CO., LTD. – Sensitivity Information Exposure" }, "affects": { "vendor": { @@ -39,7 +39,7 @@ } ] }, - "vendor_name": "Secom Co." + "vendor_name": "TAIWAN SECOM CO., LTD." } ] } @@ -51,7 +51,7 @@ "description_data": [ { "lang": "eng", - "value": "Secom Co. Dr.ID, a Door Access Control and Personnel Attendance Management system, stores users\u2019 information by cleartext in the cookie, which divulges password to attackers." + "value": "TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, stores users’ information by cleartext in the cookie, which divulges password to attackers." } ] }, @@ -89,19 +89,16 @@ "references": { "reference_data": [ { - "refsource": "MISC", - "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac", - "name": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" + "refsource": "CONFIRM", + "url": "https://www.twcert.org.tw/en/cp-139-3319-d7b65-2.html" }, { - "refsource": "MISC", - "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b", - "name": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" + "refsource": "CONFIRM", + "url": "https://www.chtsecurity.com/news/1bb85fcd-9048-4587-b4d3-b18335572bac" }, { - "refsource": "MISC", - "url": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910018", - "name": "https://tvn.twcert.org.tw/taiwanvn/TVN-201910018" + "refsource": "CONFIRM", + "url": "https://gist.github.com/chtsecurity/4db471b34c3959e5ab9ec31570e4760b" } ] },