admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Auto-merge PR#4639

Browse Source 
Auto-merge PR#4639
This commit is contained in:
CVE Team 2020-08-28 10:35:25 -04:00 committed by GitHub
commit 40b6b89af8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
4 changed files with 354 additions and 60 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

102
2019/4xxx/CVE-2019-4533.json
View File

@ -1,18 +1,90 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4533",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"CVE_data_meta" : {
"DATE_PUBLIC" : "2020-08-27T00:00:00",
"ID" : "CVE-2019-4533",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com"
},
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Resilient SOAR V38.0 users may experience a denial of service of the SOAR Platform due to a insufficient input validation. IBM X-Force ID: 165589."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Denial of Service"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://www.ibm.com/support/pages/node/6323645",
"title" : "IBM Security Bulletin 6323645 (Resilient SOAR)",
"refsource" : "CONFIRM",
"url" : "https://www.ibm.com/support/pages/node/6323645"
},
{
"title" : "X-Force Vulnerability Report",
"name" : "ibm-resilient-cve20194533-dos (165589)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/165589"
}
]
},
"impact" : {
"cvssv3" : {
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
},
"BM" : {
"I" : "N",
"PR" : "L",
"AV" : "N",
"C" : "N",
"S" : "U",
"AC" : "L",
"A" : "L",
"SCORE" : "4.300",
"UI" : "N"
}
}
},
"data_type" : "CVE",
"data_format" : "MITRE",
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "38"
}
]
},
"product_name" : "Resilient SOAR"
}
]
},
"vendor_name" : "IBM"
}
]
}
}
]
}
}
}

102
2019/4xxx/CVE-2019-4579.json
View File

@ -1,18 +1,90 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4579",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Gain Access",
"lang" : "eng"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://www.ibm.com/support/pages/node/6323783",
"title" : "IBM Security Bulletin 6323783 (Resilient SOAR)",
"refsource" : "CONFIRM",
"url" : "https://www.ibm.com/support/pages/node/6323783"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/167236",
"refsource" : "XF",
"name" : "ibm-resilient-cve20194579-input-validation (167236)",
"title" : "X-Force Vulnerability Report"
}
]
},
"CVE_data_meta" : {
"DATE_PUBLIC" : "2020-08-27T00:00:00",
"ID" : "CVE-2019-4579",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com"
},
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"value" : "IBM Resilient SOAR 38 uses incomplete blacklisting for input validation which allows attackers to bypass application controls resulting in direct impact to the system and data integrity. IBM X-Force ID: 167236.",
"lang" : "eng"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"product" : {
"product_data" : [
{
"product_name" : "Resilient SOAR",
"version" : {
"version_data" : [
{
"version_value" : "38"
}
]
}
}
]
},
"vendor_name" : "IBM"
}
]
}
}
]
}
},
"impact" : {
"cvssv3" : {
"BM" : {
"I" : "L",
"PR" : "L",
"AV" : "N",
"S" : "U",
"C" : "N",
"AC" : "L",
"A" : "N",
"SCORE" : "4.300",
"UI" : "N"
},
"TM" : {
"RL" : "O",
"E" : "U",
"RC" : "C"
}
}
},
"data_type" : "CVE",
"data_format" : "MITRE"
}

105
2020/4xxx/CVE-2020-4559.json
View File

@ -1,18 +1,93 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-4559",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2020-4559",
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2020-08-27T00:00:00"
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Spectrum Protect 7.1 and 8.1 could allow an attacker to cause a denial of service due ti improper validation of user-supplied input. IBM X-Force ID: 183613."
}
]
},
"references" : {
"reference_data" : [
{
"title" : "IBM Security Bulletin 6323757 (Spectrum Protect)",
"name" : "https://www.ibm.com/support/pages/node/6323757",
"refsource" : "CONFIRM",
"url" : "https://www.ibm.com/support/pages/node/6323757"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/183613",
"refsource" : "XF",
"name" : "ibm-spectrum-cve20204559-dos (183613)",
"title" : "X-Force Vulnerability Report"
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Denial of Service",
"lang" : "eng"
}
]
}
]
},
"impact" : {
"cvssv3" : {
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
},
"BM" : {
"SCORE" : "5.900",
"I" : "N",
"PR" : "N",
"AV" : "N",
"C" : "N",
"S" : "U",
"AC" : "H",
"A" : "H",
"UI" : "N"
}
}
},
"data_type" : "CVE",
"data_format" : "MITRE",
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "7.1"
},
{
"version_value" : "8.1"
}
]
},
"product_name" : "Spectrum Protect"
}
]
},
"vendor_name" : "IBM"
}
]
}
}
]
}
}
}

105
2020/4xxx/CVE-2020-4591.json
View File

@ -1,18 +1,93 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-4591",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://www.ibm.com/support/pages/node/6323765",
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 6323765 (Spectrum Protect Server)",
"name" : "https://www.ibm.com/support/pages/node/6323765"
},
{
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/184746",
"title" : "X-Force Vulnerability Report",
"name" : "ibm-spectrum-cve20204591-info-disc (184746)"
}
]
},
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"STATE" : "PUBLIC",
"ID" : "CVE-2020-4591",
"DATE_PUBLIC" : "2020-08-27T00:00:00"
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Spectrum Protect Server 8.1.0.000 through 8.1.10.000 could disclose sensitive information in nondefault settings due to occasionally not encrypting the second chunk of an object in an encrypted container pool. IBM X-Force ID: 184746."
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "8.1.0.000"
},
{
"version_value" : "8.1.10.000"
}
]
},
"product_name" : "Spectrum Protect Server"
}
]
}
}
]
}
}
]
}
},
"data_type" : "CVE",
"impact" : {
"cvssv3" : {
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
},
"BM" : {
"A" : "N",
"AC" : "H",
"C" : "L",
"S" : "U",
"AV" : "L",
"I" : "N",
"PR" : "N",
"SCORE" : "2.900",
"UI" : "N"
}
}
},
"data_format" : "MITRE"
}