admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-05-17 12:19:17 -04:00
parent 3acde32611
commit 47354139e5
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
2 changed files with 164 additions and 86 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2015/7xxx/CVE-2015-7704.json
View File

@ -102,6 +102,11 @@
"refsource" : "CONFIRM",
"url" : "https://support.citrix.com/article/CTX220112"
},
{
"name" : "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html",
"refsource" : "CONFIRM",
"url" : "http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html"
},
{
"name" : "DSA-3388",
"refsource" : "DEBIAN",

245
2018/1xxx/CVE-2018-1111.json
View File

@ -1,89 +1,162 @@
{
"impact": {
"cvss": [
[
{
"vectorString": "7.5/CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
"CVE_data_meta" : {
"ASSIGNER" : "lpardo@redhat.com",
"ID" : "CVE-2018-1111",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "dhcp",
"version" : {
"version_data" : [
{
"version_value" : "Red Hat Enterprise Linux 6"
},
{
"version_value" : "Red Hat Enterprise Linux 7"
}
]
}
}
]
},
"vendor_name" : "Red Hat"
},
{
"product" : {
"product_data" : [
{
"product_name" : "dhcp",
"version" : {
"version_data" : [
{
"version_value" : "Fedora 28"
}
]
}
}
]
},
"vendor_name" : "Fedora"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol."
}
]
},
"impact" : {
"cvss" : [
[
{
"vectorString" : "7.5/CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version" : "3.0"
}
]
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "CWE-77"
}
]
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network able to spoof DHCP responses, could use this flaw to execute arbitrary commands with root privileges on systems using NetworkManager and configured to obtain network configuration using the DHCP protocol."
}
]
},
"data_type": "CVE",
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value" : "Red Hat Enterprise Linux 6"
},
{
"version_value" : "Red Hat Enterprise Linux 7"
}
]
},
"product_name": "dhcp"
}
]
},
"vendor_name": "Red Hat"
},
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value" : "Fedora 28"
}
]
},
"product_name": "dhcp"
}
]
},
"vendor_name": "Fedora"
}
]
}
},
"data_format": "MITRE",
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-77"
}
]
}
]
},
"data_version": "4.0",
"references": {
"reference_data": [
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111"
}
]
},
"CVE_data_meta": {
"ID": "CVE-2018-1111",
"ASSIGNER": "lpardo@redhat.com"
}
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://access.redhat.com/security/vulnerabilities/3442151",
"refsource" : "CONFIRM",
"url" : "https://access.redhat.com/security/vulnerabilities/3442151"
},
{
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111",
"refsource" : "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1111"
},
{
"name" : "FEDORA-2018-23ca7a6798",
"refsource" : "FEDORA",
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QMTTB54QNTPD2SK6UL32EVQHMZP6BUUD/"
},
{
"name" : "FEDORA-2018-36058ed9f2",
"refsource" : "FEDORA",
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CDCLLCHYFFXW354HMB5QBXOQOY5BH2EJ/"
},
{
"name" : "FEDORA-2018-5392896132",
"refsource" : "FEDORA",
"url" : "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IDJA4QRR74TMXW34Q3DYYFPVBYRTJBI7/"
},
{
"name" : "RHSA-2018:1453",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1453"
},
{
"name" : "RHSA-2018:1454",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1454"
},
{
"name" : "RHSA-2018:1455",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1455"
},
{
"name" : "RHSA-2018:1456",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1456"
},
{
"name" : "RHSA-2018:1457",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1457"
},
{
"name" : "RHSA-2018:1458",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1458"
},
{
"name" : "RHSA-2018:1459",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1459"
},
{
"name" : "RHSA-2018:1460",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1460"
},
{
"name" : "RHSA-2018:1461",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1461"
},
{
"name" : "RHSA-2018:1524",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:1524"
}
]
}
}