admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-08 05:58:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-09-26 11:07:24 -04:00
parent c2e0598f13
commit 480c32d7bd
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
6 changed files with 316 additions and 328 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

122
2018/1xxx/CVE-2018-1545.json
View File

@ -1,4 +1,39 @@
{ {
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-24T00:00:00",
"ID" : "CVE-2018-1545",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Spectrum Protect",
"version" : {
"version_data" : [
{
"version_value" : "7.1"
},
{
"version_value" : "8.1"
}
]
}
}
]
},
"vendor_name" : "IBM"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : { "description" : {
"description_data" : [ "description_data" : [
{ {
@ -7,6 +42,26 @@
} }
] ]
}, },
"impact" : {
"cvssv3" : {
"BM" : {
"A" : "N",
"AC" : "H",
"AV" : "N",
"C" : "H",
"I" : "N",
"PR" : "N",
"S" : "U",
"SCORE" : "5.900",
"UI" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"problemtype" : { "problemtype" : {
"problemtype_data" : [ "problemtype_data" : [
{ {
@ -19,75 +74,18 @@
} }
] ]
}, },
"impact" : {
"cvssv3" : {
"BM" : {
"AV" : "N",
"UI" : "N",
"C" : "H",
"A" : "N",
"AC" : "H",
"PR" : "N",
"S" : "U",
"SCORE" : "5.900",
"I" : "N"
},
"TM" : {
"RC" : "C",
"RL" : "O",
"E" : "U"
}
}
},
"data_type" : "CVE",
"CVE_data_meta" : {
"ID" : "CVE-2018-1545",
"STATE" : "PUBLIC",
"DATE_PUBLIC" : "2018-09-24T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "7.1"
},
{
"version_value" : "8.1"
}
]
},
"product_name" : "Spectrum Protect"
}
]
},
"vendor_name" : "IBM"
}
]
}
},
"data_format" : "MITRE",
"references" : { "references" : {
"reference_data" : [ "reference_data" : [
{ {
"title" : "IBM Security Bulletin 718013 (Spectrum Protect)", "name" : "http://www.ibm.com/support/docview.wss?uid=ibm10718013",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10718013",
"refsource" : "CONFIRM", "refsource" : "CONFIRM",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10718013" "url" : "http://www.ibm.com/support/docview.wss?uid=ibm10718013"
}, },
{ {
"title" : "X-Force Vulnerability Report", "name" : "ibm-tsm-cve20181545-info-disc(142649)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/142649",
"refsource" : "XF", "refsource" : "XF",
"name" : "ibm-tsm-cve20181545-info-disc (142649)" "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/142649"
} }
] ]
}, }
"data_version" : "4.0"
} }

82
2018/1xxx/CVE-2018-1550.json
View File

@ -1,33 +1,14 @@
{ {
"data_version" : "4.0",
"references" : {
"reference_data" : [
{
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10719401",
"title" : "IBM Security Bulletin 719401 (Spectrum Protect)",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10719401",
"refsource" : "CONFIRM"
},
{
"name" : "ibm-tivoli-cve20181550-dos (142696)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/142696",
"title" : "X-Force Vulnerability Report"
}
]
},
"data_format" : "MITRE",
"CVE_data_meta" : { "CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com", "ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-24T00:00:00", "DATE_PUBLIC" : "2018-09-24T00:00:00",
"STATE" : "PUBLIC", "ID" : "CVE-2018-1550",
"ID" : "CVE-2018-1550" "STATE" : "PUBLIC"
}, },
"affects" : { "affects" : {
"vendor" : { "vendor" : {
"vendor_data" : [ "vendor_data" : [
{ {
"vendor_name" : "IBM",
"product" : { "product" : {
"product_data" : [ "product_data" : [
{ {
@ -44,32 +25,15 @@
} }
} }
] ]
} },
"vendor_name" : "IBM"
} }
] ]
} }
}, },
"data_format" : "MITRE",
"data_type" : "CVE", "data_type" : "CVE",
"impact" : { "data_version" : "4.0",
"cvssv3" : {
"BM" : {
"UI" : "N",
"C" : "N",
"AV" : "L",
"A" : "H",
"AC" : "L",
"PR" : "N",
"S" : "U",
"I" : "N",
"SCORE" : "6.200"
},
"TM" : {
"RC" : "C",
"RL" : "O",
"E" : "U"
}
}
},
"description" : { "description" : {
"description_data" : [ "description_data" : [
{ {
@ -78,6 +42,26 @@
} }
] ]
}, },
"impact" : {
"cvssv3" : {
"BM" : {
"A" : "H",
"AC" : "L",
"AV" : "L",
"C" : "N",
"I" : "N",
"PR" : "N",
"S" : "U",
"SCORE" : "6.200",
"UI" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"problemtype" : { "problemtype" : {
"problemtype_data" : [ "problemtype_data" : [
{ {
@ -89,5 +73,19 @@
] ]
} }
] ]
},
"references" : {
"reference_data" : [
{
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10719401",
"refsource" : "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10719401"
},
{
"name" : "ibm-tivoli-cve20181550-dos(142696)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/142696"
}
]
} }
} }

92
2018/1xxx/CVE-2018-1610.json
View File

@ -1,22 +1,10 @@
{ {
"data_version" : "4.0", "CVE_data_meta" : {
"references" : { "ASSIGNER" : "psirt@us.ibm.com",
"reference_data" : [ "DATE_PUBLIC" : "2018-09-21T00:00:00",
{ "ID" : "CVE-2018-1610",
"refsource" : "CONFIRM", "STATE" : "PUBLIC"
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10719841",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10719841",
"title" : "IBM Security Bulletin 719841 (Rational DOORS Next Generation)"
}, },
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/143931",
"title" : "X-Force Vulnerability Report",
"name" : "ibm-dng-cve20181610-xss (143931)",
"refsource" : "XF"
}
]
},
"data_type" : "CVE",
"affects" : { "affects" : {
"vendor" : { "vendor" : {
"vendor_data" : [ "vendor_data" : [
@ -67,51 +55,61 @@
] ]
} }
}, },
"CVE_data_meta" : {
"ID" : "CVE-2018-1610",
"DATE_PUBLIC" : "2018-09-21T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com",
"STATE" : "PUBLIC"
},
"data_format" : "MITRE", "data_format" : "MITRE",
"problemtype" : { "data_type" : "CVE",
"problemtype_data" : [ "data_version" : "4.0",
{
"description" : [
{
"value" : "Cross-Site Scripting",
"lang" : "eng"
}
]
}
]
},
"description" : { "description" : {
"description_data" : [ "description_data" : [
{ {
"value" : "IBM Rational DOORS Next Generation 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 143931.", "lang" : "eng",
"lang" : "eng" "value" : "IBM Rational DOORS Next Generation 5.0 through 5.0.2 and 6.0 through 6.0.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 143931."
} }
] ]
}, },
"impact" : { "impact" : {
"cvssv3" : { "cvssv3" : {
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "H"
},
"BM" : { "BM" : {
"UI" : "R", "A" : "N",
"AC" : "L",
"AV" : "N", "AV" : "N",
"C" : "L", "C" : "L",
"I" : "L", "I" : "L",
"SCORE" : "5.400",
"AC" : "L",
"S" : "C",
"PR" : "L", "PR" : "L",
"A" : "N" "S" : "C",
"SCORE" : "5.400",
"UI" : "R"
},
"TM" : {
"E" : "H",
"RC" : "C",
"RL" : "O"
} }
} }
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Cross-Site Scripting"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10719841",
"refsource" : "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10719841"
},
{
"name" : "ibm-dng-cve20181610-xss(143931)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/143931"
}
]
} }
} }

108
2018/1xxx/CVE-2018-1683.json
View File

@ -1,16 +1,56 @@
{ {
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-21T00:00:00",
"ID" : "CVE-2018-1683",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "WebSphere Application Server",
"version" : {
"version_data" : [
{
"version_value" : ""
}
]
}
}
]
},
"vendor_name" : "IBM"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, caused by the failure to encrypt ORB communication. IBM X-Force ID: 145455."
}
]
},
"impact" : { "impact" : {
"cvssv3" : { "cvssv3" : {
"BM" : { "BM" : {
"S" : "U",
"PR" : "N",
"AC" : "H",
"A" : "N", "A" : "N",
"SCORE" : "5.900", "AC" : "H",
"I" : "N",
"AV" : "N", "AV" : "N",
"UI" : "N", "C" : "H",
"C" : "H" "I" : "N",
"PR" : "N",
"S" : "U",
"SCORE" : "5.900",
"UI" : "N"
}, },
"TM" : { "TM" : {
"E" : "U", "E" : "U",
@ -24,67 +64,25 @@
{ {
"description" : [ "description" : [
{ {
"value" : "Obtain Information", "lang" : "eng",
"lang" : "eng" "value" : "Obtain Information"
} }
] ]
} }
] ]
}, },
"description" : {
"description_data" : [
{
"value" : "IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information, caused by the failure to encrypt ORB communication. IBM X-Force ID: 145455.",
"lang" : "eng"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : ""
}
]
},
"product_name" : "WebSphere Application Server"
}
]
}
}
]
}
},
"CVE_data_meta" : {
"ID" : "CVE-2018-1683",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-21T00:00:00",
"STATE" : "PUBLIC"
},
"data_format" : "MITRE",
"data_type" : "CVE",
"references" : { "references" : {
"reference_data" : [ "reference_data" : [
{ {
"refsource" : "CONFIRM",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10716533", "name" : "https://www.ibm.com/support/docview.wss?uid=ibm10716533",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10716533", "refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 716533 (WebSphere Application Server)" "url" : "https://www.ibm.com/support/docview.wss?uid=ibm10716533"
}, },
{ {
"refsource" : "XF",
"name" : "ibm-websphere-cve20181683-info-disc(145455)", "name" : "ibm-websphere-cve20181683-info-disc(145455)",
"title" : "X-Force Vulnerability Report", "refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/145455" "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/145455"
} }
] ]
}, }
"data_version" : "4.0"
} }

120
2018/1xxx/CVE-2018-1768.json
View File

@ -1,66 +1,9 @@
{ {
"references" : {
"reference_data" : [
{
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10729219",
"refsource" : "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10729219",
"title" : "IBM Security Bulletin 729219 (Spectrum Protect Plus)"
},
{
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/148622",
"name" : "ibm-spectrum-cve20181768-info-disc (148622)",
"refsource" : "XF"
}
]
},
"data_version" : "4.0",
"impact" : {
"cvssv3" : {
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
},
"BM" : {
"I" : "N",
"SCORE" : "5.600",
"A" : "N",
"S" : "C",
"PR" : "L",
"AC" : "H",
"C" : "H",
"UI" : "N",
"AV" : "L"
}
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Spectrum Protect Plus 10.1.0 and 10.1.1 could disclose sensitive information when an authorized user executes a test operation, the user id an password may be displayed in plain text within an instrumentation log file. IBM X-Force ID: 148622."
}
]
},
"CVE_data_meta" : { "CVE_data_meta" : {
"ID" : "CVE-2018-1768",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com", "ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-24T00:00:00" "DATE_PUBLIC" : "2018-09-24T00:00:00",
"ID" : "CVE-2018-1768",
"STATE" : "PUBLIC"
}, },
"affects" : { "affects" : {
"vendor" : { "vendor" : {
@ -89,5 +32,60 @@
} }
}, },
"data_format" : "MITRE", "data_format" : "MITRE",
"data_type" : "CVE" "data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Spectrum Protect Plus 10.1.0 and 10.1.1 could disclose sensitive information when an authorized user executes a test operation, the user id an password may be displayed in plain text within an instrumentation log file. IBM X-Force ID: 148622."
}
]
},
"impact" : {
"cvssv3" : {
"BM" : {
"A" : "N",
"AC" : "H",
"AV" : "L",
"C" : "H",
"I" : "N",
"PR" : "L",
"S" : "C",
"SCORE" : "5.600",
"UI" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10729219",
"refsource" : "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10729219"
},
{
"name" : "ibm-spectrum-cve20181768-info-disc(148622)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/148622"
}
]
}
} }

116
2018/1xxx/CVE-2018-1785.json
View File

@ -1,59 +1,18 @@
{ {
"description" : {
"description_data" : [
{
"value" : "IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive information. IBM X-Force ID: 148870.",
"lang" : "eng"
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"impact" : {
"cvssv3" : {
"BM" : {
"SCORE" : "3.700",
"I" : "N",
"A" : "N",
"S" : "U",
"PR" : "N",
"AC" : "H",
"UI" : "N",
"C" : "L",
"AV" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"data_type" : "CVE",
"CVE_data_meta" : { "CVE_data_meta" : {
"ID" : "CVE-2018-1785",
"ASSIGNER" : "psirt@us.ibm.com", "ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-09-24T00:00:00", "DATE_PUBLIC" : "2018-09-24T00:00:00",
"ID" : "CVE-2018-1785",
"STATE" : "PUBLIC" "STATE" : "PUBLIC"
}, },
"affects" : { "affects" : {
"vendor" : { "vendor" : {
"vendor_data" : [ "vendor_data" : [
{ {
"vendor_name" : "IBM",
"product" : { "product" : {
"product_data" : [ "product_data" : [
{ {
"product_name" : "Spectrum Protect",
"version" : { "version" : {
"version_data" : [ "version_data" : [
{ {
@ -63,31 +22,70 @@
"version_value" : "8.1" "version_value" : "8.1"
} }
] ]
}, }
"product_name" : "Spectrum Protect"
} }
] ]
} },
"vendor_name" : "IBM"
} }
] ]
} }
}, },
"data_format" : "MITRE", "data_format" : "MITRE",
"references" : { "data_type" : "CVE",
"reference_data" : [ "data_version" : "4.0",
"description" : {
"description_data" : [
{ {
"refsource" : "CONFIRM", "lang" : "eng",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10729873", "value" : "IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive information. IBM X-Force ID: 148870."
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10729873",
"title" : "IBM Security Bulletin 729873 (Spectrum Protect)"
},
{
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/148870",
"refsource" : "XF",
"name" : "ibm-tivoli-cve20181785-info-disc (148870)"
} }
] ]
}, },
"data_version" : "4.0" "impact" : {
"cvssv3" : {
"BM" : {
"A" : "N",
"AC" : "H",
"AV" : "N",
"C" : "L",
"I" : "N",
"PR" : "N",
"S" : "U",
"SCORE" : "3.700",
"UI" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10729873",
"refsource" : "CONFIRM",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10729873"
},
{
"name" : "ibm-tivoli-cve20181785-info-disc(148870)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/148870"
}
]
}
} }