From 49e90f3394adc2850ecaa3c8ae0f003c7d1fb794 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 26 Feb 2020 18:01:10 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2019/17xxx/CVE-2019-17274.json | 62 ++++++++++++++++++++++++++++++++++ 2019/17xxx/CVE-2019-17275.json | 62 ++++++++++++++++++++++++++++++++++ 2019/19xxx/CVE-2019-19134.json | 5 +++ 2020/1xxx/CVE-2020-1938.json | 5 +++ 4 files changed, 134 insertions(+) create mode 100644 2019/17xxx/CVE-2019-17274.json create mode 100644 2019/17xxx/CVE-2019-17275.json diff --git a/2019/17xxx/CVE-2019-17274.json b/2019/17xxx/CVE-2019-17274.json new file mode 100644 index 00000000000..673d8cce538 --- /dev/null +++ b/2019/17xxx/CVE-2019-17274.json @@ -0,0 +1,62 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-17274", + "ASSIGNER": "security-alert@netapp.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "NetApp", + "product": { + "product_data": [ + { + "product_name": "NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller", + "version": { + "version_data": [ + { + "version_value": "13.x prior to 13.1P1" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Default Privileged Account" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://security.netapp.com/advisory/ntap-20200226-0001/", + "url": "https://security.netapp.com/advisory/ntap-20200226-0001/" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC) firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access." + } + ] + } +} \ No newline at end of file diff --git a/2019/17xxx/CVE-2019-17275.json b/2019/17xxx/CVE-2019-17275.json new file mode 100644 index 00000000000..6038dcc943c --- /dev/null +++ b/2019/17xxx/CVE-2019-17275.json @@ -0,0 +1,62 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-17275", + "ASSIGNER": "security-alert@netapp.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "NetApp", + "product": { + "product_data": [ + { + "product_name": "OnCommand Cloud Manager", + "version": { + "version_data": [ + { + "version_value": "Versions prior to 3.8.0" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Arbitrary Code Execution" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://security.netapp.com/advisory/ntap-20200226-0003/", + "url": "https://security.netapp.com/advisory/ntap-20200226-0003/" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "OnCommand Cloud Manager versions prior to 3.8.0 are susceptible to arbitrary code execution by remote attackers." + } + ] + } +} \ No newline at end of file diff --git a/2019/19xxx/CVE-2019-19134.json b/2019/19xxx/CVE-2019-19134.json index b961d6c8cf4..15ae0edf3a5 100644 --- a/2019/19xxx/CVE-2019-19134.json +++ b/2019/19xxx/CVE-2019-19134.json @@ -66,6 +66,11 @@ "refsource": "MISC", "name": "https://heroplugins.com/changelogs/hmaps/changelog.txt", "url": "https://heroplugins.com/changelogs/hmaps/changelog.txt" + }, + { + "refsource": "MISC", + "name": "https://wpvulndb.com/vulnerabilities/10095", + "url": "https://wpvulndb.com/vulnerabilities/10095" } ] } diff --git a/2020/1xxx/CVE-2020-1938.json b/2020/1xxx/CVE-2020-1938.json index 0926ea1ff7d..289c41e17ed 100644 --- a/2020/1xxx/CVE-2020-1938.json +++ b/2020/1xxx/CVE-2020-1938.json @@ -64,6 +64,11 @@ "refsource": "MLIST", "name": "[ofbiz-notifications] 20200225 [jira] [Updated] (OFBIZ-11407) Upgrade Tomcat from 9.0.29 to 9.0.31 (CVE-2020-1938)", "url": "https://lists.apache.org/thread.html/r75113652e46c4dee687236510649acfb70d2c63e074152049c3f399d@%3Cnotifications.ofbiz.apache.org%3E" + }, + { + "refsource": "CONFIRM", + "name": "https://security.netapp.com/advisory/ntap-20200226-0002/", + "url": "https://security.netapp.com/advisory/ntap-20200226-0002/" } ] },