- Synchronized data.

2025-06-07 21:47:16 +00:00 · 2018-10-02 17:05:29 -04:00 · 2018-10-02 17:05:29 -04:00 · 5068a603ff
commit 5068a603ff
parent 5bcc10c416
13 changed files with 27 additions and 93 deletions
--- a/2017/7xxx/CVE-2017-7908.json
+++ b/2017/7xxx/CVE-2017-7908.json
@ -35,7 +35,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "Third party product Gigasoft, v5 and prior included in Communicator 3.15 and prior, A malicious HTML file that loads the ActiveX controls trigger the vulnerability via unchecked function calls."
+            "value" : "A heap-based buffer overflow exists in the third-party product Gigasoft, v5 and prior, included in GE Communicator 3.15 and prior. A malicious HTML file that loads the ActiveX controls can trigger the vulnerability via unchecked function calls."
         }
      ]
   },
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-02",
+            "refsource" : "MISC",
            "url" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-02"
         }
      ]
--- a/2018/14xxx/CVE-2018-14822.json
+++ b/2018/14xxx/CVE-2018-14822.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-03",
+            "refsource" : "MISC",
            "url" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-03"
         }
      ]
--- a/2018/14xxx/CVE-2018-14826.json
+++ b/2018/14xxx/CVE-2018-14826.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-03",
+            "refsource" : "MISC",
            "url" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-275-03"
         }
      ]
--- a/2018/17xxx/CVE-2018-17850.json
+++ b/2018/17xxx/CVE-2018-17850.json
@ -2,30 +2,7 @@
   "CVE_data_meta" : {
      "ASSIGNER" : "cve@mitre.org",
      "ID" : "CVE-2018-17850",
-      "STATE" : "PUBLIC"
-   },
-   "affects" : {
-      "vendor" : {
-         "vendor_data" : [
-            {
-               "product" : {
-                  "product_data" : [
-                     {
-                        "product_name" : "n/a",
-                        "version" : {
-                           "version_data" : [
-                              {
-                                 "version_value" : "n/a"
-                              }
-                           ]
-                        }
-                     }
-                  ]
-               },
-               "vendor_name" : "n/a"
-            }
-         ]
-      }
+      "STATE" : "REJECT"
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
@ -34,28 +11,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "An issue was discovered in JsonCpp 1.8.4. An unhandled exception vulnerability exists in Json::Value::clear() in json_value.cpp after throwing an instance of \"Json::LogicError what(): requires complex value.\" Specially crafted JSON requests can cause an unhandled exception resulting in denial of service. An attacker can send malicious JSON to trigger this vulnerability."
-         }
-      ]
-   },
-   "problemtype" : {
-      "problemtype_data" : [
-         {
-            "description" : [
-               {
-                  "lang" : "eng",
-                  "value" : "n/a"
-               }
-            ]
-         }
-      ]
-   },
-   "references" : {
-      "reference_data" : [
-         {
-            "name" : "https://github.com/open-source-parsers/jsoncpp/issues/824",
-            "refsource" : "MISC",
-            "url" : "https://github.com/open-source-parsers/jsoncpp/issues/824"
+            "value" : "** REJECT **  DO NOT USE THIS CANDIDATE NUMBER.  ConsultIDs: none.  Reason: This candidate was withdrawn by its CNA.  Further investigation showed that it was not a security issue.  Notes: none."
         }
      ]
   }
--- a/2018/17xxx/CVE-2018-17851.json
+++ b/2018/17xxx/CVE-2018-17851.json
@ -2,30 +2,7 @@
   "CVE_data_meta" : {
      "ASSIGNER" : "cve@mitre.org",
      "ID" : "CVE-2018-17851",
-      "STATE" : "PUBLIC"
-   },
-   "affects" : {
-      "vendor" : {
-         "vendor_data" : [
-            {
-               "product" : {
-                  "product_data" : [
-                     {
-                        "product_name" : "n/a",
-                        "version" : {
-                           "version_data" : [
-                              {
-                                 "version_value" : "n/a"
-                              }
-                           ]
-                        }
-                     }
-                  ]
-               },
-               "vendor_name" : "n/a"
-            }
-         ]
-      }
+      "STATE" : "REJECT"
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
@ -34,28 +11,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "An issue was discovered in JsonCpp 1.8.4. An unhandled exception vulnerability exists in Json::OurReader::readValue() in json_reader.cpp after throwing an instance of \"Json::RuntimeError what(): Exceeded stackLimit.\" Specially crafted JSON requests can cause an unhandled exception resulting in denial of service. An attacker can send malicious JSON to trigger this vulnerability."
-         }
-      ]
-   },
-   "problemtype" : {
-      "problemtype_data" : [
-         {
-            "description" : [
-               {
-                  "lang" : "eng",
-                  "value" : "n/a"
-               }
-            ]
-         }
-      ]
-   },
-   "references" : {
-      "reference_data" : [
-         {
-            "name" : "https://github.com/open-source-parsers/jsoncpp/issues/823",
-            "refsource" : "MISC",
-            "url" : "https://github.com/open-source-parsers/jsoncpp/issues/823"
+            "value" : "** REJECT **  DO NOT USE THIS CANDIDATE NUMBER.  ConsultIDs: none.  Reason: This candidate was withdrawn by its CNA.  Further investigation showed that it was not a security issue.  Notes: none."
         }
      ]
   }
--- a/2018/3xxx/CVE-2018-3943.json
+++ b/2018/3xxx/CVE-2018-3943.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0610",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0610"
         }
      ]
--- a/2018/3xxx/CVE-2018-3944.json
+++ b/2018/3xxx/CVE-2018-3944.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0611",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0611"
         }
      ]
--- a/2018/3xxx/CVE-2018-3957.json
+++ b/2018/3xxx/CVE-2018-3957.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]
--- a/2018/3xxx/CVE-2018-3958.json
+++ b/2018/3xxx/CVE-2018-3958.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]
--- a/2018/3xxx/CVE-2018-3959.json
+++ b/2018/3xxx/CVE-2018-3959.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]
--- a/2018/3xxx/CVE-2018-3960.json
+++ b/2018/3xxx/CVE-2018-3960.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]
--- a/2018/3xxx/CVE-2018-3961.json
+++ b/2018/3xxx/CVE-2018-3961.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]
--- a/2018/3xxx/CVE-2018-3962.json
+++ b/2018/3xxx/CVE-2018-3962.json
@ -54,6 +54,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0628"
         }
      ]