From 571b728a0ff8de6bbf095d7d7db8bd7f60a68a6d Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 19 Sep 2018 12:04:12 -0400 Subject: [PATCH] - Synchronized data. --- 2017/2xxx/CVE-2017-2855.json | 2 + 2017/2xxx/CVE-2017-2875.json | 2 + 2017/2xxx/CVE-2017-2878.json | 2 + 2017/2xxx/CVE-2017-2879.json | 2 + 2018/17xxx/CVE-2018-17184.json | 18 +++++++++ 2018/17xxx/CVE-2018-17185.json | 18 +++++++++ 2018/17xxx/CVE-2018-17186.json | 18 +++++++++ 2018/17xxx/CVE-2018-17187.json | 18 +++++++++ 2018/17xxx/CVE-2018-17188.json | 18 +++++++++ 2018/17xxx/CVE-2018-17189.json | 18 +++++++++ 2018/17xxx/CVE-2018-17190.json | 18 +++++++++ 2018/17xxx/CVE-2018-17191.json | 18 +++++++++ 2018/17xxx/CVE-2018-17192.json | 18 +++++++++ 2018/17xxx/CVE-2018-17193.json | 18 +++++++++ 2018/17xxx/CVE-2018-17194.json | 18 +++++++++ 2018/17xxx/CVE-2018-17195.json | 18 +++++++++ 2018/17xxx/CVE-2018-17196.json | 18 +++++++++ 2018/17xxx/CVE-2018-17197.json | 18 +++++++++ 2018/17xxx/CVE-2018-17198.json | 18 +++++++++ 2018/17xxx/CVE-2018-17199.json | 18 +++++++++ 2018/17xxx/CVE-2018-17200.json | 18 +++++++++ 2018/17xxx/CVE-2018-17201.json | 18 +++++++++ 2018/17xxx/CVE-2018-17202.json | 18 +++++++++ 2018/17xxx/CVE-2018-17203.json | 18 +++++++++ 2018/17xxx/CVE-2018-17204.json | 62 +++++++++++++++++++++++++++++++ 2018/17xxx/CVE-2018-17205.json | 62 +++++++++++++++++++++++++++++++ 2018/17xxx/CVE-2018-17206.json | 62 +++++++++++++++++++++++++++++++ 2018/17xxx/CVE-2018-17207.json | 67 ++++++++++++++++++++++++++++++++++ 2018/17xxx/CVE-2018-17208.json | 18 +++++++++ 29 files changed, 639 insertions(+) create mode 100644 2018/17xxx/CVE-2018-17184.json create mode 100644 2018/17xxx/CVE-2018-17185.json create mode 100644 2018/17xxx/CVE-2018-17186.json create mode 100644 2018/17xxx/CVE-2018-17187.json create mode 100644 2018/17xxx/CVE-2018-17188.json create mode 100644 2018/17xxx/CVE-2018-17189.json create mode 100644 2018/17xxx/CVE-2018-17190.json create mode 100644 2018/17xxx/CVE-2018-17191.json create mode 100644 2018/17xxx/CVE-2018-17192.json create mode 100644 2018/17xxx/CVE-2018-17193.json create mode 100644 2018/17xxx/CVE-2018-17194.json create mode 100644 2018/17xxx/CVE-2018-17195.json create mode 100644 2018/17xxx/CVE-2018-17196.json create mode 100644 2018/17xxx/CVE-2018-17197.json create mode 100644 2018/17xxx/CVE-2018-17198.json create mode 100644 2018/17xxx/CVE-2018-17199.json create mode 100644 2018/17xxx/CVE-2018-17200.json create mode 100644 2018/17xxx/CVE-2018-17201.json create mode 100644 2018/17xxx/CVE-2018-17202.json create mode 100644 2018/17xxx/CVE-2018-17203.json create mode 100644 2018/17xxx/CVE-2018-17204.json create mode 100644 2018/17xxx/CVE-2018-17205.json create mode 100644 2018/17xxx/CVE-2018-17206.json create mode 100644 2018/17xxx/CVE-2018-17207.json create mode 100644 2018/17xxx/CVE-2018-17208.json diff --git a/2017/2xxx/CVE-2017-2855.json b/2017/2xxx/CVE-2017-2855.json index c7c277b3246..b8245cdb57b 100644 --- a/2017/2xxx/CVE-2017-2855.json +++ b/2017/2xxx/CVE-2017-2855.json @@ -54,6 +54,8 @@ "references" : { "reference_data" : [ { + "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0358", + "refsource" : "MISC", "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0358" } ] diff --git a/2017/2xxx/CVE-2017-2875.json b/2017/2xxx/CVE-2017-2875.json index 4328b379e39..f8024f5b855 100644 --- a/2017/2xxx/CVE-2017-2875.json +++ b/2017/2xxx/CVE-2017-2875.json @@ -54,6 +54,8 @@ "references" : { "reference_data" : [ { + "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0382", + "refsource" : "MISC", "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0382" } ] diff --git a/2017/2xxx/CVE-2017-2878.json b/2017/2xxx/CVE-2017-2878.json index d201da1f81c..8b5f079c142 100644 --- a/2017/2xxx/CVE-2017-2878.json +++ b/2017/2xxx/CVE-2017-2878.json @@ -54,6 +54,8 @@ "references" : { "reference_data" : [ { + "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0385", + "refsource" : "MISC", "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0385" } ] diff --git a/2017/2xxx/CVE-2017-2879.json b/2017/2xxx/CVE-2017-2879.json index 9cea9b291dc..0e130fe7b38 100644 --- a/2017/2xxx/CVE-2017-2879.json +++ b/2017/2xxx/CVE-2017-2879.json @@ -54,6 +54,8 @@ "references" : { "reference_data" : [ { + "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0386", + "refsource" : "MISC", "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2017-0386" } ] diff --git a/2018/17xxx/CVE-2018-17184.json b/2018/17xxx/CVE-2018-17184.json new file mode 100644 index 00000000000..b1c4013de5b --- /dev/null +++ b/2018/17xxx/CVE-2018-17184.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17184", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17185.json b/2018/17xxx/CVE-2018-17185.json new file mode 100644 index 00000000000..7012b907f32 --- /dev/null +++ b/2018/17xxx/CVE-2018-17185.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17185", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17186.json b/2018/17xxx/CVE-2018-17186.json new file mode 100644 index 00000000000..bee9e546210 --- /dev/null +++ b/2018/17xxx/CVE-2018-17186.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17186", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17187.json b/2018/17xxx/CVE-2018-17187.json new file mode 100644 index 00000000000..21b001b57f1 --- /dev/null +++ b/2018/17xxx/CVE-2018-17187.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17187", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17188.json b/2018/17xxx/CVE-2018-17188.json new file mode 100644 index 00000000000..4302bb2269b --- /dev/null +++ b/2018/17xxx/CVE-2018-17188.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17188", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17189.json b/2018/17xxx/CVE-2018-17189.json new file mode 100644 index 00000000000..dbd54927d47 --- /dev/null +++ b/2018/17xxx/CVE-2018-17189.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17189", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17190.json b/2018/17xxx/CVE-2018-17190.json new file mode 100644 index 00000000000..7572e3e0f7e --- /dev/null +++ b/2018/17xxx/CVE-2018-17190.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17190", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17191.json b/2018/17xxx/CVE-2018-17191.json new file mode 100644 index 00000000000..b0e888057d5 --- /dev/null +++ b/2018/17xxx/CVE-2018-17191.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17191", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17192.json b/2018/17xxx/CVE-2018-17192.json new file mode 100644 index 00000000000..88e77e4fa4c --- /dev/null +++ b/2018/17xxx/CVE-2018-17192.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17192", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17193.json b/2018/17xxx/CVE-2018-17193.json new file mode 100644 index 00000000000..1c455862e22 --- /dev/null +++ b/2018/17xxx/CVE-2018-17193.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17193", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17194.json b/2018/17xxx/CVE-2018-17194.json new file mode 100644 index 00000000000..13516675039 --- /dev/null +++ b/2018/17xxx/CVE-2018-17194.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17194", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17195.json b/2018/17xxx/CVE-2018-17195.json new file mode 100644 index 00000000000..08a4c67e204 --- /dev/null +++ b/2018/17xxx/CVE-2018-17195.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17195", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17196.json b/2018/17xxx/CVE-2018-17196.json new file mode 100644 index 00000000000..f5bb5c389d0 --- /dev/null +++ b/2018/17xxx/CVE-2018-17196.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17196", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17197.json b/2018/17xxx/CVE-2018-17197.json new file mode 100644 index 00000000000..e3c11a7d854 --- /dev/null +++ b/2018/17xxx/CVE-2018-17197.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17197", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17198.json b/2018/17xxx/CVE-2018-17198.json new file mode 100644 index 00000000000..cfc89d528cf --- /dev/null +++ b/2018/17xxx/CVE-2018-17198.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17198", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17199.json b/2018/17xxx/CVE-2018-17199.json new file mode 100644 index 00000000000..62133a45e8f --- /dev/null +++ b/2018/17xxx/CVE-2018-17199.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17199", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17200.json b/2018/17xxx/CVE-2018-17200.json new file mode 100644 index 00000000000..f70fc7f7d74 --- /dev/null +++ b/2018/17xxx/CVE-2018-17200.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17200", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17201.json b/2018/17xxx/CVE-2018-17201.json new file mode 100644 index 00000000000..796aaada524 --- /dev/null +++ b/2018/17xxx/CVE-2018-17201.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17201", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17202.json b/2018/17xxx/CVE-2018-17202.json new file mode 100644 index 00000000000..14a607a6331 --- /dev/null +++ b/2018/17xxx/CVE-2018-17202.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17202", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17203.json b/2018/17xxx/CVE-2018-17203.json new file mode 100644 index 00000000000..03354bc08ef --- /dev/null +++ b/2018/17xxx/CVE-2018-17203.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17203", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17204.json b/2018/17xxx/CVE-2018-17204.json new file mode 100644 index 00000000000..b700e104fb3 --- /dev/null +++ b/2018/17xxx/CVE-2018-17204.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17204", + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting parse_group_prop_ntr_selection_method in lib/ofp-util.c. When decoding a group mod, it validates the group type and command after the whole group mod has been decoded. The OF1.5 decoder, however, tries to use the type and command earlier, when it might still be invalid. This causes an assertion failure (via OVS_NOT_REACHED). ovs-vswitchd does not enable support for OpenFlow 1.5 by default." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "name" : "https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cde", + "refsource" : "MISC", + "url" : "https://github.com/openvswitch/ovs/commit/4af6da3b275b764b1afe194df6499b33d2bf4cde" + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17205.json b/2018/17xxx/CVE-2018-17205.json new file mode 100644 index 00000000000..1bfba25d0bf --- /dev/null +++ b/2018/17xxx/CVE-2018-17205.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17205", + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6, affecting ofproto_rule_insert__ in ofproto/ofproto.c. During bundle commit, flows that are added in a bundle are applied to ofproto in order. If a flow cannot be added (e.g., the flow action is a go-to for a group id that does not exist), OvS tries to revert back all previous flows that were successfully applied from the same bundle. This is possible since OvS maintains list of old flows that were replaced by flows from the bundle. While reinserting old flows, OvS has an assertion failure due to a check on rule state != RULE_INITIALIZED. This would work for new flows, but for an old flow the rule state is RULE_REMOVED. The assertion failure causes an OvS crash." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "name" : "https://github.com/openvswitch/ovs/commit/0befd1f3745055c32940f5faf9559be6a14395e6", + "refsource" : "MISC", + "url" : "https://github.com/openvswitch/ovs/commit/0befd1f3745055c32940f5faf9559be6a14395e6" + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17206.json b/2018/17xxx/CVE-2018-17206.json new file mode 100644 index 00000000000..1f1e6a0c28d --- /dev/null +++ b/2018/17xxx/CVE-2018-17206.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17206", + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "An issue was discovered in Open vSwitch (OvS) 2.7.x through 2.7.6. The decode_bundle function inside lib/ofp-actions.c is affected by a buffer over-read issue during BUNDLE action decoding." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "name" : "https://github.com/openvswitch/ovs/commit/9237a63c47bd314b807cda0bd2216264e82edbe8", + "refsource" : "MISC", + "url" : "https://github.com/openvswitch/ovs/commit/9237a63c47bd314b807cda0bd2216264e82edbe8" + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17207.json b/2018/17xxx/CVE-2018-17207.json new file mode 100644 index 00000000000..358982f583d --- /dev/null +++ b/2018/17xxx/CVE-2018-17207.json @@ -0,0 +1,67 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17207", + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "An issue was discovered in Snap Creek Duplicator before 1.2.42. By accessing leftover installer files (installer.php and installer-backup.php), an attacker can inject PHP code into wp-config.php during the database setup step, achieving arbitrary code execution." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "name" : "https://snapcreek.com/duplicator/docs/changelog/?lite", + "refsource" : "MISC", + "url" : "https://snapcreek.com/duplicator/docs/changelog/?lite" + }, + { + "name" : "https://www.synacktiv.com/ressources/advisories/WordPress_Duplicator-1.2.40-RCE.pdf", + "refsource" : "MISC", + "url" : "https://www.synacktiv.com/ressources/advisories/WordPress_Duplicator-1.2.40-RCE.pdf" + } + ] + } +} diff --git a/2018/17xxx/CVE-2018-17208.json b/2018/17xxx/CVE-2018-17208.json new file mode 100644 index 00000000000..787dd3272fb --- /dev/null +++ b/2018/17xxx/CVE-2018-17208.json @@ -0,0 +1,18 @@ +{ + "CVE_data_meta" : { + "ASSIGNER" : "cve@mitre.org", + "ID" : "CVE-2018-17208", + "STATE" : "RESERVED" + }, + "data_format" : "MITRE", + "data_type" : "CVE", + "data_version" : "4.0", + "description" : { + "description_data" : [ + { + "lang" : "eng", + "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +}