From 5adab66f7276e84bb6d381d2fc94fb4e7a961909 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Mon, 31 Aug 2020 13:01:40 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/15xxx/CVE-2020-15020.json | 61 +++++++++-- 2020/4xxx/CVE-2020-4492.json | 192 ++++++++++++++++----------------- 2 files changed, 151 insertions(+), 102 deletions(-) diff --git a/2020/15xxx/CVE-2020-15020.json b/2020/15xxx/CVE-2020-15020.json index 2e462920f66..963ab9a1bdb 100644 --- a/2020/15xxx/CVE-2020-15020.json +++ b/2020/15xxx/CVE-2020-15020.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-15020", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-15020", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An issue was discovered in the Elementor plugin through 2.9.13 for WordPress. An authenticated attacker can achieve stored XSS via the Name Your Template field." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://wordpress.org/plugins/elementor/#developers", + "refsource": "MISC", + "name": "https://wordpress.org/plugins/elementor/#developers" + }, + { + "refsource": "MISC", + "name": "http://hidden-one.co.in/2020/07/07/cve-2020-1020-stored-xss-on-elementor-wordpress-plugin/", + "url": "http://hidden-one.co.in/2020/07/07/cve-2020-1020-stored-xss-on-elementor-wordpress-plugin/" } ] } diff --git a/2020/4xxx/CVE-2020-4492.json b/2020/4xxx/CVE-2020-4492.json index b90ffad57a1..ca073f7704b 100644 --- a/2020/4xxx/CVE-2020-4492.json +++ b/2020/4xxx/CVE-2020-4492.json @@ -1,99 +1,99 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@us.ibm.com", - "DATE_PUBLIC" : "2020-08-28T00:00:00", - "STATE" : "PUBLIC", - "ID" : "CVE-2020-4492" - }, - "description" : { - "description_data" : [ - { - "value" : "IBM Spectrum Scale V5.0.0.0 through V5.0.4.3 and V4.2.0.0 through V4.2.3.21 could allow a local attacker to cause a denial of service crashing the kernel by sending a subset of ioctls on the device with invalid arguments. IBM X-Force ID: 181992.", - "lang" : "eng" - } - ] - }, - "references" : { - "reference_data" : [ - { - "url" : "https://www.ibm.com/support/pages/node/6324249", - "refsource" : "CONFIRM", - "title" : "IBM Security Bulletin 6324249 (Spectrum Scale)", - "name" : "https://www.ibm.com/support/pages/node/6324249" - }, - { - "title" : "X-Force Vulnerability Report", - "name" : "ibm-spectrum-cve20204492-dos (181992)", - "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/181992", - "refsource" : "XF" - } - ] - }, - "data_format" : "MITRE", - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "Denial of Service" - } - ] - } - ] - }, - "data_version" : "4.0", - "impact" : { - "cvssv3" : { - "BM" : { - "I" : "N", - "C" : "N", - "UI" : "N", - "AC" : "L", - "A" : "H", - "PR" : "N", - "S" : "U", - "AV" : "L", - "SCORE" : "6.200" - }, - "TM" : { - "RC" : "C", - "E" : "U", - "RL" : "O" - } - } - }, - "data_type" : "CVE", - "affects" : { - "vendor" : { - "vendor_data" : [ + "CVE_data_meta": { + "ASSIGNER": "psirt@us.ibm.com", + "DATE_PUBLIC": "2020-08-28T00:00:00", + "STATE": "PUBLIC", + "ID": "CVE-2020-4492" + }, + "description": { + "description_data": [ { - "vendor_name" : "IBM", - "product" : { - "product_data" : [ - { - "version" : { - "version_data" : [ - { - "version_value" : "4.2.0.0" - }, - { - "version_value" : "5.0.0.0" - }, - { - "version_value" : "5.0.4.3" - }, - { - "version_value" : "4.2.3.21" - } - ] - }, - "product_name" : "Spectrum Scale" - } - ] - } + "value": "IBM Spectrum Scale V5.0.0.0 through V5.0.4.3 and V4.2.0.0 through V4.2.3.21 could allow a local attacker to cause a denial of service crashing the kernel by sending a subset of ioctls on the device with invalid arguments. IBM X-Force ID: 181992.", + "lang": "eng" } - ] - } - } -} + ] + }, + "references": { + "reference_data": [ + { + "url": "https://www.ibm.com/support/pages/node/6324249", + "refsource": "CONFIRM", + "title": "IBM Security Bulletin 6324249 (Spectrum Scale)", + "name": "https://www.ibm.com/support/pages/node/6324249" + }, + { + "title": "X-Force Vulnerability Report", + "name": "ibm-spectrum-cve20204492-dos (181992)", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/181992", + "refsource": "XF" + } + ] + }, + "data_format": "MITRE", + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Denial of Service" + } + ] + } + ] + }, + "data_version": "4.0", + "impact": { + "cvssv3": { + "BM": { + "I": "N", + "C": "N", + "UI": "N", + "AC": "L", + "A": "H", + "PR": "N", + "S": "U", + "AV": "L", + "SCORE": "6.200" + }, + "TM": { + "RC": "C", + "E": "U", + "RL": "O" + } + } + }, + "data_type": "CVE", + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "IBM", + "product": { + "product_data": [ + { + "version": { + "version_data": [ + { + "version_value": "4.2.0.0" + }, + { + "version_value": "5.0.0.0" + }, + { + "version_value": "5.0.4.3" + }, + { + "version_value": "4.2.3.21" + } + ] + }, + "product_name": "Spectrum Scale" + } + ] + } + } + ] + } + } +} \ No newline at end of file