diff --git a/2012/4xxx/CVE-2012-4980.json b/2012/4xxx/CVE-2012-4980.json index 3cf7c936b1d..68eac248f0c 100644 --- a/2012/4xxx/CVE-2012-4980.json +++ b/2012/4xxx/CVE-2012-4980.json @@ -2,7 +2,7 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-4980", - "STATE": "RESERVED" + "STATE": "PUBLIC" }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +11,56 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "references": { + "reference_data": [ + { + "refsource": "BID", + "name": "55644", + "url": "http://www.securityfocus.com/bid/55644" + }, + { + "refsource": "XF", + "name": "78801", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/78801" } ] } diff --git a/2014/3xxx/CVE-2014-3136.json b/2014/3xxx/CVE-2014-3136.json index 2151e09913a..49bf416aafb 100644 --- a/2014/3xxx/CVE-2014-3136.json +++ b/2014/3xxx/CVE-2014-3136.json @@ -2,7 +2,7 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-3136", - "STATE": "RESERVED" + "STATE": "PUBLIC" }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +11,61 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Cross-site request forgery (CSRF) vulnerability in D-Link DWR-113 (Rev. Ax) with firmware before 2.03b02 allows remote attackers to hijack the authentication of administrators for requests that change the admin password via unspecified vectors." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "references": { + "reference_data": [ + { + "refsource": "BID", + "name": "68967", + "url": "https://www.securityfocus.com/bid/68967" + }, + { + "refsource": "MISC", + "name": "https://packetstormsecurity.com/files/cve/CVE-2014-3136", + "url": "https://packetstormsecurity.com/files/cve/CVE-2014-3136" + }, + { + "refsource": "XF", + "name": "95022", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95022" } ] } diff --git a/2014/5xxx/CVE-2014-5289.json b/2014/5xxx/CVE-2014-5289.json index f28aba9ba00..74926e736a1 100644 --- a/2014/5xxx/CVE-2014-5289.json +++ b/2014/5xxx/CVE-2014-5289.json @@ -2,7 +2,7 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-5289", - "STATE": "RESERVED" + "STATE": "PUBLIC" }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +11,61 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Buffer overflow in Senkas Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a POST request." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/127912/Senkas-Kolibri-WebServer-2.0-Buffer-Overflow.html", + "url": "http://packetstormsecurity.com/files/127912/Senkas-Kolibri-WebServer-2.0-Buffer-Overflow.html" + }, + { + "refsource": "BID", + "name": "69263", + "url": "http://www.securityfocus.com/bid/69263" + }, + { + "refsource": "XF", + "name": "95350", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/95350" } ] } diff --git a/2014/6xxx/CVE-2014-6420.json b/2014/6xxx/CVE-2014-6420.json index d4ce79a34c4..5675ef91a04 100644 --- a/2014/6xxx/CVE-2014-6420.json +++ b/2014/6xxx/CVE-2014-6420.json @@ -2,7 +2,7 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-6420", - "STATE": "RESERVED" + "STATE": "PUBLIC" }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +11,56 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Cross-site scripting (XSS) vulnerability in Livefyre LiveComments 3.0 allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded picture." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/128293/Livefyre-LiveComments-3.0-Cross-Site-Scripting.html", + "url": "http://packetstormsecurity.com/files/128293/Livefyre-LiveComments-3.0-Cross-Site-Scripting.html" + }, + { + "refsource": "XF", + "name": "96037", + "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/96037" } ] } diff --git a/2019/20xxx/CVE-2019-20043.json b/2019/20xxx/CVE-2019-20043.json index 357ef41c1e9..7769da54ccc 100644 --- a/2019/20xxx/CVE-2019-20043.json +++ b/2019/20xxx/CVE-2019-20043.json @@ -52,6 +52,11 @@ }, "references": { "reference_data": [ + { + "refsource": "MISC", + "name": "https://wpvulndb.com/vulnerabilities/9973", + "url": "https://wpvulndb.com/vulnerabilities/9973" + }, { "url": "https://wordpress.org/news/2019/12/wordpress-5-3-1-security-and-maintenance-release/", "refsource": "MISC",