Merge branch 'master' of github.com:CVEProject/cvelist

2025-08-04 08:44:25 +00:00 · 2020-11-02 21:01:26 +00:00 · 2020-11-02 21:01:26 +00:00 · 60e9ea5736
commit 60e9ea5736
parent e2509bfd95 a2bd3044be
2 changed files with 52 additions and 8 deletions
--- a/2020/27xxx/CVE-2020-27015.json
+++ b/2020/27xxx/CVE-2020-27015.json
@ -34,7 +34,7 @@
 		"description_data" : [
 			{
 				"lang" : "eng",
-				"value" : "Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure vulnerability that if exploited, could allow kernel pointers and debug messages to leak to userland.\r\n\r\n\n\nAn attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability."
+				"value" : "Trend Micro Antivirus for Mac 2020 (Consumer) contains an Error Message Information Disclosure vulnerability that if exploited, could allow kernel pointers and debug messages to leak to userland. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability."
 			}
 		]
 	},
--- a/2020/27xxx/CVE-2020-27982.json
+++ b/2020/27xxx/CVE-2020-27982.json
@ -1,18 +1,62 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
-        "ID": "CVE-2020-27982",
        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ID": "CVE-2020-27982",
+        "STATE": "PUBLIC"
    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "IceWarp 11.4.5.0 x64",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "11.4.5.0"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "IceWarp"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "IceWarp 11.4.5.0 allows XSS via the language parameter."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Cross Site Scripting (XSS)"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "http://dl.icewarp.com/patchinfo/11.4.5.txt",
+                "refsource": "MISC",
+                "name": "http://dl.icewarp.com/patchinfo/11.4.5.txt"
            }
        ]
    }
-}
+}