diff --git a/2019/15xxx/CVE-2019-15006.json b/2019/15xxx/CVE-2019-15006.json index e4591a6b0c1..e3a1428aefd 100644 --- a/2019/15xxx/CVE-2019-15006.json +++ b/2019/15xxx/CVE-2019-15006.json @@ -1,104 +1,110 @@ { - "CVE_data_meta": { - "ASSIGNER": "security@atlassian.com", - "DATE_PUBLIC": "2019-12-19T00:00:00", - "ID": "CVE-2019-15006", - "STATE": "PUBLIC" - }, - "affects": { - "vendor": { - "vendor_data": [ - { - "product": { - "product_data": [ - { - "product_name": "Confluence Server", - "version": { - "version_data": [ - { - "version_value": "6.11.0", - "version_affected": ">=" - }, - { - "version_value": "6.13.10", - "version_affected": "<" - }, - { - "version_value": "6.14.0", - "version_affected": ">=" - }, - { - "version_value": "6.15.10", - "version_affected": "<" - }, - { - "version_value": "7.0.1", - "version_affected": ">=" - }, - { - "version_value": "7.0.5", - "version_affected": "<" - }, - { - "version_value": "7.1.0", - "version_affected": ">=" - }, - { - "version_value": "7.1.2", - "version_affected": "<" - }, - { - "version_value": "7.2.0-beta1", - "version_affected": ">=" - }, - { - "version_value": "7.2.0", - "version_affected": "<" - } - ] - } - } - ] - }, - "vendor_name": "Atlassian" - } - ] - } - }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Server and Confluence Data Center communicated with the Companion application via the atlassian-domain-for-localhost-connections-only.com domain name, the DNS A record of which points at 127.0.0.1. Additionally, a signed certificate for the domain was publicly distributed with the Companion application. An attacker in the position to control DNS resolution of their victim could carry out a man-in-the-middle (MITM) attack between Confluence Server (or Confluence Data Center) and the atlassian-domain-for-localhost-connections-only.com domain intended to be used with the Companion application. This certificate has been revoked, however, usage of the atlassian-domain-for-localhost-connections-only.com domain name was still present in Confluence Server and Confluence Data Center. An attacker could perform the described attack by denying their victim access to certificate revocation information, and carry out a man-in-the-middle (MITM) attack to observe files being edited using the Companion application and/or modify them, and access some limited user information." - } - ] - }, - "problemtype": { - "problemtype_data": [ - { - "description": [ - { - "lang": "eng", - "value": "Man-in-the-Middle (MitM)" - } + "CVE_data_meta": { + "ASSIGNER": "security@atlassian.com", + "DATE_PUBLIC": "2019-12-19T00:00:00", + "ID": "CVE-2019-15006", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Confluence Server", + "version": { + "version_data": [ + { + "version_value": "6.11.0", + "version_affected": ">=" + }, + { + "version_value": "6.13.10", + "version_affected": "<" + }, + { + "version_value": "6.14.0", + "version_affected": ">=" + }, + { + "version_value": "6.15.10", + "version_affected": "<" + }, + { + "version_value": "7.0.1", + "version_affected": ">=" + }, + { + "version_value": "7.0.5", + "version_affected": "<" + }, + { + "version_value": "7.1.0", + "version_affected": ">=" + }, + { + "version_value": "7.1.2", + "version_affected": "<" + }, + { + "version_value": "7.2.0-beta1", + "version_affected": ">=" + }, + { + "version_value": "7.2.0", + "version_affected": "<" + } + ] + } + } + ] + }, + "vendor_name": "Atlassian" + } ] - } - ] - }, - "references": { - "reference_data": [ - { - "url": "https://jira.atlassian.com/browse/CONFSERVER-59244" - }, - { - "url": "https://confluence.atlassian.com/doc/confluence-security-advisory-2019-12-18-982324349.html" - }, - { - "url": "https://twitter.com/SwiftOnSecurity/status/1202034106495832067" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data Center. This plugin was used to facilitate communication with the Atlassian Companion application. The Confluence Previews plugin in Confluence Server and Confluence Data Center communicated with the Companion application via the atlassian-domain-for-localhost-connections-only.com domain name, the DNS A record of which points at 127.0.0.1. Additionally, a signed certificate for the domain was publicly distributed with the Companion application. An attacker in the position to control DNS resolution of their victim could carry out a man-in-the-middle (MITM) attack between Confluence Server (or Confluence Data Center) and the atlassian-domain-for-localhost-connections-only.com domain intended to be used with the Companion application. This certificate has been revoked, however, usage of the atlassian-domain-for-localhost-connections-only.com domain name was still present in Confluence Server and Confluence Data Center. An attacker could perform the described attack by denying their victim access to certificate revocation information, and carry out a man-in-the-middle (MITM) attack to observe files being edited using the Companion application and/or modify them, and access some limited user information." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Man-in-the-Middle (MitM)" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://jira.atlassian.com/browse/CONFSERVER-59244", + "refsource": "MISC", + "name": "https://jira.atlassian.com/browse/CONFSERVER-59244" + }, + { + "url": "https://confluence.atlassian.com/doc/confluence-security-advisory-2019-12-18-982324349.html", + "refsource": "MISC", + "name": "https://confluence.atlassian.com/doc/confluence-security-advisory-2019-12-18-982324349.html" + }, + { + "url": "https://twitter.com/SwiftOnSecurity/status/1202034106495832067", + "refsource": "MISC", + "name": "https://twitter.com/SwiftOnSecurity/status/1202034106495832067" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7482.json b/2019/7xxx/CVE-2019-7482.json index de5d01b3053..9ebecf590ed 100644 --- a/2019/7xxx/CVE-2019-7482.json +++ b/2019/7xxx/CVE-2019-7482.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7482", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SMA100", - "version" : { - "version_data" : [ - { - "version_value" : "9.0.0.3 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-121: Stack-based Buffer Overflow" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7482", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SMA100", + "version": { + "version_data": [ + { + "version_value": "9.0.0.3 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0017", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0017" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Stack-based buffer overflow in SonicWall SMA100 allows an unauthenticated user to execute arbitrary code in function libSys.so. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-121: Stack-based Buffer Overflow" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0017", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0017" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7483.json b/2019/7xxx/CVE-2019-7483.json index 54ecbe42f0c..023b5b948d4 100644 --- a/2019/7xxx/CVE-2019-7483.json +++ b/2019/7xxx/CVE-2019-7483.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7483", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SMA100", - "version" : { - "version_data" : [ - { - "version_value" : "9.0.0.3 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7483", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SMA100", + "version": { + "version_data": [ + { + "version_value": "9.0.0.3 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0018", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0018" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of a file on the server." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0018", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0018" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7484.json b/2019/7xxx/CVE-2019-7484.json index 14c9096e39d..ef49cb089e7 100644 --- a/2019/7xxx/CVE-2019-7484.json +++ b/2019/7xxx/CVE-2019-7484.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7484", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SMA100", - "version" : { - "version_data" : [ - { - "version_value" : "9.0.0.3 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized resources using viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7484", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SMA100", + "version": { + "version_data": [ + { + "version_value": "9.0.0.3 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0019", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0019" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Authenticated SQL Injection in SonicWall SMA100 allow user to gain read-only access to unauthorized resources using viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0019", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0019" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7485.json b/2019/7xxx/CVE-2019-7485.json index 6ca12a0c26a..c88ae18dfe5 100644 --- a/2019/7xxx/CVE-2019-7485.json +++ b/2019/7xxx/CVE-2019-7485.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7485", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SMA100", - "version" : { - "version_data" : [ - { - "version_value" : "9.0.0.3 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7485", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SMA100", + "version": { + "version_data": [ + { + "version_value": "9.0.0.3 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0020", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0020" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Buffer overflow in SonicWall SMA100 allows an authenticated user to execute arbitrary code in DEARegister CGI script. This vulnerability impacted SMA100 version 9.0.0.3 and earlier." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0020", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0020" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7486.json b/2019/7xxx/CVE-2019-7486.json index 6e680ac185f..80320390e6d 100644 --- a/2019/7xxx/CVE-2019-7486.json +++ b/2019/7xxx/CVE-2019-7486.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7486", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SMA100", - "version" : { - "version_data" : [ - { - "version_value" : "9.0.0.4 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-94: Improper Control of Generation of Code ('Code Injection')" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7486", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SMA100", + "version": { + "version_data": [ + { + "version_value": "9.0.0.4 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0021", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0021" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Code injection in SonicWall SMA100 allows an authenticated user to execute arbitrary code in viewcacert CGI script. This vulnerability impacted SMA100 version 9.0.0.4 and earlier." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-94: Improper Control of Generation of Code ('Code Injection')" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0021", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0021" + } + ] + } +} \ No newline at end of file diff --git a/2019/7xxx/CVE-2019-7487.json b/2019/7xxx/CVE-2019-7487.json index df1a8a62f8d..7f27cea57aa 100644 --- a/2019/7xxx/CVE-2019-7487.json +++ b/2019/7xxx/CVE-2019-7487.json @@ -1,62 +1,62 @@ { - "CVE_data_meta" : { - "ASSIGNER" : "psirt@sonicwall.com", - "ID" : "CVE-2019-7487", - "STATE" : "PUBLIC" - }, - "affects" : { - "vendor" : { - "vendor_data" : [ - { - "product" : { - "product_data" : [ - { - "product_name" : "SonicOS", - "version" : { - "version_data" : [ - { - "version_value" : "6.5.3.3 and earlier" - } - ] - } - } - ] - }, - "vendor_name" : "SonicWall" - } - ] - } - }, - "data_format" : "MITRE", - "data_type" : "CVE", - "data_version" : "4.0", - "description" : { - "description_data" : [ - { - "lang" : "eng", - "value" : "Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is created does not put the path in quotes, so if a malicious binary by an attacker within the parent path could allow code execution." - } - ] - }, - "problemtype" : { - "problemtype_data" : [ - { - "description" : [ - { - "lang" : "eng", - "value" : "CWE-428: Unquoted Search Path or Element" - } + "CVE_data_meta": { + "ASSIGNER": "PSIRT@sonicwall.com", + "ID": "CVE-2019-7487", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "SonicOS", + "version": { + "version_data": [ + { + "version_value": "6.5.3.3 and earlier" + } + ] + } + } + ] + }, + "vendor_name": "SonicWall" + } ] - } - ] - }, - "references" : { - "reference_data" : [ - { - "name" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0022", - "refsource" : "CONFIRM", - "url" : "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0022" - } - ] - } -} + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Installation of the SonicOS SSLVPN NACagent 3.5 on the Windows operating system, an autorun value is created does not put the path in quotes, so if a malicious binary by an attacker within the parent path could allow code execution." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-428: Unquoted Search Path or Element" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0022", + "refsource": "CONFIRM", + "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0022" + } + ] + } +} \ No newline at end of file