admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-08 14:08:13 +00:00
Code Issues Packages Projects Releases Wiki Activity

IBM20190711-155025

Browse Source 
Added CVE-2019-4118, CVE-2018-1968, CVE-2019-4193, CVE-2019-4131, CVE-2019-4263
This commit is contained in:
Scott Moore - IBM 2019-07-11 15:50:25 -04:00
parent b28dceac25
commit 6165c334c2
No known key found for this signature in database
GPG Key ID: 8E6C411D57F2D75C
5 changed files with 444 additions and 75 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

100
2018/1xxx/CVE-2018-1968.json
View File

@ -1,18 +1,90 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-1968",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"CVE_data_meta" : {
"DATE_PUBLIC" : "2019-07-02T00:00:00",
"ID" : "CVE-2018-1968",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com"
},
"data_type" : "CVE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10958077",
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 958077 (Security Identity Manager)",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10958077"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/153749",
"name" : "ibm-sim-cve20181968-info-disc (153749)",
"title" : "X-Force Vulnerability Report",
"refsource" : "XF"
}
]
},
"impact" : {
"cvssv3" : {
"TM" : {
"RC" : "C",
"E" : "U",
"RL" : "O"
},
"BM" : {
"A" : "N",
"SCORE" : "5.300",
"UI" : "N",
"C" : "L",
"AC" : "L",
"AV" : "N",
"I" : "N",
"S" : "U",
"PR" : "N"
}
}
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "7.0.1"
}
]
},
"product_name" : "Security Identity Manager"
}
]
}
}
]
}
]
}
},
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"value" : "IBM Security Identity Manager 7.0.1 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 153749.",
"lang" : "eng"
}
]
},
"data_format" : "MITRE"
}

106
2019/4xxx/CVE-2019-4118.json
View File

@ -1,18 +1,96 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4118",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "3.1.0"
},
{
"version_value" : "3.1.1"
},
{
"version_value" : "3.1.2"
}
]
},
"product_name" : "Multicloud Manager"
}
]
}
}
]
}
]
}
},
"data_format" : "MITRE",
"description" : {
"description_data" : [
{
"value" : "IBM Multicloud Manager 3.1.0, 3.1.1, and 3.1.2 ibm-mcm-chart could allow a local attacker with admin privileges to obtain highly sensitive information upon deployment. IBM X-Force ID: 158144.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"data_type" : "CVE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"CVE_data_meta" : {
"DATE_PUBLIC" : "2019-07-08T00:00:00",
"ID" : "CVE-2019-4118",
"ASSIGNER" : "psirt@us.ibm.com",
"STATE" : "PUBLIC"
},
"impact" : {
"cvssv3" : {
"BM" : {
"A" : "N",
"SCORE" : "4.400",
"UI" : "N",
"AC" : "L",
"C" : "H",
"AV" : "L",
"I" : "N",
"PR" : "H",
"S" : "U"
},
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
}
}
},
"references" : {
"reference_data" : [
{
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10885290",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10885290",
"title" : "IBM Security Bulletin 885290 (Multicloud Manager)",
"refsource" : "CONFIRM"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/158144",
"title" : "X-Force Vulnerability Report",
"name" : "ibm-mcm-cve20194118-info-disc (158144)",
"refsource" : "XF"
}
]
}
}

100
2019/4xxx/CVE-2019-4131.json
View File

@ -1,18 +1,90 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4131",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"data_format" : "MITRE",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Application Performance Management (IBM Monitoring 8.1.4) could allow a remote attacker to induce the application to perform server-side DNS lookups of arbitrary domain names. IBM X-Force ID: 158270."
}
]
},
"data_version" : "4.0",
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"product_name" : "Monitoring",
"version" : {
"version_data" : [
{
"version_value" : "8.1.4"
}
]
}
}
]
}
}
]
}
]
}
},
"impact" : {
"cvssv3" : {
"BM" : {
"UI" : "N",
"A" : "N",
"SCORE" : "5.300",
"I" : "L",
"S" : "U",
"PR" : "N",
"C" : "N",
"AC" : "L",
"AV" : "N"
},
"TM" : {
"RL" : "O",
"E" : "U",
"RC" : "C"
}
}
},
"references" : {
"reference_data" : [
{
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 957121 (Monitoring)",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10957121",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10957121"
},
{
"refsource" : "XF",
"title" : "X-Force Vulnerability Report",
"name" : "ibm-apm-cve20194131-dns (158270)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/158270"
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Other"
}
]
}
]
},
"data_type" : "CVE",
"CVE_data_meta" : {
"ID" : "CVE-2019-4131",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-07-01T00:00:00"
}
}

103
2019/4xxx/CVE-2019-4193.json
View File

@ -1,18 +1,93 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4193",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "1.1.3"
},
{
"version_value" : "1.1.3.2"
}
]
},
"product_name" : "Jazz for Service Management"
}
]
}
}
]
}
]
}
},
"data_format" : "MITRE",
"description" : {
"description_data" : [
{
"value" : "IBM Jazz for Service Management 1.1.3 and 1.1.3.2 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-force ID: 159032.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"data_type" : "CVE",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"CVE_data_meta" : {
"ID" : "CVE-2019-4193",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-07-05T00:00:00"
},
"impact" : {
"cvssv3" : {
"BM" : {
"C" : "H",
"AC" : "H",
"AV" : "N",
"I" : "N",
"PR" : "N",
"S" : "U",
"A" : "N",
"SCORE" : "5.900",
"UI" : "N"
},
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
}
}
},
"references" : {
"reference_data" : [
{
"refsource" : "CONFIRM",
"name" : "http://www.ibm.com/support/docview.wss?uid=ibm10885985",
"title" : "IBM Security Bulletin 0885985 (Jazz for Service Management)",
"url" : "http://www.ibm.com/support/docview.wss?uid=ibm10885985"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159032",
"refsource" : "XF",
"name" : "ibm-jazz-cve20194193-info-disc (159032)",
"title" : "X-Force Vulnerability Report"
}
]
}
}

100
2019/4xxx/CVE-2019-4263.json
View File

@ -1,18 +1,90 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-4263",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Content Navigator 3.0CD is vulnerable to local file inclusion, allowing an attacker to access a configuration file in the ICN server. IBM X-Force ID: 160015."
}
]
},
"data_format" : "MITRE",
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "3.0CD"
}
]
},
"product_name" : "Content Navigator"
}
]
}
}
]
}
]
}
},
"references" : {
"reference_data" : [
{
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10882412",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10882412",
"title" : "IBM Security Bulletin 882412 (Content Navigator)",
"refsource" : "CONFIRM"
},
{
"refsource" : "XF",
"name" : "ibm-cn-cve20194263-info-disc (160015)",
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/160015"
}
]
},
"impact" : {
"cvssv3" : {
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
},
"BM" : {
"I" : "N",
"PR" : "L",
"S" : "U",
"AC" : "L",
"C" : "L",
"AV" : "N",
"UI" : "N",
"A" : "N",
"SCORE" : "4.300"
}
}
},
"CVE_data_meta" : {
"ASSIGNER" : "psirt@us.ibm.com",
"STATE" : "PUBLIC",
"ID" : "CVE-2019-4263",
"DATE_PUBLIC" : "2019-07-01T00:00:00"
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Obtain Information",
"lang" : "eng"
}
]
}
]
},
"data_type" : "CVE"
}