From 68637536abfa176690d31ba47e4be74a094a705c Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 21 Sep 2021 18:01:05 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2021/23xxx/CVE-2021-23444.json | 32 ++++++++++-------- 2021/40xxx/CVE-2021-40847.json | 61 ++++++++++++++++++++++++++++++---- 2021/41xxx/CVE-2021-41084.json | 2 +- 3 files changed, 75 insertions(+), 20 deletions(-) diff --git a/2021/23xxx/CVE-2021-23444.json b/2021/23xxx/CVE-2021-23444.json index aa3ad12b54d..bf171ad4c00 100644 --- a/2021/23xxx/CVE-2021-23444.json +++ b/2021/23xxx/CVE-2021-23444.json @@ -48,28 +48,34 @@ "references": { "reference_data": [ { - "refsource": "CONFIRM", - "url": "https://snyk.io/vuln/SNYK-JS-JOINTJS-1579578" + "refsource": "MISC", + "url": "https://snyk.io/vuln/SNYK-JS-JOINTJS-1579578", + "name": "https://snyk.io/vuln/SNYK-JS-JOINTJS-1579578" }, { - "refsource": "CONFIRM", - "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1655816" + "refsource": "MISC", + "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1655816", + "name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1655816" }, { - "refsource": "CONFIRM", - "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1655817" + "refsource": "MISC", + "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1655817", + "name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1655817" }, { - "refsource": "CONFIRM", - "url": "https://github.com/clientIO/joint/commit/e5bf89efef6d5ea572d66870ffd86560de7830a8" + "refsource": "MISC", + "url": "https://github.com/clientIO/joint/commit/e5bf89efef6d5ea572d66870ffd86560de7830a8", + "name": "https://github.com/clientIO/joint/commit/e5bf89efef6d5ea572d66870ffd86560de7830a8" }, { - "refsource": "CONFIRM", - "url": "https://github.com/clientIO/joint/releases/tag/v3.4.2" + "refsource": "MISC", + "url": "https://github.com/clientIO/joint/releases/tag/v3.4.2", + "name": "https://github.com/clientIO/joint/releases/tag/v3.4.2" }, { - "refsource": "CONFIRM", - "url": "https://github.com/clientIO/joint/pull/1514" + "refsource": "MISC", + "url": "https://github.com/clientIO/joint/pull/1514", + "name": "https://github.com/clientIO/joint/pull/1514" } ] }, @@ -77,7 +83,7 @@ "description_data": [ { "lang": "eng", - "value": "This affects the package jointjs before 3.4.2.\n A type confusion vulnerability can lead to a bypass of CVE-2020-28480 when the user-provided keys used in the path parameter are arrays in the setByPath function.\r\n\r\n\r\n" + "value": "This affects the package jointjs before 3.4.2. A type confusion vulnerability can lead to a bypass of CVE-2020-28480 when the user-provided keys used in the path parameter are arrays in the setByPath function." } ] }, diff --git a/2021/40xxx/CVE-2021-40847.json b/2021/40xxx/CVE-2021-40847.json index b6b93438570..7c7e68310a7 100644 --- a/2021/40xxx/CVE-2021-40847.json +++ b/2021/40xxx/CVE-2021-40847.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2021-40847", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2021-40847", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The update process of the Circle Parental Control Service on various NETGEAR routers allows remote attackers to achieve remote code execution as root via a MitM attack. While the parental controls themselves are not enabled by default on the routers, the Circle update daemon, circled, is enabled by default. This daemon connects to Circle and NETGEAR to obtain version information and updates to the circled daemon and its filtering database. However, database updates from NETGEAR are unsigned and downloaded via cleartext HTTP. As such, an attacker with the ability to perform a MitM attack on the device can respond to circled update requests with a crafted, compressed database file, the extraction of which gives the attacker the ability to overwrite executable files with attacker-controlled code. This affects R6400v2 1.0.4.106, R6700 1.0.2.16, R6700v3 1.0.4.106, R6900 1.0.2.16, R6900P 1.3.2.134, R7000 1.0.11.123, R7000P 1.3.2.134, R7850 1.0.5.68, R7900 1.0.4.38, R8000 1.0.4.68, and RS400 1.5.0.68." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://kb.netgear.com/000064039/Security-Advisory-for-Remote-Code-Execution-on-Some-Routers-PSV-2021-0204", + "url": "https://kb.netgear.com/000064039/Security-Advisory-for-Remote-Code-Execution-on-Some-Routers-PSV-2021-0204" + }, + { + "refsource": "MISC", + "name": "https://blog.grimm-co.com/2021/09/mama-always-told-me-not-to-trust.html", + "url": "https://blog.grimm-co.com/2021/09/mama-always-told-me-not-to-trust.html" } ] } diff --git a/2021/41xxx/CVE-2021-41084.json b/2021/41xxx/CVE-2021-41084.json index 7e23e4abbaa..db3552defec 100644 --- a/2021/41xxx/CVE-2021-41084.json +++ b/2021/41xxx/CVE-2021-41084.json @@ -44,7 +44,7 @@ "description_data": [ { "lang": "eng", - "value": "http4s is an open source scala interface for HTTP. In affected versions http4s is vulnerable to response-splitting or request-splitting attacks when untrusted user input is used to create any of the following fields: Header names (`Header.name`å), Header values (`Header.value`), Status reason phrases (`Status.reason`), URI paths (`Uri.Path`), URI authority registered names (`URI.RegName`) (through 0.21). This issue has been resolved in versions 0.21.30, 0.22.5, 0.23.4, and 1.0.0-M27 perform the following. As a matter of practice http4s services and client applications should sanitize any user input in the aforementioned fields before returning a request or response to the backend. The carriage return, newline, and null characters are the most threatening.\n" + "value": "http4s is an open source scala interface for HTTP. In affected versions http4s is vulnerable to response-splitting or request-splitting attacks when untrusted user input is used to create any of the following fields: Header names (`Header.name`\u00e5), Header values (`Header.value`), Status reason phrases (`Status.reason`), URI paths (`Uri.Path`), URI authority registered names (`URI.RegName`) (through 0.21). This issue has been resolved in versions 0.21.30, 0.22.5, 0.23.4, and 1.0.0-M27 perform the following. As a matter of practice http4s services and client applications should sanitize any user input in the aforementioned fields before returning a request or response to the backend. The carriage return, newline, and null characters are the most threatening." } ] },