"-Synchronized-Data."

2025-08-04 08:44:25 +00:00 · 2021-05-28 13:00:47 +00:00 · 2021-05-28 13:00:47 +00:00 · 723778122c
commit 723778122c
parent 8b34d2e477
7 changed files with 214 additions and 6 deletions
--- a/2010/3xxx/CVE-2010-3843.json
+++ b/2010/3xxx/CVE-2010-3843.json
@ -1,8 +1,8 @@
 {
    "CVE_data_meta": {
-        "ASSIGNER": "cve@mitre.org",
+        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2010-3843",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
    },
    "data_format": "MITRE",
    "data_type": "CVE",
@ -11,7 +11,81 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "The gtkui_conf_read function in src/interfaces/gtk/ec_gtk_conf.c in Ettercap 0.7.3, when the GTK interface is used, does not ensure that the contents of the .ettercap_gtk file are controlled by the root user, which allows local users to conduct stack-based buffer overflow attacks and possibly execute arbitrary code, cause a denial of service (memory consumption), or possibly have unspecified other impact via crafted lines in this file."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Other"
+                    }
+                ]
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "MISC",
+                "name": "http://www.openwall.com/lists/oss-security/2010/10/13/2",
+                "url": "http://www.openwall.com/lists/oss-security/2010/10/13/2"
+            },
+            {
+                "refsource": "MISC",
+                "name": "http://www.openwall.com/lists/oss-security/2010/10/13/6",
+                "url": "http://www.openwall.com/lists/oss-security/2010/10/13/6"
+            },
+            {
+                "refsource": "MISC",
+                "name": "http://www.openwall.com/lists/oss-security/2010/10/14/1",
+                "url": "http://www.openwall.com/lists/oss-security/2010/10/14/1"
+            },
+            {
+                "refsource": "MISC",
+                "name": "http://www.openwall.com/lists/oss-security/2010/10/14/2",
+                "url": "http://www.openwall.com/lists/oss-security/2010/10/14/2"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/656347",
+                "url": "https://bugs.launchpad.net/ubuntu/+source/ettercap/+bug/656347"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://bugzilla.redhat.com/show_bug.cgi?id=643453",
+                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=643453"
+            },
+            {
+                "refsource": "MISC",
+                "name": "http://secunia.com/advisories/41820",
+                "url": "http://secunia.com/advisories/41820"
            }
        ]
    }
--- a/2020/1xxx/CVE-2020-1716.json
+++ b/2020/1xxx/CVE-2020-1716.json
@ -4,14 +4,58 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-1716",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "secalert@redhat.com",
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "n/a",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "ceph-ansible",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "ceph-ansible 6.0.0alpha1"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-798"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "MISC",
+                "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1795592",
+                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1795592"
+            }
+        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "A flaw was found in the ceph-ansible playbook where it contained hardcoded passwords that were being used as default passwords while deploying Ceph services. Any authenticated attacker can abuse this flaw to brute-force Ceph deployments, and gain administrator access to Ceph clusters via the Ceph dashboard to initiate read, write, and delete Ceph clusters and also modify Ceph cluster configurations. Versions before ceph-ansible 6.0.0alpha1 are affected."
            }
        ]
    }
--- a/2021/33xxx/CVE-2021-33624.json
+++ b/2021/33xxx/CVE-2021-33624.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2021-33624",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2021/33xxx/CVE-2021-33625.json
+++ b/2021/33xxx/CVE-2021-33625.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2021-33625",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2021/33xxx/CVE-2021-33626.json
+++ b/2021/33xxx/CVE-2021-33626.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2021-33626",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2021/33xxx/CVE-2021-33627.json
+++ b/2021/33xxx/CVE-2021-33627.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2021-33627",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2021/33xxx/CVE-2021-33628.json
+++ b/2021/33xxx/CVE-2021-33628.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2021-33628",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}