admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-06-18 19:00:47 +00:00
parent 2b0e8cdb0d
commit 74123c28aa
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
32 changed files with 324 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2017/7xxx/CVE-2017-7960.json
View File

@ -66,6 +66,11 @@
"name": "https://blogs.gentoo.org/ago/2017/04/17/libcroco-heap-overflow-and-undefined-behavior/",
"refsource": "MISC",
"url": "https://blogs.gentoo.org/ago/2017/04/17/libcroco-heap-overflow-and-undefined-behavior/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1575",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00043.html"
}
]
}

5
2017/7xxx/CVE-2017-7961.json
View File

@ -76,6 +76,11 @@
"name": "https://blogs.gentoo.org/ago/2017/04/17/libcroco-heap-overflow-and-undefined-behavior/",
"refsource": "MISC",
"url": "https://blogs.gentoo.org/ago/2017/04/17/libcroco-heap-overflow-and-undefined-behavior/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1575",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00043.html"
}
]
}

58
2017/8xxx/CVE-2017-8335.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-8335",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,38 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of setting name for wireless network. These values are stored by the device in NVRAM (Non-volatile RAM). It seems that the POST parameters passed in this request to set up names on the device do not have a string length check on them. This allows an attacker to send a large payload in the \"mssid_1\" POST parameter. The device also allows a user to view the name of the Wifi Network set by the user. While processing this request, the device calls a function named \"getCfgToHTML\" at address 0x004268A8 which retrieves the value set earlier by \"mssid_1\" parameter as SSID2 and this value then results in overflowing the stack set up for this function and allows an attacker to control $ra register value on the stack which allows an attacker to control the device by executing a payload of an attacker's choice. If the firmware version AL-R096 is dissected using binwalk tool, we obtain a cpio-root archive which contains the filesystem set up on the device that contains all the binaries. The binary \"goahead\" is the one that has the vulnerable function that recieves the values sent by the POST request. If we open this binary in IDA-pro we will notice that this follows a MIPS little endian format. The function sub_00420F38 in IDA pro is identified to be receiving the values sent in the POST parameter \"mssid_1\" at address 0x0042BA00 and then sets in the NVRAM at address 0x0042C314. The value is later retrieved in the function \"getCfgToHTML\" at address 0x00426924 and this results in overflowing the buffer due to \"strcat\" function that is utilized by this function."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "BUGTRAQ",
"name": "20190609 Newly releases IoT security issues",
"url": "https://seclists.org/bugtraq/2019/Jun/8"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/153227/Securifi-Almond-2015-Buffer-Overflow-Command-Injection-XSS-CSRF.html",
"url": "http://packetstormsecurity.com/files/153227/Securifi-Almond-2015-Buffer-Overflow-Command-Injection-XSS-CSRF.html"
},
{
"refsource": "MISC",
"name": "https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Securifi_Almond_plus_sec_issues.pdf",
"url": "https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Securifi_Almond_plus_sec_issues.pdf"
}
]
}

58
2017/8xxx/CVE-2017-8336.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2017-8336",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,38 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of adding new routes to the device. It seems that the POST parameters passed in this request to set up routes on the device can be set in such a way that would result in overflowing the stack set up and allow an attacker to control the $ra register stored on the stack. If the firmware version AL-R096 is dissected using binwalk tool, we obtain a cpio-root archive which contains the filesystem set up on the device that contains all the binaries. The binary \"goahead\" is the one that has the vulnerable function that recieves the values sent by the POST request. If we open this binary in IDA-pro we will notice that this follows a MIPS little endian format. The function sub_00420F38 in IDA pro is identified to be receiving the values sent in the POST request. The POST parameter \"gateway\" allows to overflow the stack and control the $ra register after 1546 characters. The value from this post parameter is then copied on the stack at address 0x00421348 as shown below. This allows an attacker to provide the payload of his/her choice and finally take control of the device."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "BUGTRAQ",
"name": "20190609 Newly releases IoT security issues",
"url": "https://seclists.org/bugtraq/2019/Jun/8"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/153227/Securifi-Almond-2015-Buffer-Overflow-Command-Injection-XSS-CSRF.html",
"url": "http://packetstormsecurity.com/files/153227/Securifi-Almond-2015-Buffer-Overflow-Command-Injection-XSS-CSRF.html"
},
{
"refsource": "MISC",
"name": "https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Securifi_Almond_plus_sec_issues.pdf",
"url": "https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Securifi_Almond_plus_sec_issues.pdf"
}
]
}

5
2017/8xxx/CVE-2017-8834.json
View File

@ -61,6 +61,11 @@
"name": "https://bugzilla.gnome.org/show_bug.cgi?id=782647",
"refsource": "MISC",
"url": "https://bugzilla.gnome.org/show_bug.cgi?id=782647"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1575",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00043.html"
}
]
}

5
2017/8xxx/CVE-2017-8871.json
View File

@ -61,6 +61,11 @@
"name": "42147",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/42147/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1575",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00043.html"
}
]
}

5
2018/19xxx/CVE-2018-19935.json
View File

@ -81,6 +81,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2018/20xxx/CVE-2018-20783.json
View File

@ -86,6 +86,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/10xxx/CVE-2019-10126.json
View File

@ -63,6 +63,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
},

5
2019/11xxx/CVE-2019-11034.json
View File

@ -135,6 +135,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
},

5
2019/11xxx/CVE-2019-11035.json
View File

@ -135,6 +135,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
},

5
2019/11xxx/CVE-2019-11036.json
View File

@ -150,6 +150,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
},

5
2019/11xxx/CVE-2019-11486.json
View File

@ -131,6 +131,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

5
2019/11xxx/CVE-2019-11599.json
View File

@ -136,6 +136,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

5
2019/11xxx/CVE-2019-11815.json
View File

@ -116,6 +116,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

5
2019/11xxx/CVE-2019-11833.json
View File

@ -91,6 +91,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1570",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00039.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

5
2019/11xxx/CVE-2019-11884.json
View File

@ -116,6 +116,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190618 [SECURITY] [DLA 1824-1] linux-4.9 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00011.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

67
2019/12xxx/CVE-2019-12875.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-12875",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Alpine Linux abuild through 3.4.0 allows an unprivileged member of the abuild group to add an untrusted package via a --keys-dir option that causes acceptance of an untrusted signing key."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/sroracle/abuild/commit/4f90ce92778d0ee302e288def75591b96a397c8b",
"refsource": "MISC",
"name": "https://github.com/sroracle/abuild/commit/4f90ce92778d0ee302e288def75591b96a397c8b"
},
{
"url": "https://code.foxkit.us/adelie/packages/commit/15b160780c6eeff7048063c099a7f8757e1d8391",
"refsource": "MISC",
"name": "https://code.foxkit.us/adelie/packages/commit/15b160780c6eeff7048063c099a7f8757e1d8391"
}
]
}
}

5
2019/3xxx/CVE-2019-3846.json
View File

@ -88,6 +88,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1571",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00040.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
},

5
2019/4xxx/CVE-2019-4381.json
View File

@ -39,6 +39,11 @@
"refsource": "XF",
"name": "ibm-i-cve20194381-info-disc (162159)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/162159"
},
{
"refsource": "BID",
"name": "108808",
"url": "http://www.securityfocus.com/bid/108808"
}
]
},

5
2019/5xxx/CVE-2019-5489.json
View File

@ -111,6 +111,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1570",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00039.html"
},
{
"refsource": "BUGTRAQ",
"name": "20190618 [SECURITY] [DSA 4465-1] linux security update",
"url": "https://seclists.org/bugtraq/2019/Jun/26"
}
]
}

5
2019/9xxx/CVE-2019-9020.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9021.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9022.json
View File

@ -91,6 +91,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9023.json
View File

@ -131,6 +131,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9024.json
View File

@ -96,6 +96,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9637.json
View File

@ -106,6 +106,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9638.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9639.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9640.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9641.json
View File

@ -101,6 +101,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}

5
2019/9xxx/CVE-2019-9675.json
View File

@ -86,6 +86,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1572",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1573",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html"
}
]
}