admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-12 02:05:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #1837 from msrcgit/msrc/march5

Browse Source 
March patch tuesday batch 5
This commit is contained in:
CVE Team 2019-04-08 22:21:52 -04:00 committed by GitHub
commit 74fb6b5601
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
11 changed files with 881 additions and 143 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

78
2019/0xxx/CVE-2019-0770.json
View File

@ -1,18 +1,70 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0770",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0770",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Microsoft Edge",
"version" : {
"version_data" : [
{"version_value" : "Windows 10 for 32-bit Systems"},
{"version_value" : "Windows 10 for x64-based Systems"},
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1803 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for ARM64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0771, CVE-2019-0773, CVE-2019-0783."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Remote Code Execution"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0770"
}
]
}
}

90
2019/0xxx/CVE-2019-0771.json
View File

@ -1,18 +1,82 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0771",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0771",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Microsoft Edge",
"version" : {
"version_data" : [
{"version_value" : "Windows 10 for 32-bit Systems"},
{"version_value" : "Windows 10 for x64-based Systems"},
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1803 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for ARM64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1809 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for ARM64-based Systems"},
{"version_value" : "Windows Server 2019"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "ChakraCore",
"version" : {
"version_data" : [
{"version_value" : ""}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0770, CVE-2019-0773, CVE-2019-0783."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Remote Code Execution"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0771"
}
]
}
}

110
2019/0xxx/CVE-2019-0772.json
View File

@ -1,18 +1,102 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0772",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0772",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Windows",
"version" : {
"version_data" : [
{"version_value" : "7 for 32-bit Systems Service Pack 1"},
{"version_value" : "7 for x64-based Systems Service Pack 1"},
{"version_value" : "8.1 for 32-bit systems"},
{"version_value" : "8.1 for x64-based systems"},
{"version_value" : "RT 8.1"},
{"version_value" : "10 for 32-bit Systems"},
{"version_value" : "10 for x64-based Systems"},
{"version_value" : "10 Version 1607 for 32-bit Systems"},
{"version_value" : "10 Version 1607 for x64-based Systems"},
{"version_value" : "10 Version 1703 for 32-bit Systems"},
{"version_value" : "10 Version 1703 for x64-based Systems"},
{"version_value" : "10 Version 1709 for 32-bit Systems"},
{"version_value" : "10 Version 1709 for x64-based Systems"},
{"version_value" : "10 Version 1803 for 32-bit Systems"},
{"version_value" : "10 Version 1803 for x64-based Systems"},
{"version_value" : "10 Version 1803 for ARM64-based Systems"},
{"version_value" : "10 Version 1809 for 32-bit Systems"},
{"version_value" : "10 Version 1809 for x64-based Systems"},
{"version_value" : "10 Version 1809 for ARM64-based Systems"},
{"version_value" : "10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "Windows Server",
"version" : {
"version_data" : [
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"},
{"version_value" : "2008 R2 for Itanium-Based Systems Service Pack 1"},
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2 (Core installation)"},
{"version_value" : "2012"},
{"version_value" : "2012 (Core installation)"},
{"version_value" : "2012 R2"},
{"version_value" : "2012 R2 (Core installation)"},
{"version_value" : "2016"},
{"version_value" : "2016 (Core installation)"},
{"version_value" : "version 1709 (Core Installation)"},
{"version_value" : "version 1803 (Core Installation)"},
{"version_value" : "2019"},
{"version_value" : "2019 (Core installation)"},
{"version_value" : "2008 for Itanium-Based Systems Service Pack 2"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2 (Core installation)"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0665, CVE-2019-0666, CVE-2019-0667."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Remote Code Execution"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0772"
}
]
}
}

90
2019/0xxx/CVE-2019-0773.json
View File

@ -1,18 +1,82 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0773",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0773",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Microsoft Edge",
"version" : {
"version_data" : [
{"version_value" : "Windows 10 for 32-bit Systems"},
{"version_value" : "Windows 10 for x64-based Systems"},
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1803 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for ARM64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1809 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for ARM64-based Systems"},
{"version_value" : "Windows Server 2019"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "ChakraCore",
"version" : {
"version_data" : [
{"version_value" : ""}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0609, CVE-2019-0639, CVE-2019-0680, CVE-2019-0769, CVE-2019-0770, CVE-2019-0771, CVE-2019-0783."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Remote Code Execution"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0773"
}
]
}
}

110
2019/0xxx/CVE-2019-0774.json
View File

@ -1,18 +1,102 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0774",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0774",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Windows",
"version" : {
"version_data" : [
{"version_value" : "7 for 32-bit Systems Service Pack 1"},
{"version_value" : "7 for x64-based Systems Service Pack 1"},
{"version_value" : "8.1 for 32-bit systems"},
{"version_value" : "8.1 for x64-based systems"},
{"version_value" : "RT 8.1"},
{"version_value" : "10 for 32-bit Systems"},
{"version_value" : "10 for x64-based Systems"},
{"version_value" : "10 Version 1607 for 32-bit Systems"},
{"version_value" : "10 Version 1607 for x64-based Systems"},
{"version_value" : "10 Version 1703 for 32-bit Systems"},
{"version_value" : "10 Version 1703 for x64-based Systems"},
{"version_value" : "10 Version 1709 for 32-bit Systems"},
{"version_value" : "10 Version 1709 for x64-based Systems"},
{"version_value" : "10 Version 1803 for 32-bit Systems"},
{"version_value" : "10 Version 1803 for x64-based Systems"},
{"version_value" : "10 Version 1803 for ARM64-based Systems"},
{"version_value" : "10 Version 1809 for 32-bit Systems"},
{"version_value" : "10 Version 1809 for x64-based Systems"},
{"version_value" : "10 Version 1809 for ARM64-based Systems"},
{"version_value" : "10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "Windows Server",
"version" : {
"version_data" : [
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"},
{"version_value" : "2008 R2 for Itanium-Based Systems Service Pack 1"},
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2 (Core installation)"},
{"version_value" : "2012"},
{"version_value" : "2012 (Core installation)"},
{"version_value" : "2012 R2"},
{"version_value" : "2012 R2 (Core installation)"},
{"version_value" : "2016"},
{"version_value" : "2016 (Core installation)"},
{"version_value" : "version 1709 (Core Installation)"},
{"version_value" : "version 1803 (Core Installation)"},
{"version_value" : "2019"},
{"version_value" : "2019 (Core installation)"},
{"version_value" : "2008 for Itanium-Based Systems Service Pack 2"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2 (Core installation)"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0614."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Information Disclosure"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0774"
}
]
}
}

110
2019/0xxx/CVE-2019-0775.json
View File

@ -1,18 +1,102 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0775",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0775",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Windows",
"version" : {
"version_data" : [
{"version_value" : "7 for 32-bit Systems Service Pack 1"},
{"version_value" : "7 for x64-based Systems Service Pack 1"},
{"version_value" : "8.1 for 32-bit systems"},
{"version_value" : "8.1 for x64-based systems"},
{"version_value" : "RT 8.1"},
{"version_value" : "10 for 32-bit Systems"},
{"version_value" : "10 for x64-based Systems"},
{"version_value" : "10 Version 1607 for 32-bit Systems"},
{"version_value" : "10 Version 1607 for x64-based Systems"},
{"version_value" : "10 Version 1703 for 32-bit Systems"},
{"version_value" : "10 Version 1703 for x64-based Systems"},
{"version_value" : "10 Version 1709 for 32-bit Systems"},
{"version_value" : "10 Version 1709 for x64-based Systems"},
{"version_value" : "10 Version 1803 for 32-bit Systems"},
{"version_value" : "10 Version 1803 for x64-based Systems"},
{"version_value" : "10 Version 1803 for ARM64-based Systems"},
{"version_value" : "10 Version 1809 for 32-bit Systems"},
{"version_value" : "10 Version 1809 for x64-based Systems"},
{"version_value" : "10 Version 1809 for ARM64-based Systems"},
{"version_value" : "10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "Windows Server",
"version" : {
"version_data" : [
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1 (Core installation)"},
{"version_value" : "2008 R2 for Itanium-Based Systems Service Pack 1"},
{"version_value" : "2008 R2 for x64-based Systems Service Pack 1"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2 (Core installation)"},
{"version_value" : "2012"},
{"version_value" : "2012 (Core installation)"},
{"version_value" : "2012 R2"},
{"version_value" : "2012 R2 (Core installation)"},
{"version_value" : "2016"},
{"version_value" : "2016 (Core installation)"},
{"version_value" : "version 1709 (Core Installation)"},
{"version_value" : "version 1803 (Core Installation)"},
{"version_value" : "2019"},
{"version_value" : "2019 (Core installation)"},
{"version_value" : "2008 for Itanium-Based Systems Service Pack 2"},
{"version_value" : "2008 for 32-bit Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2"},
{"version_value" : "2008 for x64-based Systems Service Pack 2 (Core installation)"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0702, CVE-2019-0755, CVE-2019-0767, CVE-2019-0782."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Information Disclosure"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0775"
}
]
}
}

93
2019/0xxx/CVE-2019-0776.json
View File

@ -1,18 +1,85 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0776",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0776",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Windows",
"version" : {
"version_data" : [
{"version_value" : "10 for 32-bit Systems"},
{"version_value" : "10 for x64-based Systems"},
{"version_value" : "10 Version 1607 for 32-bit Systems"},
{"version_value" : "10 Version 1607 for x64-based Systems"},
{"version_value" : "10 Version 1703 for 32-bit Systems"},
{"version_value" : "10 Version 1703 for x64-based Systems"},
{"version_value" : "10 Version 1709 for 32-bit Systems"},
{"version_value" : "10 Version 1709 for x64-based Systems"},
{"version_value" : "10 Version 1803 for 32-bit Systems"},
{"version_value" : "10 Version 1803 for x64-based Systems"},
{"version_value" : "10 Version 1803 for ARM64-based Systems"},
{"version_value" : "10 Version 1809 for 32-bit Systems"},
{"version_value" : "10 Version 1809 for x64-based Systems"},
{"version_value" : "10 Version 1809 for ARM64-based Systems"},
{"version_value" : "10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "Windows Server",
"version" : {
"version_data" : [
{"version_value" : "2016"},
{"version_value" : "2016 (Core installation)"},
{"version_value" : "version 1709 (Core Installation)"},
{"version_value" : "version 1803 (Core Installation)"},
{"version_value" : "2019"},
{"version_value" : "2019 (Core installation)"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Information Disclosure"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0776"
}
]
}
}

75
2019/0xxx/CVE-2019-0777.json
View File

@ -1,18 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0777",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0777",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Team Foundation Server 2018",
"version" : {
"version_data" : [
{"version_value" : "Update 1.2"},
{"version_value" : "Update 3.2"}
]
}
}
},
{
"product_name" : "Team Foundation Server",
"version" : {
"version_data" : [
{"version_value" : "2017 Update 3.1"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Spoofing"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0777"
}
]
}
}

74
2019/0xxx/CVE-2019-0778.json
View File

@ -1,18 +1,66 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0778",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0778",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Microsoft SharePoint Foundation",
"version" : {
"version_data" : [
{"version_value" : "2013 Service Pack 1"}
]
}
}
},
{
"product_name" : "Microsoft SharePoint Enterprise Server",
"version" : {
"version_data" : [
{"version_value" : "2016"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka 'Microsoft Office SharePoint XSS Vulnerability'."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Tampering"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0778"
}
]
}
}

73
2019/0xxx/CVE-2019-0779.json
View File

@ -1,18 +1,65 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0779",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0779",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Microsoft Edge",
"version" : {
"version_data" : [
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka 'Microsoft Edge Memory Corruption Vulnerability'."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Information Disclosure"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0779"
}
]
}
}

121
2019/0xxx/CVE-2019-0780.json
View File

@ -1,18 +1,113 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-0780",
"STATE": "RESERVED"
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ASSIGNER" : "secure@microsoft.com",
"ID" : "CVE-2019-0780",
"STATE" : "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"affects" : {
"vendor" : {
"vendor_data" : [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
"product" : {
"product_data" : [
{
"product_name" : "Internet Explorer 11",
"version" : {
"version_data" : [
{"version_value" : "Windows 7 for 32-bit Systems Service Pack 1"},
{"version_value" : "Windows 7 for x64-based Systems Service Pack 1"},
{"version_value" : "Windows Server 2008 R2 for x64-based Systems Service Pack 1"},
{"version_value" : "Windows 8.1 for 32-bit systems"},
{"version_value" : "Windows 8.1 for x64-based systems"},
{"version_value" : "Windows Server 2012 R2"},
{"version_value" : "Windows RT 8.1"},
{"version_value" : "Windows 10 for 32-bit Systems"},
{"version_value" : "Windows 10 for x64-based Systems"},
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1803 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for ARM64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1809 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for ARM64-based Systems"},
{"version_value" : "Windows Server 2019"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
},
{
"product_name" : "Internet Explorer 10",
"version" : {
"version_data" : [
{"version_value" : "Windows Server 2012"}
]
}
},
{
"product_name" : "Microsoft Edge",
"version" : {
"version_data" : [
{"version_value" : "Windows 10 for 32-bit Systems"},
{"version_value" : "Windows 10 for x64-based Systems"},
{"version_value" : "Windows Server 2016"},
{"version_value" : "Windows 10 Version 1607 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1607 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1703 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1703 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1709 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1709 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1803 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1803 for ARM64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for 32-bit Systems"},
{"version_value" : "Windows 10 Version 1809 for x64-based Systems"},
{"version_value" : "Windows 10 Version 1809 for ARM64-based Systems"},
{"version_value" : "Windows Server 2019"},
{"version_value" : "Windows 10 Version 1709 for ARM64-based Systems"}
]
}
}
]
},
"vendor_name" : "Microsoft"
}
]
}
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Remote Code Execution"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0780"
}
]
}
}