From 75caed5c411da20aa965c6fd6d5195f53f06d17f Mon Sep 17 00:00:00 2001 From: CVE Team Date: Sat, 14 Mar 2020 01:01:14 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2013/2xxx/CVE-2013-2165.json | 5 +++ 2015/0xxx/CVE-2015-0279.json | 5 +++ 2018/12xxx/CVE-2018-12532.json | 5 +++ 2018/12xxx/CVE-2018-12533.json | 5 +++ 2018/14xxx/CVE-2018-14667.json | 5 +++ 2020/10xxx/CVE-2020-10564.json | 5 +++ 2020/10xxx/CVE-2020-10565.json | 62 ++++++++++++++++++++++++++++++++++ 2020/10xxx/CVE-2020-10566.json | 62 ++++++++++++++++++++++++++++++++++ 8 files changed, 154 insertions(+) create mode 100644 2020/10xxx/CVE-2020-10565.json create mode 100644 2020/10xxx/CVE-2020-10566.json diff --git a/2013/2xxx/CVE-2013-2165.json b/2013/2xxx/CVE-2013-2165.json index fb66ff79f09..c55e03b6d25 100644 --- a/2013/2xxx/CVE-2013-2165.json +++ b/2013/2xxx/CVE-2013-2165.json @@ -101,6 +101,11 @@ "refsource": "MISC", "name": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html", "url": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html" + }, + { + "refsource": "FULLDISC", + "name": "20200313 RichFaces exploitation toolkit", + "url": "http://seclists.org/fulldisclosure/2020/Mar/21" } ] } diff --git a/2015/0xxx/CVE-2015-0279.json b/2015/0xxx/CVE-2015-0279.json index f067429737b..03064d9654b 100644 --- a/2015/0xxx/CVE-2015-0279.json +++ b/2015/0xxx/CVE-2015-0279.json @@ -86,6 +86,11 @@ "refsource": "MISC", "name": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html", "url": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html" + }, + { + "refsource": "FULLDISC", + "name": "20200313 RichFaces exploitation toolkit", + "url": "http://seclists.org/fulldisclosure/2020/Mar/21" } ] } diff --git a/2018/12xxx/CVE-2018-12532.json b/2018/12xxx/CVE-2018-12532.json index 77af1eb3335..6a81f52c6b2 100644 --- a/2018/12xxx/CVE-2018-12532.json +++ b/2018/12xxx/CVE-2018-12532.json @@ -61,6 +61,11 @@ "name": "https://codewhitesec.blogspot.com/2018/05/poor-richfaces.html", "refsource": "MISC", "url": "https://codewhitesec.blogspot.com/2018/05/poor-richfaces.html" + }, + { + "refsource": "FULLDISC", + "name": "20200313 RichFaces exploitation toolkit", + "url": "http://seclists.org/fulldisclosure/2020/Mar/21" } ] } diff --git a/2018/12xxx/CVE-2018-12533.json b/2018/12xxx/CVE-2018-12533.json index d6d632d3454..0b365ed94f8 100644 --- a/2018/12xxx/CVE-2018-12533.json +++ b/2018/12xxx/CVE-2018-12533.json @@ -81,6 +81,11 @@ "name": "RHSA-2018:2930", "refsource": "REDHAT", "url": "https://access.redhat.com/errata/RHSA-2018:2930" + }, + { + "refsource": "FULLDISC", + "name": "20200313 RichFaces exploitation toolkit", + "url": "http://seclists.org/fulldisclosure/2020/Mar/21" } ] } diff --git a/2018/14xxx/CVE-2018-14667.json b/2018/14xxx/CVE-2018-14667.json index 85809527f43..3ffe8b24d15 100644 --- a/2018/14xxx/CVE-2018-14667.json +++ b/2018/14xxx/CVE-2018-14667.json @@ -96,6 +96,11 @@ "refsource": "MISC", "name": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html", "url": "http://packetstormsecurity.com/files/156663/Richsploit-RichFaces-Exploitation-Toolkit.html" + }, + { + "refsource": "FULLDISC", + "name": "20200313 RichFaces exploitation toolkit", + "url": "http://seclists.org/fulldisclosure/2020/Mar/21" } ] } diff --git a/2020/10xxx/CVE-2020-10564.json b/2020/10xxx/CVE-2020-10564.json index 106a2f8d75d..71bc5f49e96 100644 --- a/2020/10xxx/CVE-2020-10564.json +++ b/2020/10xxx/CVE-2020-10564.json @@ -61,6 +61,11 @@ "url": "https://github.com/beerpwn/CVE/tree/master/WP-File-Upload_disclosure_report/", "refsource": "MISC", "name": "https://github.com/beerpwn/CVE/tree/master/WP-File-Upload_disclosure_report/" + }, + { + "refsource": "MISC", + "name": "https://wpvulndb.com/vulnerabilities/10132", + "url": "https://wpvulndb.com/vulnerabilities/10132" } ] } diff --git a/2020/10xxx/CVE-2020-10565.json b/2020/10xxx/CVE-2020-10565.json new file mode 100644 index 00000000000..3c827936425 --- /dev/null +++ b/2020/10xxx/CVE-2020-10565.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2020-10565", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, does not validate the address provided as part of a memrw command (read_* or write_*) by a guest through a grub2.cfg file. This allows an untrusted guest to perform arbitrary read or write operations in the context of the grub-bhyve process, resulting in code execution as root on the host OS." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://svnweb.freebsd.org/ports?view=revision&revision=525916", + "refsource": "MISC", + "name": "https://svnweb.freebsd.org/ports?view=revision&revision=525916" + } + ] + } +} \ No newline at end of file diff --git a/2020/10xxx/CVE-2020-10566.json b/2020/10xxx/CVE-2020-10566.json new file mode 100644 index 00000000000..5ac9cf9b1f8 --- /dev/null +++ b/2020/10xxx/CVE-2020-10566.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2020-10566", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, mishandles font loading by a guest through a grub2.cfg file, leading to a buffer overflow." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://svnweb.freebsd.org/ports?view=revision&revision=525916", + "refsource": "MISC", + "name": "https://svnweb.freebsd.org/ports?view=revision&revision=525916" + } + ] + } +} \ No newline at end of file