From 7b5d9dc8e8e92a3ad3d9c027f1e8bd1046ef22b1 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 16 Dec 2020 08:02:04 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/35xxx/CVE-2020-35473.json | 18 ++++++++++ 2020/35xxx/CVE-2020-35474.json | 18 ++++++++++ 2020/35xxx/CVE-2020-35475.json | 18 ++++++++++ 2020/35xxx/CVE-2020-35476.json | 62 ++++++++++++++++++++++++++++++++++ 2020/5xxx/CVE-2020-5682.json | 15 +++++--- 2020/5xxx/CVE-2020-5683.json | 15 +++++--- 6 files changed, 138 insertions(+), 8 deletions(-) create mode 100644 2020/35xxx/CVE-2020-35473.json create mode 100644 2020/35xxx/CVE-2020-35474.json create mode 100644 2020/35xxx/CVE-2020-35475.json create mode 100644 2020/35xxx/CVE-2020-35476.json diff --git a/2020/35xxx/CVE-2020-35473.json b/2020/35xxx/CVE-2020-35473.json new file mode 100644 index 00000000000..ebda2754f34 --- /dev/null +++ b/2020/35xxx/CVE-2020-35473.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-35473", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2020/35xxx/CVE-2020-35474.json b/2020/35xxx/CVE-2020-35474.json new file mode 100644 index 00000000000..27b540bcccc --- /dev/null +++ b/2020/35xxx/CVE-2020-35474.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-35474", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2020/35xxx/CVE-2020-35475.json b/2020/35xxx/CVE-2020-35475.json new file mode 100644 index 00000000000..8e8ae1ff8a7 --- /dev/null +++ b/2020/35xxx/CVE-2020-35475.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-35475", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2020/35xxx/CVE-2020-35476.json b/2020/35xxx/CVE-2020-35476.json new file mode 100644 index 00000000000..3aa51d9040b --- /dev/null +++ b/2020/35xxx/CVE-2020-35476.json @@ -0,0 +1,62 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2020-35476", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A remote code execution vulnerability occurs in OpenTSDB through 2.4.0 via command injection in the yrange parameter. The yrange value is written to a gnuplot file in the /tmp directory. This file is then executed via the mygnuplot.sh shell script. (tsd/GraphHandler.java attempted to prevent command injections by blocking backticks but this is insufficient.)" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/OpenTSDB/opentsdb/issues/2051", + "refsource": "MISC", + "name": "https://github.com/OpenTSDB/opentsdb/issues/2051" + } + ] + } +} \ No newline at end of file diff --git a/2020/5xxx/CVE-2020-5682.json b/2020/5xxx/CVE-2020-5682.json index 2adf4fd76e0..4ad2f39fb9b 100644 --- a/2020/5xxx/CVE-2020-5682.json +++ b/2020/5xxx/CVE-2020-5682.json @@ -4,7 +4,8 @@ "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2020-5682", - "ASSIGNER": "vultures@jpcert.or.jp" + "ASSIGNER": "vultures@jpcert.or.jp", + "STATE": "PUBLIC" }, "affects": { "vendor": { @@ -44,13 +45,19 @@ "references": { "reference_data": [ { - "url": "https://hub.docker.com/r/weseek/growi/" + "url": "https://github.com/weseek/growi", + "refsource": "MISC", + "name": "https://github.com/weseek/growi" }, { - "url": "https://github.com/weseek/growi" + "url": "https://hub.docker.com/r/weseek/growi/", + "refsource": "MISC", + "name": "https://hub.docker.com/r/weseek/growi/" }, { - "url": "https://jvn.jp/en/jp/JVN94169589/index.html" + "url": "https://jvn.jp/en/jp/JVN94169589/index.html", + "refsource": "MISC", + "name": "https://jvn.jp/en/jp/JVN94169589/index.html" } ] }, diff --git a/2020/5xxx/CVE-2020-5683.json b/2020/5xxx/CVE-2020-5683.json index fa2364b86c6..b9e078d0354 100644 --- a/2020/5xxx/CVE-2020-5683.json +++ b/2020/5xxx/CVE-2020-5683.json @@ -4,7 +4,8 @@ "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2020-5683", - "ASSIGNER": "vultures@jpcert.or.jp" + "ASSIGNER": "vultures@jpcert.or.jp", + "STATE": "PUBLIC" }, "affects": { "vendor": { @@ -44,13 +45,19 @@ "references": { "reference_data": [ { - "url": "https://hub.docker.com/r/weseek/growi/" + "url": "https://github.com/weseek/growi", + "refsource": "MISC", + "name": "https://github.com/weseek/growi" }, { - "url": "https://github.com/weseek/growi" + "url": "https://hub.docker.com/r/weseek/growi/", + "refsource": "MISC", + "name": "https://hub.docker.com/r/weseek/growi/" }, { - "url": "https://jvn.jp/en/jp/JVN94169589/index.html" + "url": "https://jvn.jp/en/jp/JVN94169589/index.html", + "refsource": "MISC", + "name": "https://jvn.jp/en/jp/JVN94169589/index.html" } ] },