admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-10-28 12:01:05 +00:00
parent 58efcfcf8b
commit 7e3981ccc8
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
10 changed files with 160 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2021/35xxx/CVE-2021-35212.json
View File

@ -94,6 +94,11 @@
"refsource": "MISC",
"url": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35212",
"name": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35212"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1243/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1243/"
}
]
},

5
2021/35xxx/CVE-2021-35213.json
View File

@ -96,6 +96,11 @@
"refsource": "MISC",
"url": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35213",
"name": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35213"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1244/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1244/"
}
]
},

5
2021/35xxx/CVE-2021-35215.json
View File

@ -96,6 +96,11 @@
"refsource": "MISC",
"url": "https://documentation.solarwinds.co/enm/success_center/orionplatform/content/release_notes/orion_platform_2020-2-6_release_notes.htm",
"name": "https://documentation.solarwinds.co/enm/success_center/orionplatform/content/release_notes/orion_platform_2020-2-6_release_notes.htm"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1245/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1245/"
}
]
},

5
2021/35xxx/CVE-2021-35216.json
View File

@ -90,6 +90,11 @@
"refsource": "MISC",
"url": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35216",
"name": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35216"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1246/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1246/"
}
]
},

5
2021/35xxx/CVE-2021-35217.json
View File

@ -95,6 +95,11 @@
"refsource": "MISC",
"url": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35217",
"name": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35217"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1247/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1247/"
}
]
},

5
2021/35xxx/CVE-2021-35218.json
View File

@ -90,6 +90,11 @@
"refsource": "MISC",
"url": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35218",
"name": "https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35218"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1248/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1248/"
}
]
},

66
2021/37xxx/CVE-2021-37748.json
View File

@ -1,17 +1,71 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2021-37748",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2021-37748",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. There are default weak credentials that can be used to authenticate."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801",
"refsource": "MISC",
"name": "http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801"
},
{
"refsource": "MISC",
"name": "https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/",
"url": "https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/"
},
{
"refsource": "MISC",
"name": "https://github.com/SECFORCE/CVE-2021-37748",
"url": "https://github.com/SECFORCE/CVE-2021-37748"
}
]
}

66
2021/37xxx/CVE-2021-37915.json
View File

@ -1,17 +1,71 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2021-37915",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2021-37915",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered on the Grandstream HT801 Analog Telephone Adaptor before 1.0.29.8. From the limited configuration shell, it is possible to set the malicious gdb_debug_server variable. As a result, after a reboot, the device downloads and executes malicious scripts from an attacker-defined host."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801",
"refsource": "MISC",
"name": "http://www.grandstream.com/products/gateways-and-atas/analog-telephone-adaptors/product/ht801"
},
{
"url": "http://firmware.grandstream.com/BETA/Release_Note_HT80x_1.0.29.8.pdf",
"refsource": "MISC",
"name": "http://firmware.grandstream.com/BETA/Release_Note_HT80x_1.0.29.8.pdf"
},
{
"refsource": "MISC",
"name": "https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/",
"url": "https://www.secforce.com/blog/exploiting-grandstream-ht801-ata-cve-2021-37748-cve-2021-37915/"
}
]
}

5
2021/40xxx/CVE-2021-40725.json
View File

@ -87,6 +87,11 @@
"refsource": "MISC",
"url": "https://helpx.adobe.com/security/products/acrobat/apsb21-55.html",
"name": "https://helpx.adobe.com/security/products/acrobat/apsb21-55.html"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1250/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1250/"
}
]
},

5
2021/40xxx/CVE-2021-40726.json
View File

@ -87,6 +87,11 @@
"refsource": "MISC",
"url": "https://helpx.adobe.com/security/products/acrobat/apsb21-55.html",
"name": "https://helpx.adobe.com/security/products/acrobat/apsb21-55.html"
},
{
"refsource": "MISC",
"name": "https://www.zerodayinitiative.com/advisories/ZDI-21-1249/",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-21-1249/"
}
]
},