admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 11:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-04-29 15:00:46 +00:00
parent 34a14c1227
commit 81ced98d2a
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
29 changed files with 515 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

58
2018/12xxx/CVE-2018-12384.json
View File

@ -1,17 +1,61 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-12384",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2018-12384",
"ASSIGNER": "security@mozilla.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "NSS",
"product": {
"product_data": [
{
"product_name": "Network Security Services (NSS)",
"version": {
"version_data": [
{
"version_value": "All versions prior to NSS 3.39"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Use of Insufficiently Random Values"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"name": "https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12384",
"url": "https://bugzilla.mozilla.org/show_bug.cgi?id=CVE-2018-12384"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. This results in full malleability of the ClientHello for SSLv2 used for TLS 1.2 in all versions prior to NSS 3.39. This does not impact TLS 1.3."
}
]
}

5
2018/20xxx/CVE-2018-20783.json
View File

@ -71,6 +71,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1256",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00083.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

82
2019/11xxx/CVE-2019-11593.json Normal file
View File

@ -0,0 +1,82 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-11593",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In Adblock Plus before 3.5.2, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/",
"refsource": "MISC",
"name": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/"
},
{
"url": "https://news.ycombinator.com/item?id=19666504",
"refsource": "MISC",
"name": "https://news.ycombinator.com/item?id=19666504"
},
{
"url": "https://adblockplus.org/releases/adblock-plus-352-for-chrome-firefox-and-opera-released",
"refsource": "MISC",
"name": "https://adblockplus.org/releases/adblock-plus-352-for-chrome-firefox-and-opera-released"
},
{
"url": "https://gitlab.com/eyeo/adblockplus/adblockpluschrome/issues/1",
"refsource": "MISC",
"name": "https://gitlab.com/eyeo/adblockplus/adblockpluschrome/issues/1"
},
{
"url": "https://gitlab.com/eyeo/adblockplus/adblockpluscore/issues/4",
"refsource": "MISC",
"name": "https://gitlab.com/eyeo/adblockplus/adblockpluscore/issues/4"
}
]
}
}

72
2019/11xxx/CVE-2019-11594.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-11594",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In AdBlock before 3.45.0, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/",
"refsource": "MISC",
"name": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/"
},
{
"url": "https://news.ycombinator.com/item?id=19666504",
"refsource": "MISC",
"name": "https://news.ycombinator.com/item?id=19666504"
},
{
"url": "https://blog.getadblock.com/adblock-for-chrome-3-45-0-resolving-a-potential-security-risk-b21647a26df6",
"refsource": "MISC",
"name": "https://blog.getadblock.com/adblock-for-chrome-3-45-0-resolving-a-potential-security-risk-b21647a26df6"
}
]
}
}

67
2019/11xxx/CVE-2019-11595.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-11595",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In uBlock before 0.9.5.15, the $rewrite filter option allows filter-list maintainers to run arbitrary code in a client-side session when a web service loads a script for execution using XMLHttpRequest or Fetch, and the script origin has an open redirect."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/",
"refsource": "MISC",
"name": "https://armin.dev/blog/2019/04/adblock-plus-code-injection/"
},
{
"url": "https://news.ycombinator.com/item?id=19666504",
"refsource": "MISC",
"name": "https://news.ycombinator.com/item?id=19666504"
}
]
}
}

72
2019/11xxx/CVE-2019-11596.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-11596",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "In memcached before 1.5.14, a NULL pointer dereference was found in the \"lru mode\" and \"lru temp_ttl\" commands. This causes a denial of service when parsing crafted lru command messages in process_lru_command in memcached.c."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/memcached/memcached/issues/474",
"refsource": "MISC",
"name": "https://github.com/memcached/memcached/issues/474"
},
{
"url": "https://github.com/memcached/memcached/commit/d35334f368817a77a6bd1f33c6a5676b2c402c02",
"refsource": "MISC",
"name": "https://github.com/memcached/memcached/commit/d35334f368817a77a6bd1f33c6a5676b2c402c02"
},
{
"url": "https://github.com/memcached/memcached/compare/ee1cfe3...50bdc9f",
"refsource": "MISC",
"name": "https://github.com/memcached/memcached/compare/ee1cfe3...50bdc9f"
}
]
}
}

5
2019/2xxx/CVE-2019-2566.json
View File

@ -66,6 +66,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K58502649",
"url": "https://support.f5.com/csp/article/K58502649"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2581.json
View File

@ -66,6 +66,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K58502649",
"url": "https://support.f5.com/csp/article/K58502649"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2592.json
View File

@ -66,6 +66,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K54470776",
"url": "https://support.f5.com/csp/article/K54470776"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2614.json
View File

@ -70,6 +70,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K52514501",
"url": "https://support.f5.com/csp/article/K52514501"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2627.json
View File

@ -70,6 +70,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K32798641",
"url": "https://support.f5.com/csp/article/K32798641"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2628.json
View File

@ -66,6 +66,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K32798641",
"url": "https://support.f5.com/csp/article/K32798641"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2632.json
View File

@ -66,6 +66,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K32798641",
"url": "https://support.f5.com/csp/article/K32798641"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/2xxx/CVE-2019-2683.json
View File

@ -70,6 +70,11 @@
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K28312671",
"url": "https://support.f5.com/csp/article/K28312671"
},
{
"refsource": "UBUNTU",
"name": "USN-3957-1",
"url": "https://usn.ubuntu.com/3957-1/"
}
]
}

5
2019/3xxx/CVE-2019-3840.json
View File

@ -63,6 +63,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1288",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00101.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1294",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00105.html"
}
]
},

5
2019/3xxx/CVE-2019-3880.json
View File

@ -84,6 +84,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2019-db21b5f1d2",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6354GALK73CZWQKFUG7AWB6EIEGFMF62/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1292",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00106.html"
}
]
},

5
2019/3xxx/CVE-2019-3886.json
View File

@ -53,6 +53,11 @@
"refsource": "BID",
"name": "107777",
"url": "http://www.securityfocus.com/bid/107777"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1294",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00105.html"
}
]
},

63
2019/5xxx/CVE-2019-5429.json
View File

@ -1,17 +1,66 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-5429",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-5429",
"ASSIGNER": "support@hackerone.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "FileZilla",
"product": {
"product_data": [
{
"product_name": "FileZilla",
"version": {
"version_data": [
{
"version_value": "3.41.0-rc1"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Untrusted Search Path (CWE-426)"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://www.tenable.com/security/research/tra-2019-14",
"url": "https://www.tenable.com/security/research/tra-2019-14"
},
{
"refsource": "MISC",
"name": "https://svn.filezilla-project.org/filezilla?view=revision&revision=9112",
"url": "https://svn.filezilla-project.org/filezilla?view=revision&revision=9112"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory."
}
]
}

5
2019/9xxx/CVE-2019-9020.json
View File

@ -91,6 +91,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1256",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00083.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9021.json
View File

@ -91,6 +91,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1256",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00083.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9023.json
View File

@ -121,6 +121,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1256",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00083.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9024.json
View File

@ -86,6 +86,11 @@
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1256",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00083.html"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9637.json
View File

@ -86,6 +86,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9638.json
View File

@ -81,6 +81,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9639.json
View File

@ -81,6 +81,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9640.json
View File

@ -81,6 +81,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9641.json
View File

@ -86,6 +86,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9675.json
View File

@ -71,6 +71,11 @@
"refsource": "UBUNTU",
"name": "USN-3922-3",
"url": "https://usn.ubuntu.com/3922-3/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2019:1293",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html"
}
]
}

5
2019/9xxx/CVE-2019-9928.json
View File

@ -71,6 +71,11 @@
"refsource": "MLIST",
"name": "[debian-lts-announce] 20190428 [SECURITY] [DLA 1769-1] gst-plugins-base0.10 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00030.html"
},
{
"refsource": "UBUNTU",
"name": "USN-3958-1",
"url": "https://usn.ubuntu.com/3958-1/"
}
]
}