From 8dffd9e5ed51b56bc3e8fe8c9faa96536976d830 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Tue, 18 Feb 2020 22:01:09 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/7xxx/CVE-2020-7796.json | 59 ++++++++++++++++++++++++++++++++---- 2020/8xxx/CVE-2020-8633.json | 56 ++++++++++++++++++++++++++++++---- 2020/8xxx/CVE-2020-8997.json | 2 +- 3 files changed, 104 insertions(+), 13 deletions(-) diff --git a/2020/7xxx/CVE-2020-7796.json b/2020/7xxx/CVE-2020-7796.json index 5fc935d25c5..bcb6b1fd086 100644 --- a/2020/7xxx/CVE-2020-7796.json +++ b/2020/7xxx/CVE-2020-7796.json @@ -1,18 +1,65 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-7796", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-7796", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled." } ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P7", + "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P7" + } + ] + }, + "source": { + "discovery": "INTERNAL" } } \ No newline at end of file diff --git a/2020/8xxx/CVE-2020-8633.json b/2020/8xxx/CVE-2020-8633.json index 69ec7827c96..9c6fc6213f9 100644 --- a/2020/8xxx/CVE-2020-8633.json +++ b/2020/8xxx/CVE-2020-8633.json @@ -1,17 +1,61 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-8633", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-8633", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An issue was discovered in Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7. When grantors revoked a shared calendar in Outlook, the calendar stayed mounted and accessible." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P7", + "url": "https://wiki.zimbra.com/wiki/Zimbra_Releases/8.8.15/P7" } ] } diff --git a/2020/8xxx/CVE-2020-8997.json b/2020/8xxx/CVE-2020-8997.json index 529073b1542..4a161695823 100644 --- a/2020/8xxx/CVE-2020-8997.json +++ b/2020/8xxx/CVE-2020-8997.json @@ -34,7 +34,7 @@ "description_data": [ { "lang": "eng", - "value": "Abbott FreeStyle Libre 14-day before February 2020 and FreeStyle Libre 2 before February 2020 allow remote attackers to enable write access via a specific NFC unlock command." + "value": "Older generation Abbott FreeStyle Libre sensors allow remote attackers within close proximity to enable write access to memory via a specific NFC unlock command. NOTE: The vulnerability is not present in the FreeStyle Libre 14-day in the U.S (announced in August 2018) and FreeStyle Libre 2 outside the U.S (announced in October 2018)." } ] },