admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-05 18:28:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-10-01 17:01:38 +00:00
parent a05a52fb5e
commit 9618554f15
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
12 changed files with 305 additions and 45 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
2017/5xxx/CVE-2017-5669.json
View File

@ -72,11 +72,6 @@
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/96754"
},
{
"name": "https://github.com/torvalds/linux/commit/e1d35d4dc7f089e6c9c080d556feedf9c706f0c7",
"refsource": "CONFIRM",
"url": "https://github.com/torvalds/linux/commit/e1d35d4dc7f089e6c9c080d556feedf9c706f0c7"
},
{
"name": "DSA-3804",
"refsource": "DEBIAN",
@ -86,6 +81,16 @@
"name": "https://bugzilla.kernel.org/show_bug.cgi?id=192931",
"refsource": "MISC",
"url": "https://bugzilla.kernel.org/show_bug.cgi?id=192931"
},
{
"refsource": "MISC",
"name": "https://github.com/torvalds/linux/commit/95e91b831f87ac8e1f8ed50c14d709089b4e01b8",
"url": "https://github.com/torvalds/linux/commit/95e91b831f87ac8e1f8ed50c14d709089b4e01b8"
},
{
"refsource": "MISC",
"name": "https://github.com/torvalds/linux/commit/e1d35d4dc7f089e6c9c080d556feedf9c706f0c7",
"url": "https://github.com/torvalds/linux/commit/e1d35d4dc7f089e6c9c080d556feedf9c706f0c7"
}
]
}

5
2018/7xxx/CVE-2018-7047.json
View File

@ -57,11 +57,6 @@
"refsource": "MISC",
"url": "https://www.wowza.com/docs/wowza-streaming-engine-4-7-1-release-notes"
},
{
"name": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/master/wowza-streaming-engine/CVE-2018-7047.txt",
"refsource": "MISC",
"url": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/master/wowza-streaming-engine/CVE-2018-7047.txt"
},
{
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/main/wowza-streaming-engine/CVE-2018-7047.txt",

5
2018/7xxx/CVE-2018-7049.json
View File

@ -57,11 +57,6 @@
"refsource": "MISC",
"url": "https://www.wowza.com/docs/wowza-streaming-engine-4-7-1-release-notes"
},
{
"name": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/master/wowza-streaming-engine/CVE-2018-7049.txt",
"refsource": "MISC",
"url": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/master/wowza-streaming-engine/CVE-2018-7049.txt"
},
{
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/WowzaMediaSystems/public_cve/main/wowza-streaming-engine/CVE-2018-7049.txt",

61
2019/19xxx/CVE-2019-19393.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-19393",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2019-19393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "The Web application on Rittal CMC PU III 7030.000 V3.00 V3.11.00_2 to V3.15.70_4 devices fails to sanitize user input on the system configurations page. This allows an attacker to backdoor the device with HTML and browser-interpreted content (such as JavaScript or other client-side scripts) as the content is always displayed after and before login. Persistent XSS allows an attacker to modify displayed content or to change the victim's information. Successful exploitation requires access to the web management interface, either with valid credentials or a hijacked session."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.rittal.us/monitoring-security/cmc-iii.html",
"refsource": "MISC",
"name": "https://www.rittal.us/monitoring-security/cmc-iii.html"
},
{
"refsource": "MISC",
"name": "https://github.com/miguelhamal/CVE-2019-19393",
"url": "https://github.com/miguelhamal/CVE-2019-19393"
}
]
}

61
2020/16xxx/CVE-2020-16844.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-16844",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2020-16844",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "In Istio 1.5.0 though 1.5.8 and Istio 1.6.0 through 1.6.7, when users specify an AuthorizationPolicy resource with DENY actions using wildcard suffixes (e.g. *-some-suffix) for source principals or namespace fields, callers will never be denied access, bypassing the intended policy."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/istio/istio/releases",
"refsource": "MISC",
"name": "https://github.com/istio/istio/releases"
},
{
"refsource": "CONFIRM",
"name": "https://istio.io/latest/news/security/istio-security-2020-009/",
"url": "https://istio.io/latest/news/security/istio-security-2020-009/"
}
]
}

61
2020/24xxx/CVE-2020-24620.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-24620",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2020-24620",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Unisys Stealth(core) before 4.0.132 stores Passwords in a Recoverable Format."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://public.support.unisys.com/common/public/vulnerability/NVD_Home.aspx",
"refsource": "MISC",
"name": "https://public.support.unisys.com/common/public/vulnerability/NVD_Home.aspx"
},
{
"refsource": "CONFIRM",
"name": "https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=56",
"url": "https://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=56"
}
]
}

5
2020/24xxx/CVE-2020-24860.json
View File

@ -66,6 +66,11 @@
"refsource": "MISC",
"name": "https://www.youtube.com/watch?v=M6D7DmmjLak&t=22s",
"url": "https://www.youtube.com/watch?v=M6D7DmmjLak&t=22s"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/159434/CMS-Made-Simple-2.2.14-Cross-Site-Scripting.html",
"url": "http://packetstormsecurity.com/files/159434/CMS-Made-Simple-2.2.14-Cross-Site-Scripting.html"
}
]
}

61
2020/25xxx/CVE-2020-25017.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-25017",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2020-25017",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Envoy through 1.15.0 only considers the first value when multiple header values are present for some HTTP headers. Envoy\u2019s setCopy() header map API does not replace all existing occurences of a non-inline header."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://groups.google.com/forum/#!forum/envoy-security-announce",
"refsource": "MISC",
"name": "https://groups.google.com/forum/#!forum/envoy-security-announce"
},
{
"refsource": "MISC",
"name": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-2v25-cjjq-5f4w",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-2v25-cjjq-5f4w"
}
]
}

61
2020/25xxx/CVE-2020-25018.json
View File

@ -1,17 +1,66 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-25018",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2020-25018",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Envoy master between 2d69e30 and 3b5acb2 may fail to parse request URL that requires host canonicalization."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://groups.google.com/forum/#!forum/envoy-security-announce",
"refsource": "MISC",
"name": "https://groups.google.com/forum/#!forum/envoy-security-announce"
},
{
"refsource": "MISC",
"name": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-fwwh-fc9w-9673",
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-fwwh-fc9w-9673"
}
]
}

5
2020/9xxx/CVE-2020-9801.json
View File

@ -49,6 +49,11 @@
"url": "https://support.apple.com/HT211177",
"refsource": "MISC",
"name": "https://support.apple.com/HT211177"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html",
"url": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html"
}
]
},

5
2020/9xxx/CVE-2020-9850.json
View File

@ -180,6 +180,11 @@
"refsource": "GENTOO",
"name": "GLSA-202007-11",
"url": "https://security.gentoo.org/glsa/202007-11"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html",
"url": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html"
}
]
},

5
2020/9xxx/CVE-2020-9856.json
View File

@ -49,6 +49,11 @@
"url": "https://support.apple.com/HT211170",
"refsource": "MISC",
"name": "https://support.apple.com/HT211170"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html",
"url": "http://packetstormsecurity.com/files/159447/Safari-Type-Confusion-Sandbox-Escape.html"
}
]
},