admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-11-04 16:01:21 +00:00
parent b0acbea401
commit 9661af681a
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
9 changed files with 340 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

60
2013/2xxx/CVE-2013-2261.json
View File

@ -1,8 +1,31 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2261",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,38 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cryptocat before 2.0.22 Chrome Extension 'img/keygen.gif' has Information Disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Software Detection Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"url": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"name": "https://tobtu.com/decryptocat.php"
},
{
"refsource": "MISC",
"name": "https://www.securityfocus.com/bid/61090",
"url": "https://www.securityfocus.com/bid/61090"
}
]
}

65
2013/2xxx/CVE-2013-2262.json
View File

@ -1,8 +1,31 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2262",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Cryptocat",
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,43 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cryptocat strophe.js before 2.0.22 has information disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Activity Remote Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"url": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"name": "https://tobtu.com/decryptocat.php"
},
{
"refsource": "MISC",
"name": "https://vuldb.com/?id.9438",
"url": "https://vuldb.com/?id.9438"
},
{
"refsource": "MISC",
"name": "https://www.securityfocus.com/bid/61092",
"url": "https://www.securityfocus.com/bid/61092"
}
]
}

20
2013/4xxx/CVE-2013-4100.json
View File

@ -8,21 +8,21 @@
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "before 2.1.12"
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
}
]
}
@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.1.12 has Crafted Username Chat Remote Denial of Service"
"value": "Cryptocat before 2.0.22 has Remote Denial of Service via username"
}
]
},
@ -61,6 +61,16 @@
"url": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"name": "https://tobtu.com/decryptocat.php"
},
{
"refsource": "MISC",
"name": "https://vuldb.com/?id.9439",
"url": "https://vuldb.com/?id.9439"
},
{
"refsource": "MISC",
"name": "https://www.securityfocus.com/bid/61094",
"url": "https://www.securityfocus.com/bid/61094"
}
]
}

65
2013/4xxx/CVE-2013-4104.json
View File

@ -1,8 +1,31 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4104",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,43 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cryptocat before 2.0.22 has weak encryption in the Socialist Millionnaire Protocol"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Exchange Poisoning Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"url": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"name": "https://tobtu.com/decryptocat.php"
},
{
"refsource": "MISC",
"name": "https://www.securityfocus.com/bid/61108",
"url": "https://www.securityfocus.com/bid/61108"
},
{
"refsource": "MISC",
"name": "https://vuldb.com/?id.9436",
"url": "https://vuldb.com/?id.9436"
}
]
}

5
2019/14xxx/CVE-2019-14287.json
View File

@ -171,6 +171,11 @@
"refsource": "REDHAT",
"name": "RHSA-2019:3278",
"url": "https://access.redhat.com/errata/RHSA-2019:3278"
},
{
"refsource": "MISC",
"name": "https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287",
"url": "https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287"
}
]
}

5
2019/18xxx/CVE-2019-18665.json
View File

@ -56,6 +56,11 @@
"url": "https://www.secudos.de/news-und-events/aktuelle-news/domos-release-5-6",
"refsource": "MISC",
"name": "https://www.secudos.de/news-und-events/aktuelle-news/domos-release-5-6"
},
{
"refsource": "MISC",
"name": "https://atomic111.github.io/article/secudos-domos-directory_traversal",
"url": "https://atomic111.github.io/article/secudos-domos-directory_traversal"
}
]
}

5
2019/18xxx/CVE-2019-18668.json
View File

@ -61,6 +61,11 @@
"url": "https://wordpress.org/plugins/currency-switcher-woocommerce/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/currency-switcher-woocommerce/#developers"
},
{
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/9936",
"url": "https://wpvulndb.com/vulnerabilities/9936"
}
]
}

67
2019/18xxx/CVE-2019-18683.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18683",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. There are multiple race conditions during streaming stopping in this driver (part of the V4L2 subsystem). These issues are caused by wrong mutex locking in vivid_stop_generating_vid_cap(), vivid_stop_generating_vid_out(), sdr_cap_stop_streaming(), and the corresponding kthreads. At least one of these race conditions leads to a use-after-free."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.openwall.com/lists/oss-security/2019/11/02/1",
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2019/11/02/1"
},
{
"url": "https://lore.kernel.org/lkml/20191103221719.27118-1-alex.popov@linux.com/",
"refsource": "MISC",
"name": "https://lore.kernel.org/lkml/20191103221719.27118-1-alex.popov@linux.com/"
}
]
}
}

62
2019/18xxx/CVE-2019-18684.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18684",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Sudo through 1.8.29 allows local users to escalate to root if they have write access to file descriptor 3 of the sudo process. This occurs because of a race condition between determining a uid, and the setresuid and openat system calls. The attacker can write \"ALL ALL=(ALL) NOPASSWD:ALL\" to /proc/#####/fd/3 at a time when Sudo is prompting for a password."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://gist.github.com/oxagast/51171aa161074188a11d96cbef884bbd",
"refsource": "MISC",
"name": "https://gist.github.com/oxagast/51171aa161074188a11d96cbef884bbd"
}
]
}
}