admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-01-19 11:01:59 +00:00
parent 818ea0dd7b
commit 990ad12fe9
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
7 changed files with 59 additions and 37 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2020/28xxx/CVE-2020-28052.json
View File

@ -81,6 +81,11 @@
"refsource": "MLIST",
"name": "[druid-commits] 20210107 [GitHub] [druid] clintropolis merged pull request #10733: Update deps for CVE-2020-28168 and CVE-2020-28052",
"url": "https://lists.apache.org/thread.html/r25d53acd06f29244b8a103781b0339c5e7efee9099a4d52f0c230e4a@%3Ccommits.druid.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[pulsar-commits] 20210119 [GitHub] [pulsar] fmiguelez opened a new issue #9235: Upgrade Bounce Castle dependency on client to solve CVE-2020-28052",
"url": "https://lists.apache.org/thread.html/r175f5a25d100dbe2b1bd3459b3ce882a84c3ff91b120ed4ff2d57b53@%3Ccommits.pulsar.apache.org%3E"
}
]
}

32
2020/28xxx/CVE-2020-28472.json
View File

@ -66,28 +66,34 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-AWSSDKSHAREDINIFILELOADER-1049304"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-AWSSDKSHAREDINIFILELOADER-1049304",
"name": "https://snyk.io/vuln/SNYK-JS-AWSSDKSHAREDINIFILELOADER-1049304"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-AWSSDK-1059424"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-AWSSDK-1059424",
"name": "https://snyk.io/vuln/SNYK-JS-AWSSDK-1059424"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059425"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059425",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1059425"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1059426"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1059426",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-1059426"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/aws/aws-sdk-js-v3/commit/a209082dff913939672bb069964b33aa4c5409a9"
"refsource": "MISC",
"url": "https://github.com/aws/aws-sdk-js-v3/commit/a209082dff913939672bb069964b33aa4c5409a9",
"name": "https://github.com/aws/aws-sdk-js-v3/commit/a209082dff913939672bb069964b33aa4c5409a9"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/aws/aws-sdk-js/pull/3585/commits/7d72aff2a941173733fcb6741b104cd83d3bc611"
"refsource": "MISC",
"url": "https://github.com/aws/aws-sdk-js/pull/3585/commits/7d72aff2a941173733fcb6741b104cd83d3bc611",
"name": "https://github.com/aws/aws-sdk-js/pull/3585/commits/7d72aff2a941173733fcb6741b104cd83d3bc611"
}
]
},
@ -95,7 +101,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package @aws-sdk/shared-ini-file-loader before 1.0.0-rc.9; the package aws-sdk before 2.814.0.\n If an attacker submits a malicious INI file to an application that parses it with loadSharedConfigFiles , they will pollute the prototype on the application. This can be exploited further depending on the context.\r\n\r\n"
"value": "This affects the package @aws-sdk/shared-ini-file-loader before 1.0.0-rc.9; the package aws-sdk before 2.814.0. If an attacker submits a malicious INI file to an application that parses it with loadSharedConfigFiles , they will pollute the prototype on the application. This can be exploited further depending on the context."
}
]
},

17
2020/28xxx/CVE-2020-28477.json
View File

@ -48,16 +48,19 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-IMMER-1019369"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-IMMER-1019369",
"name": "https://snyk.io/vuln/SNYK-JS-IMMER-1019369"
},
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1061986"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1061986",
"name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1061986"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/immerjs/immer/blob/master/src/plugins/patches.ts%23L213"
"refsource": "MISC",
"url": "https://github.com/immerjs/immer/blob/master/src/plugins/patches.ts%23L213",
"name": "https://github.com/immerjs/immer/blob/master/src/plugins/patches.ts%23L213"
}
]
},
@ -65,7 +68,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects all versions of package immer.\n "
"value": "This affects all versions of package immer."
}
]
},

12
2020/28xxx/CVE-2020-28478.json
View File

@ -48,12 +48,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://snyk.io/vuln/SNYK-JS-GSAP-1054614"
"refsource": "MISC",
"url": "https://snyk.io/vuln/SNYK-JS-GSAP-1054614",
"name": "https://snyk.io/vuln/SNYK-JS-GSAP-1054614"
},
{
"refsource": "CONFIRM",
"url": "https://github.com/greensock/GSAP/blob/master/src/gsap-core.js%23L147"
"refsource": "MISC",
"url": "https://github.com/greensock/GSAP/blob/master/src/gsap-core.js%23L147",
"name": "https://github.com/greensock/GSAP/blob/master/src/gsap-core.js%23L147"
}
]
},
@ -61,7 +63,7 @@
"description_data": [
{
"lang": "eng",
"value": "This affects the package gsap before 3.6.0.\n "
"value": "This affects the package gsap before 3.6.0."
}
]
},

10
2021/22xxx/CVE-2021-22850.json
View File

@ -87,12 +87,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.twcert.org.tw/tw/cp-132-4326-3d9d2-1.html"
"refsource": "MISC",
"url": "https://www.twcert.org.tw/tw/cp-132-4326-3d9d2-1.html",
"name": "https://www.twcert.org.tw/tw/cp-132-4326-3d9d2-1.html"
},
{
"refsource": "CONFIRM",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
"refsource": "MISC",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef",
"name": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
}
]
},

10
2021/22xxx/CVE-2021-22851.json
View File

@ -87,12 +87,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.twcert.org.tw/tw/cp-132-4327-50e99-1.html"
"refsource": "MISC",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef",
"name": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
},
{
"refsource": "CONFIRM",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
"refsource": "MISC",
"url": "https://www.twcert.org.tw/tw/cp-132-4327-50e99-1.html",
"name": "https://www.twcert.org.tw/tw/cp-132-4327-50e99-1.html"
}
]
},

10
2021/22xxx/CVE-2021-22852.json
View File

@ -89,12 +89,14 @@
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.twcert.org.tw/tw/cp-132-4328-97765-1.html"
"refsource": "MISC",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef",
"name": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
},
{
"refsource": "CONFIRM",
"url": "https://www.chtsecurity.com/news/eb024200-7cf9-4c58-a063-c451dbc9daef"
"refsource": "MISC",
"url": "https://www.twcert.org.tw/tw/cp-132-4328-97765-1.html",
"name": "https://www.twcert.org.tw/tw/cp-132-4328-97765-1.html"
}
]
},