"-Synchronized-Data."

2025-08-04 08:44:25 +00:00 · 2019-03-28 20:00:47 +00:00 · 2019-03-28 20:00:47 +00:00 · a3f4a78e35
commit a3f4a78e35
parent 3ce8b85afe
10 changed files with 138 additions and 5 deletions
--- a/2016/5xxx/CVE-2016-5684.json
+++ b/2016/5xxx/CVE-2016-5684.json
@ -71,6 +71,11 @@
                "name": "GLSA-201701-68",
                "refsource": "GENTOO",
                "url": "https://security.gentoo.org/glsa/201701-68"
+            },
+            {
+                "refsource": "UBUNTU",
+                "name": "USN-3925-1",
+                "url": "https://usn.ubuntu.com/3925-1/"
            }
        ]
    }
--- a/2018/16xxx/CVE-2018-16872.json
+++ b/2018/16xxx/CVE-2018-16872.json
@ -86,6 +86,11 @@
                "refsource": "UBUNTU",
                "name": "USN-3923-1",
                "url": "https://usn.ubuntu.com/3923-1/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20123.json
+++ b/2018/20xxx/CVE-2018-20123.json
@ -71,6 +71,11 @@
                "refsource": "UBUNTU",
                "name": "USN-3923-1",
                "url": "https://usn.ubuntu.com/3923-1/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20191.json
+++ b/2018/20xxx/CVE-2018-20191.json
@ -76,6 +76,11 @@
                "refsource": "UBUNTU",
                "name": "USN-3923-1",
                "url": "https://usn.ubuntu.com/3923-1/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2019/3xxx/CVE-2019-3812.json
+++ b/2019/3xxx/CVE-2019-3812.json
@ -81,6 +81,11 @@
                "refsource": "UBUNTU",
                "name": "USN-3923-1",
                "url": "https://usn.ubuntu.com/3923-1/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2019/6xxx/CVE-2019-6501.json
+++ b/2019/6xxx/CVE-2019-6501.json
@ -61,6 +61,11 @@
                "refsource": "MLIST",
                "name": "[Qemu-devel][PATCH] 20190111 scsi-generic: avoid possible out-of-bounds access to r->buf",
                "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg02324.html"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2019/6xxx/CVE-2019-6778.json
+++ b/2019/6xxx/CVE-2019-6778.json
@ -81,6 +81,11 @@
                "refsource": "UBUNTU",
                "name": "USN-3923-1",
                "url": "https://usn.ubuntu.com/3923-1/"
+            },
+            {
+                "refsource": "FEDORA",
+                "name": "FEDORA-2019-0664c7724d",
+                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/"
            }
        ]
    }
--- a/2019/8xxx/CVE-2019-8985.json
+++ b/2019/8xxx/CVE-2019-8985.json
@ -34,7 +34,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "On Netis WF2880 and WF2411 2.1.36123 devices, there is a stack-based buffer overflow that does not require authentication. This can cause denial of service (device restart) or remote code execution. This vulnerability can be triggered by a GET request with a long HTTP \"Authorization: Basic\" header that is mishandled by user_auth->user_ok in /bin/boa."
+                "value": "On Netis WF2411 with firmware 2.1.36123 and other Netis WF2xxx devices (possibly WF2411 through WF2880), there is a stack-based buffer overflow that does not require authentication. This can cause denial of service (device restart) or remote code execution. This vulnerability can be triggered by a GET request with a long HTTP \"Authorization: Basic\" header that is mishandled by user_auth->user_ok in /bin/boa."
            }
        ]
    },
--- a/2019/9xxx/CVE-2019-9166.json
+++ b/2019/9xxx/CVE-2019-9166.json
@ -2,7 +2,7 @@
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2019-9166",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
    },
    "data_format": "MITRE",
    "data_type": "CVE",
@ -11,7 +11,56 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to root via write access to config.inc.php and import_xiconfig.php."
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "CONFIRM",
+                "name": "https://www.nagios.com/products/security/",
+                "url": "https://www.nagios.com/products/security/"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://www.nagios.com/downloads/nagios-xi/change-log/",
+                "url": "https://www.nagios.com/downloads/nagios-xi/change-log/"
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
            }
        ]
    }
--- a/2019/9xxx/CVE-2019-9167.json
+++ b/2019/9xxx/CVE-2019-9167.json
@ -2,7 +2,7 @@
    "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2019-9167",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
    },
    "data_format": "MITRE",
    "data_type": "CVE",
@ -11,7 +11,56 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "Cross-site scripting (XSS) vulnerability in Nagios XI before 5.5.11 allows attackers to inject arbitrary web script or HTML via the xiwindow parameter."
+            }
+        ]
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "CONFIRM",
+                "name": "https://www.nagios.com/products/security/",
+                "url": "https://www.nagios.com/products/security/"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://www.nagios.com/downloads/nagios-xi/change-log/",
+                "url": "https://www.nagios.com/downloads/nagios-xi/change-log/"
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
            }
        ]
    }