admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-10 02:04:31 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'master' of https://github.com/CVEProject/cvelist into CVE-2019-10164

Browse Source
This commit is contained in:
mrehak@redhat.com 2019-06-25 13:22:21 +02:00
commit a99e213ebb
8 changed files with 85 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2019/0xxx/CVE-2019-0220.json
View File

@ -113,6 +113,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2019-a4ed7400f4",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ALIR5S3O7NRHEGFMIDMUSYQIZOE4TJJN/"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0007/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0007/"
}
]
},

5
2019/10xxx/CVE-2019-10072.json
View File

@ -58,6 +58,11 @@
"refsource": "BID",
"name": "108874",
"url": "http://www.securityfocus.com/bid/108874"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0002/"
}
]
},

5
2019/11xxx/CVE-2019-11477.json
View File

@ -151,6 +151,11 @@
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_19_28",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_28"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0001/"
}
]
},

5
2019/11xxx/CVE-2019-11478.json
View File

@ -145,6 +145,11 @@
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_19_28",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_28"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0001/"
}
]
},

5
2019/11xxx/CVE-2019-11479.json
View File

@ -149,6 +149,11 @@
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_19_28",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_28"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0001/"
}
]
},

5
2019/12xxx/CVE-2019-12814.json
View File

@ -96,6 +96,11 @@
"refsource": "MLIST",
"name": "[zookeeper-notifications] 20190624 [GitHub] [zookeeper] eolivelli commented on issue #1001: ZOOKEEPER-3441 OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814",
"url": "https://lists.apache.org/thread.html/8fe2983f6d9fee0aa737e4bd24483f8f5cf9b938b9adad0c4e79b2a4@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0006/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0006/"
}
]
}

5
2019/12xxx/CVE-2019-12875.json
View File

@ -61,6 +61,11 @@
"url": "https://code.foxkit.us/adelie/packages/commit/15b160780c6eeff7048063c099a7f8757e1d8391",
"refsource": "MISC",
"name": "https://code.foxkit.us/adelie/packages/commit/15b160780c6eeff7048063c099a7f8757e1d8391"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0005/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0005/"
}
]
}

56
2019/12xxx/CVE-2019-12949.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-12949",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2019-12949",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "In pfSense 2.4.4-p2 and 2.4.4-p3, if it is possible to trick an authenticated administrator into clicking on a button on a phishing page, an attacker can leverage XSS to upload arbitrary executable code, via diag_command.php and rrd_fetch_json.php (timePeriod parameter), to a server. Then, the remote attacker can run any command with root privileges on that server."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/tarantula-team/CVE-2019-12949",
"refsource": "MISC",
"name": "https://github.com/tarantula-team/CVE-2019-12949"
}
]
}