From b00219fe7ee4cebf19251aab38289becb4911feb Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 4 Mar 2020 14:01:08 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2019/3xxx/CVE-2019-3404.json | 58 +++++++++++++++++++++++++++++++----- 2019/8xxx/CVE-2019-8401.json | 14 ++++----- 2020/1xxx/CVE-2020-1938.json | 5 ++++ 3 files changed, 63 insertions(+), 14 deletions(-) diff --git a/2019/3xxx/CVE-2019-3404.json b/2019/3xxx/CVE-2019-3404.json index 1b5f7129bd7..5b522ac0a11 100644 --- a/2019/3xxx/CVE-2019-3404.json +++ b/2019/3xxx/CVE-2019-3404.json @@ -1,17 +1,61 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2019-3404", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-3404", + "ASSIGNER": "security@360.cn", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "360 Security Technology, Inc.", + "product": { + "product_data": [ + { + "product_name": "360 Router F5C", + "version": { + "version_data": [ + { + "version_value": "360POP-F5C-V3.1.1.65150" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Improper Authentication" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://security.360.cn/News/news/id/218.html", + "url": "https://security.360.cn/News/news/id/218.html" + } + ] + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "By adding some special fields to the uri ofrouter app function, the user could abuse background app cgi functions withoutauthentication. This affects 360 router P0 and F5C." } ] } diff --git a/2019/8xxx/CVE-2019-8401.json b/2019/8xxx/CVE-2019-8401.json index 12f80b29347..e1fa54d79eb 100644 --- a/2019/8xxx/CVE-2019-8401.json +++ b/2019/8xxx/CVE-2019-8401.json @@ -1,17 +1,17 @@ { - "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", - "ID": "CVE-2019-8401", - "STATE": "RESERVED" - }, - "data_format": "MITRE", "data_type": "CVE", + "data_format": "MITRE", "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-8401", + "ASSIGNER": "cve@mitre.org", + "STATE": "REJECT" + }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none." } ] } diff --git a/2020/1xxx/CVE-2020-1938.json b/2020/1xxx/CVE-2020-1938.json index 10af3b8454b..cee454f1c3c 100644 --- a/2020/1xxx/CVE-2020-1938.json +++ b/2020/1xxx/CVE-2020-1938.json @@ -114,6 +114,11 @@ "refsource": "MLIST", "name": "[tomcat-users] 20200304 Re: Fix for CVE-2020-1938", "url": "https://lists.apache.org/thread.html/r4afa11e0464408e68f0e9560e90b185749363a66398b1491254f7864@%3Cusers.tomcat.apache.org%3E" + }, + { + "refsource": "MLIST", + "name": "[tomcat-dev] 20200304 Re: Tagging 10.0.x, 9.0.x, 8.5.x", + "url": "https://lists.apache.org/thread.html/r772335e6851ad33ddb076218fa4ff70de1bf398d5b43e2ddf0130e5d@%3Cdev.tomcat.apache.org%3E" } ] },