mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-06-10 02:04:31 +00:00
Scott Moore
GitHub
commit
b74d5a200f
@ -11,18 +11,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache Derby",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "10.1.2.1, 10.2.2.0, 10.3.1.4, 10.4.1.3"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Sling",
|
||||
"product_name" : "Apache Sling",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CloudStack",
|
||||
"product_name" : "Apache CloudStack",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -2,7 +2,30 @@
|
||||
"CVE_data_meta" : {
|
||||
"ASSIGNER" : "cve@mitre.org",
|
||||
"ID" : "CVE-2013-7469",
|
||||
"STATE" : "RESERVED"
|
||||
"STATE" : "PUBLIC"
|
||||
},
|
||||
"affects" : {
|
||||
"vendor" : {
|
||||
"vendor_data" : [
|
||||
{
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
}
|
||||
]
|
||||
}
|
||||
},
|
||||
"data_format" : "MITRE",
|
||||
"data_type" : "CVE",
|
||||
@ -11,7 +34,33 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
|
||||
"value" : "Seafile through 6.2.11 always uses the same Initialization Vector (IV) with Cipher Block Chaining (CBC) Mode to encrypt private data, making it easier to conduct chosen-plaintext attacks or dictionary attacks."
|
||||
}
|
||||
]
|
||||
},
|
||||
"problemtype" : {
|
||||
"problemtype_data" : [
|
||||
{
|
||||
"description" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "n/a"
|
||||
}
|
||||
]
|
||||
}
|
||||
]
|
||||
},
|
||||
"references" : {
|
||||
"reference_data" : [
|
||||
{
|
||||
"name" : "https://drive.google.com/file/d/1rwYsnuhZZxmSR6Zs8rJlWW3R27XBOSJU/view",
|
||||
"refsource" : "MISC",
|
||||
"url" : "https://drive.google.com/file/d/1rwYsnuhZZxmSR6Zs8rJlWW3R27XBOSJU/view"
|
||||
},
|
||||
{
|
||||
"name" : "https://github.com/haiwen/seafile/issues/350",
|
||||
"refsource" : "MISC",
|
||||
"url" : "https://github.com/haiwen/seafile/issues/350"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Wicket",
|
||||
"product_name" : "Apache Wicket",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,11 +11,11 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "jUDDI",
|
||||
"product_name" : "Apache jUDDI",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "3.1.2, 3.1.3, 3.1.4, and 3.1.5 utilize the portlets based user interface also known as 'Pluto', 'jUDDI Portal', 'UDDI Portal' or 'uddi-console'"
|
||||
"version_value" : "3.1.2, 3.1.3, 3.1.4, and 3.1.5"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -58,9 +58,9 @@
|
||||
"url" : "http://packetstormsecurity.com/files/132461/Nucleus-CMS-3.65-Cross-Site-Scripting.html"
|
||||
},
|
||||
{
|
||||
"name" : "https://github.com/security-provensec/CVE-2015-5454/blob/master/nucleus.pdf",
|
||||
"name" : "https://github.com/security-breachlock/CVE-2015-5454/blob/master/nucleus.pdf",
|
||||
"refsource" : "MISC",
|
||||
"url" : "https://github.com/security-provensec/CVE-2015-5454/blob/master/nucleus.pdf"
|
||||
"url" : "https://github.com/security-breachlock/CVE-2015-5454/blob/master/nucleus.pdf"
|
||||
},
|
||||
{
|
||||
"name" : "https://github.com/NucleusCMS/NucleusCMS/issues/83",
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hive",
|
||||
"product_name" : "Apache Hive",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "OFBiz",
|
||||
"product_name" : "Apache OFBiz",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,18 +12,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache Sling",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "prior to 1.0.12"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,11 +12,11 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Thrift",
|
||||
"product_name" : "Apache Thrift",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "0.9.3 and older, Fixed in Apache Thrift 0.10.0"
|
||||
"version_value" : "versions prior to 0.10.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Struts",
|
||||
"product_name" : "Apache Struts",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,18 +12,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache Sling",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "prior to 1.0.12"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Cordova Android",
|
||||
"product_name" : "Apache Cordova Android",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "OFBiz",
|
||||
"product_name" : "Apache OFBiz",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
@ -41,7 +41,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "The default configuration of the OFBiz framework offers a blog functionality. Different users are able to operate blogs which are related to specific parties. In the form field for the creation of new blog articles the user input of the summary field as well as the article field is not properly sanitized. It is possible to inject arbitrary JavaScript code in these form fields. This code gets executed from the browser of every user who is visiting this article. Mitigation: Upgrade to Apache OFBiz 16.11.01."
|
||||
"value" : "The default configuration of the Apache OFBiz framework offers a blog functionality. Different users are able to operate blogs which are related to specific parties. In the form field for the creation of new blog articles the user input of the summary field as well as the article field is not properly sanitized. It is possible to inject arbitrary JavaScript code in these form fields. This code gets executed from the browser of every user who is visiting this article. Mitigation: Upgrade to Apache OFBiz 16.11.01."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "OpenOffice",
|
||||
"product_name" : "Apache OpenOffice",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Wicket",
|
||||
"product_name" : "Apache Wicket",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "ActiveMQ",
|
||||
"product_name" : "Apache ActiveMQ",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CloudStack",
|
||||
"product_name" : "Apache CloudStack",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Ranger",
|
||||
"product_name" : "Apache Ranger",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Subversion",
|
||||
"product_name" : "Apache Subversion",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
@ -38,7 +38,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory."
|
||||
"value" : "Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -15,14 +15,26 @@
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "Apache Tomcat"
|
||||
"version_value" : "before 6.0.48"
|
||||
},
|
||||
{
|
||||
"version_value" : "7.x before 7.0.73"
|
||||
},
|
||||
{
|
||||
"version_value" : "8.x before 8.0.39"
|
||||
},
|
||||
{
|
||||
"version_value" : "8.5.x before 8.5.7"
|
||||
},
|
||||
{
|
||||
"version_value" : "9.x before 9.0.0.M12"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -11,18 +11,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache OpenMeetings",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "before 3.1.12"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -34,7 +34,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Apache Openmeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization attack."
|
||||
"value" : "Apache OpenMeetings before 3.1.2 is vulnerable to Remote Code Execution via RMI deserialization attack."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Brooklyn",
|
||||
"product_name" : "Apache Brooklyn",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Struts",
|
||||
"product_name" : "Apache Struts",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CXF",
|
||||
"product_name" : "Apache CXF",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,18 +11,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache HTTP Server",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "2.4.17 - 2.4.23"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Apache Qpid Broker for Java",
|
||||
"product_name" : "Apache Qpid Broker-J",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CouchDB",
|
||||
"product_name" : "Apache CouchDB",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Brooklyn",
|
||||
"product_name" : "Apache Brooklyn",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,11 +12,23 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "9.0.0.M1 to 9.0.0.M13, 8.5.0 to 8.5.8, 8.0.0.RC1 to 8.0.39, 7.0.0 to 7.0.73, 6.0.16 to 6.0.48"
|
||||
"version_value" : "9.0.0.M1 to 9.0.0.M13"
|
||||
},
|
||||
{
|
||||
"version_value" : "8.5.0 to 8.5.8"
|
||||
},
|
||||
{
|
||||
"version_value" : "8.0.0.RC1 to 8.0.39"
|
||||
},
|
||||
{
|
||||
"version_value" : "7.0.0 to 7.0.73"
|
||||
},
|
||||
{
|
||||
"version_value" : "6.0.16 to 6.0.48"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -11,11 +11,11 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Ranger",
|
||||
"product_name" : "Apache Ranger",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "0.6.0/0.6.1/0.6.2"
|
||||
"version_value" : "0.6.0 - 0.6.2"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -15,14 +15,17 @@
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "Apache Tomcat"
|
||||
"version_value" : "8.5.7 to 8.5.9"
|
||||
},
|
||||
{
|
||||
"version_value" : "9.0.0.M11 to 9.0.0.M15"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "NiFi",
|
||||
"product_name" : "Apache NiFi",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Karaf",
|
||||
"product_name" : "Apache Karaf",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,11 +11,14 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Ranger",
|
||||
"product_name" : "Apache Ranger",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "0.5.x and 0.6.0/0.6.1/0.6.2"
|
||||
"version_value" : "0.5.x"
|
||||
},
|
||||
{
|
||||
"version_value" : "0.6.0 - 0.6.2"
|
||||
}
|
||||
]
|
||||
}
|
||||
@ -34,7 +37,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "Apache Ranger before 0.6.is vulnerable to a Stored Cross-Site Scripting in when entering custom policy conditions. Admin users can store some arbitrary javascript code to be executed when normal users login and access policies."
|
||||
"value" : "Apache Ranger before 0.6.3 is vulnerable to a Stored Cross-Site Scripting in when entering custom policy conditions. Admin users can store some arbitrary javascript code to be executed when normal users login and access policies."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -12,17 +12,17 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "0.6.0"
|
||||
"version_value" : "0.6.0-incubating"
|
||||
},
|
||||
{
|
||||
"version_value" : "0.7.0"
|
||||
"version_value" : "0.7.0-incubating"
|
||||
},
|
||||
{
|
||||
"version_value" : "0.7.1"
|
||||
"version_value" : "0.7.1-incubating"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Kafka",
|
||||
"product_name" : "Apache Kafka",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Struts",
|
||||
"product_name" : "Apache Struts",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,18 +11,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache Portable Runtime",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "1.6.2 and prior"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,11 +12,11 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Airflow",
|
||||
"product_name" : "Apache Airflow",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "< 1.9"
|
||||
"version_value" : "< 1.9.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,18 +11,18 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "n/a",
|
||||
"product_name" : "Apache Portable Runtime",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "n/a"
|
||||
"version_value" : "1.6.0 and prior"
|
||||
}
|
||||
]
|
||||
}
|
||||
}
|
||||
]
|
||||
},
|
||||
"vendor_name" : "n/a"
|
||||
"vendor_name" : "Apache Software Foundation"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "OpenNLP",
|
||||
"product_name" : "Apache OpenNLP",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Commons Jelly",
|
||||
"product_name" : "Apache Commons Jelly",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Geode",
|
||||
"product_name" : "Apache Geode",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "NiFi",
|
||||
"product_name" : "Apache NiFi",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,11 +12,14 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CXF",
|
||||
"product_name" : "Apache CXF",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "All versions of Apache CXF prior to 3.2.1 and 3.1.14."
|
||||
"version_value" : "prior to 3.1.14"
|
||||
},
|
||||
{
|
||||
"version_value" : "3.2.x prior to 3.2.1"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,11 +12,17 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hive",
|
||||
"product_name" : "Apache Hive",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "2.1.0 to 2.3.0"
|
||||
"version_value" : "2.1.x before 2.1.2"
|
||||
},
|
||||
{
|
||||
"version_value" : "2.2.x before 2.2.1"
|
||||
},
|
||||
{
|
||||
"version_value" : "2.3.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "POI",
|
||||
"product_name" : "Apache POI",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Xerces-C",
|
||||
"product_name" : "Apache Xerces C++",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "James Server",
|
||||
"product_name" : "Apache James",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Solr",
|
||||
"product_name" : "Apache Solr",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Drill",
|
||||
"product_name" : "Apache Drill",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,11 +12,14 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CXF Fediz",
|
||||
"product_name" : "Apache CXF Fediz",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "prior to 1.4.3 and 1.3.3"
|
||||
"version_value" : "1.4.x prior to 1.4.3"
|
||||
},
|
||||
{
|
||||
"version_value" : "prior to 1.3.3"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "NiFi",
|
||||
"product_name" : "Apache NiFi",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Camel",
|
||||
"product_name" : "Apache Camel",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Camel",
|
||||
"product_name" : "Apache Camel",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CouchDB",
|
||||
"product_name" : "Apache CouchDB",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CouchDB",
|
||||
"product_name" : "Apache CouchDB",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "UIMA",
|
||||
"product_name" : "Apache UIMA",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Geode",
|
||||
"product_name" : "Apache Geode",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Geode",
|
||||
"product_name" : "Apache Geode",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Geode",
|
||||
"product_name" : "Apache Geode",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "NiFi",
|
||||
"product_name" : "Apache NiFi",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat Native Connector",
|
||||
"product_name" : "Apache Tomcat Native",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Sling",
|
||||
"product_name" : "Apache Sling",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Qpid Broker-J",
|
||||
"product_name" : "Apache Qpid Broker-J",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
@ -35,7 +35,7 @@
|
||||
"description_data" : [
|
||||
{
|
||||
"lang" : "eng",
|
||||
"value" : "In Apache Qpid Broker-J versions 6.1.0 through 6.1.4 (inclusive) the broker does not properly enforce a maximum frame size in AMQP 1.0 frames. A remote unauthenticated attacker could exploit this to cause the broker to exhaust all available memory and eventually terminate. Older AMQP protocols are not affected."
|
||||
"value" : "In Apache Qpid Broker-J versions 6.1.0 through 6.1.4 (inclusive) the broker does not properly enforce a maximum frame size in AMQP 1.0 frames. A remote unauthenticated attacker could exploit this to cause the broker to exhaust all available memory and eventually terminate. Older AMQP protocols are not affected."
|
||||
}
|
||||
]
|
||||
},
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Qpid Broker-J",
|
||||
"product_name" : "Apache Qpid Broker-J",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "NiFi",
|
||||
"product_name" : "Apache NiFi",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "SpamAssassin",
|
||||
"product_name" : "Apache SpamAssassin",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Tomcat",
|
||||
"product_name" : "Apache Tomcat",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Struts",
|
||||
"product_name" : "Apache Struts",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Synapse",
|
||||
"product_name" : "Apache Synapse",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Oozie",
|
||||
"product_name" : "Apache Oozie",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "OFBiz",
|
||||
"product_name" : "Apache OFBiz",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,17 +12,17 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Sling XSS Protection API",
|
||||
"product_name" : "Apache Sling",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
"version_value" : "1.0.4 to 1.0.18"
|
||||
"version_value" : "XSS Protection API 1.0.4 to 1.0.18"
|
||||
},
|
||||
{
|
||||
"version_value" : "Compat 1.1.0"
|
||||
"version_value" : "XSS Protection API Compat 1.1.0"
|
||||
},
|
||||
{
|
||||
"version_value" : "2.0.0"
|
||||
"version_value" : "XSS Protection API 2.0.0"
|
||||
}
|
||||
]
|
||||
}
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "DeltaSpike",
|
||||
"product_name" : "Apache DeltaSpike",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Atlas",
|
||||
"product_name" : "Apache Atlas",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "CXF",
|
||||
"product_name" : "Apache CXF",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -11,7 +11,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Hadoop",
|
||||
"product_name" : "Apache Hadoop",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
@ -12,7 +12,7 @@
|
||||
"product" : {
|
||||
"product_data" : [
|
||||
{
|
||||
"product_name" : "Solr",
|
||||
"product_name" : "Apache Solr",
|
||||
"version" : {
|
||||
"version_data" : [
|
||||
{
|
||||
|
||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
x
Reference in New Issue
Block a user