"-Synchronized-Data."

2025-07-29 05:56:59 +00:00 · 2019-09-18 14:00:49 +00:00 · 2019-09-18 14:00:49 +00:00 · ba5f90b516
commit ba5f90b516
parent 1db8e7c187
3 changed files with 73 additions and 1 deletions
--- a/2019/15xxx/CVE-2019-15785.json
+++ b/2019/15xxx/CVE-2019-15785.json
@ -34,7 +34,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "FontForge through 20190801 has a buffer overflow in PrefsUI_LoadPrefs in prefs.c."
+                "value": "FontForge 20190813 through 20190820 has a buffer overflow in PrefsUI_LoadPrefs in prefs.c."
            }
        ]
    },
@ -56,6 +56,11 @@
                "url": "https://github.com/fontforge/fontforge/pull/3886",
                "refsource": "MISC",
                "name": "https://github.com/fontforge/fontforge/pull/3886"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://github.com/fontforge/fontforge/commit/626f751752875a0ddd74b9e217b6f4828713573c",
+                "url": "https://github.com/fontforge/fontforge/commit/626f751752875a0ddd74b9e217b6f4828713573c"
            }
        ]
    }
--- a/2019/15xxx/CVE-2019-15848.json
+++ b/2019/15xxx/CVE-2019-15848.json
@ -56,6 +56,11 @@
                "refsource": "CONFIRM",
                "name": "https://blog.jetbrains.com/teamcity/2019/09/important-security-notice-xss-vulnerability-allowing-rce/",
                "url": "https://blog.jetbrains.com/teamcity/2019/09/important-security-notice-xss-vulnerability-allowing-rce/"
+            },
+            {
+                "refsource": "MISC",
+                "name": "https://twitter.com/JLLeitschuh/status/1169332316612644864?s=20",
+                "url": "https://twitter.com/JLLeitschuh/status/1169332316612644864?s=20"
            }
        ]
    }
--- a/2019/16xxx/CVE-2019-16399.json
+++ b/2019/16xxx/CVE-2019-16399.json
@ -0,0 +1,62 @@
+{
+    "CVE_data_meta": {
+        "ASSIGNER": "cve@mitre.org",
+        "ID": "CVE-2019-16399",
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "Western Digital WD My Book World through II 1.02.12 suffers from Broken Authentication, which allows an attacker to access the /admin/ directory without credentials. An attacker can easily enable SSH from /admin/system_advanced.php?lang=en and login with the default root password welc0me."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "MISC",
+                "name": "https://gist.github.com/pak0s/22ad6bae26198ebcd137b61adb6fcfe6",
+                "url": "https://gist.github.com/pak0s/22ad6bae26198ebcd137b61adb6fcfe6"
+            }
+        ]
+    }
+}