From c383fca10c54b5ef76925942c1ae7b29bd7072b0 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 28 Feb 2018 12:06:46 -0500 Subject: [PATCH] - Synchronized data. --- 2016/0xxx/CVE-2016-0291.json | 49 ++++++++++++++++++++++++++++++++++-- 2016/0xxx/CVE-2016-0295.json | 49 ++++++++++++++++++++++++++++++++++-- 2016/0xxx/CVE-2016-0299.json | 49 ++++++++++++++++++++++++++++++++++-- 2018/7xxx/CVE-2018-7264.json | 46 +++++++++++++++++++++++++++++++-- 4 files changed, 185 insertions(+), 8 deletions(-) diff --git a/2016/0xxx/CVE-2016-0291.json b/2016/0xxx/CVE-2016-0291.json index 8cae28b1aee..788b1b7386f 100644 --- a/2016/0xxx/CVE-2016-0291.json +++ b/2016/0xxx/CVE-2016-0291.json @@ -2,7 +2,30 @@ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2016-0291", - "STATE" : "RESERVED" + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } }, "data_format" : "MITRE", "data_type" : "CVE", @@ -11,7 +34,29 @@ "description_data" : [ { "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value" : "IBM BigFix Platform 9.0, 9.1 before 9.1.8, and 9.2 before 9.2.8 allow remote authenticated users to execute arbitrary commands by leveraging report server access. IBM X-Force ID: 111302." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21985748" + }, + { + "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/111302" } ] } diff --git a/2016/0xxx/CVE-2016-0295.json b/2016/0xxx/CVE-2016-0295.json index 2be8e5bbe21..46061cb3529 100644 --- a/2016/0xxx/CVE-2016-0295.json +++ b/2016/0xxx/CVE-2016-0295.json @@ -2,7 +2,30 @@ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2016-0295", - "STATE" : "RESERVED" + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } }, "data_format" : "MITRE", "data_type" : "CVE", @@ -11,7 +34,29 @@ "description_data" : [ { "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value" : "Cross-site request forgery (CSRF) vulnerability in the IBM BigFix Platform 9.0, 9.1, 9.2, and 9.5 before 9.5.2 allows remote attackers to hijack the authentication of arbitrary users for requests that insert XSS sequences. IBM X-Force ID: 111363." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21985830" + }, + { + "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/111363" } ] } diff --git a/2016/0xxx/CVE-2016-0299.json b/2016/0xxx/CVE-2016-0299.json index 4e4887e40b1..d792587fd43 100644 --- a/2016/0xxx/CVE-2016-0299.json +++ b/2016/0xxx/CVE-2016-0299.json @@ -2,7 +2,30 @@ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2016-0299", - "STATE" : "RESERVED" + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } }, "data_format" : "MITRE", "data_type" : "CVE", @@ -11,7 +34,29 @@ "description_data" : [ { "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value" : "IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote attackers to obtain sensitive information via vectors involving a database query. IBM X-Force ID: 111382." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "url" : "http://www-01.ibm.com/support/docview.wss?uid=swg21981155" + }, + { + "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/111382" } ] } diff --git a/2018/7xxx/CVE-2018-7264.json b/2018/7xxx/CVE-2018-7264.json index 794da6c3440..f6f4a7d778a 100644 --- a/2018/7xxx/CVE-2018-7264.json +++ b/2018/7xxx/CVE-2018-7264.json @@ -2,7 +2,30 @@ "CVE_data_meta" : { "ASSIGNER" : "cve@mitre.org", "ID" : "CVE-2018-7264", - "STATE" : "RESERVED" + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "n/a", + "version" : { + "version_data" : [ + { + "version_value" : "n/a" + } + ] + } + } + ] + }, + "vendor_name" : "n/a" + } + ] + } }, "data_format" : "MITRE", "data_type" : "CVE", @@ -11,7 +34,26 @@ "description_data" : [ { "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value" : "The Pictview image processing library embedded in the ActivePDF toolkit through 2018.1.0.18321 is prone to multiple out of bounds write and sign errors, allowing a remote attacker to execute arbitrary code on vulnerable applications using the ActivePDF Toolkit to process untrusted images." + } + ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "n/a" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "url" : "http://seclists.org/fulldisclosure/2018/Feb/74" } ] }