From c916ef26f4b2b6b58d546bb13e2e7b9e88d932b2 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Fri, 29 May 2020 16:01:29 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/11xxx/CVE-2020-11017.json | 2 +- 2020/12xxx/CVE-2020-12675.json | 61 ++++++++++++++++++++++++++++++---- 2020/13xxx/CVE-2020-13696.json | 18 ++++++++++ 2020/13xxx/CVE-2020-13697.json | 18 ++++++++++ 2020/13xxx/CVE-2020-13698.json | 18 ++++++++++ 5 files changed, 110 insertions(+), 7 deletions(-) create mode 100644 2020/13xxx/CVE-2020-13696.json create mode 100644 2020/13xxx/CVE-2020-13697.json create mode 100644 2020/13xxx/CVE-2020-13698.json diff --git a/2020/11xxx/CVE-2020-11017.json b/2020/11xxx/CVE-2020-11017.json index 475e787b0d4..e632a4615f9 100644 --- a/2020/11xxx/CVE-2020-11017.json +++ b/2020/11xxx/CVE-2020-11017.json @@ -35,7 +35,7 @@ "description_data": [ { "lang": "eng", - "value": "In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server.\n\nThis is fixed in version 2.1.0." + "value": "In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server. This is fixed in version 2.1.0." } ] }, diff --git a/2020/12xxx/CVE-2020-12675.json b/2020/12xxx/CVE-2020-12675.json index 78fdab8391a..0224b5a2647 100644 --- a/2020/12xxx/CVE-2020-12675.json +++ b/2020/12xxx/CVE-2020-12675.json @@ -1,17 +1,66 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2020-12675", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2020-12675", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly implement capability checks for AJAX functions related to creation/retrieval/deletion of PHP template files, leading to Remote Code Execution. NOTE: this issue exists because of an incomplete fix for CVE-2020-12077." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://wordpress.org/plugins/mappress-google-maps-for-wordpress/#developers", + "refsource": "MISC", + "name": "https://wordpress.org/plugins/mappress-google-maps-for-wordpress/#developers" + }, + { + "refsource": "MISC", + "name": "https://blog.alertlogic.com/alert-logic-threat-research-team-identifies-new-vulnerability-cve-2020-12675-in-mappress-plugin-for-wordpress/", + "url": "https://blog.alertlogic.com/alert-logic-threat-research-team-identifies-new-vulnerability-cve-2020-12675-in-mappress-plugin-for-wordpress/" } ] } diff --git a/2020/13xxx/CVE-2020-13696.json b/2020/13xxx/CVE-2020-13696.json new file mode 100644 index 00000000000..a4415f0c5b3 --- /dev/null +++ b/2020/13xxx/CVE-2020-13696.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-13696", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2020/13xxx/CVE-2020-13697.json b/2020/13xxx/CVE-2020-13697.json new file mode 100644 index 00000000000..42eee77d1fb --- /dev/null +++ b/2020/13xxx/CVE-2020-13697.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-13697", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2020/13xxx/CVE-2020-13698.json b/2020/13xxx/CVE-2020-13698.json new file mode 100644 index 00000000000..e9e2726ce7e --- /dev/null +++ b/2020/13xxx/CVE-2020-13698.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2020-13698", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file