admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-07-31 13:01:25 +00:00
parent 0957e0e8e8
commit ca0e8a3941
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
12 changed files with 312 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2017/17xxx/CVE-2017-17458.json
View File

@ -91,6 +91,11 @@
"name": "https://confluence.atlassian.com/sourcetreekb/sourcetree-security-advisory-2018-01-24-942834324.html",
"refsource": "CONFIRM",
"url": "https://confluence.atlassian.com/sourcetreekb/sourcetree-security-advisory-2018-01-24-942834324.html"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
}

5
2018/1000xxx/CVE-2018-1000132.json
View File

@ -73,6 +73,11 @@
"refsource": "REDHAT",
"name": "RHSA-2019:2276",
"url": "https://access.redhat.com/errata/RHSA-2019:2276"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
}

5
2018/13xxx/CVE-2018-13346.json
View File

@ -66,6 +66,11 @@
"refsource": "REDHAT",
"name": "RHSA-2019:2276",
"url": "https://access.redhat.com/errata/RHSA-2019:2276"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
}

5
2018/13xxx/CVE-2018-13347.json
View File

@ -71,6 +71,11 @@
"refsource": "REDHAT",
"name": "RHSA-2019:2276",
"url": "https://access.redhat.com/errata/RHSA-2019:2276"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
}

5
2018/13xxx/CVE-2018-13348.json
View File

@ -61,6 +61,11 @@
"name": "https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.6.1_.282018-06-06.29",
"refsource": "MISC",
"url": "https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.6.1_.282018-06-06.29"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
}

5
2019/3xxx/CVE-2019-3902.json
View File

@ -63,6 +63,11 @@
"refsource": "UBUNTU",
"name": "USN-4086-1",
"url": "https://usn.ubuntu.com/4086-1/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200731 [SECURITY] [DLA 2293-1] mercurial security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00032.html"
}
]
},

50
2020/10xxx/CVE-2020-10731.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-10731",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "secalert@redhat.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "nova_libvirt container provided by the Red Hat OpenStack Platform",
"version": {
"version_data": [
{
"version_value": "16"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper access control CWE-284"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1831544",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1831544"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "A flaw was found in the nova_libvirt container provided by the Red Hat OpenStack Platform 16, where it does not have SELinux enabled. This flaw causes sVirt, an important isolation mechanism, to be disabled for all running virtual machines."
}
]
}

50
2020/14xxx/CVE-2020-14334.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-14334",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "secalert@redhat.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Red Hat Satellite",
"version": {
"version_data": [
{
"version_value": "6"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper access control CWE-284"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1858284",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1858284"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "A flaw was found in Red Hat Satellite 6 which allows privileged attacker to read cache files. These cache credentials could help attacker to gain complete control of the Satellite instance."
}
]
}

50
2020/14xxx/CVE-2020-14337.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-14337",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "secalert@redhat.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Ansible Tower",
"version": {
"version_data": [
{
"version_value": "Ansible Tower 3.7.1 as well as previous versions are affected."
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Generation of Error Message Containing Sensitive Information CWE-209"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1859139",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859139"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "A data exposure flaw was found in Tower, where sensitive data was revealed from the HTTP return error codes. This flaw allows an unauthenticated, remote attacker to retrieve pages from the default organization and verify existing usernames. The highest threat from this vulnerability is to data confidentiality."
}
]
}

50
2020/14xxx/CVE-2020-14520.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-14520",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "ics-cert@hq.dhs.gov",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Ignition 8",
"version": {
"version_data": [
{
"version_value": "All versions prior to 8.0.13"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "MISSING AUTHORIZATION CWE-862"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://us-cert.cisa.gov/ics/advisories/icsa-20-212-01",
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-20-212-01"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "The affected product is vulnerable to an information leak, which may allow an attacker to obtain sensitive information on the Ignition 8 (all versions prior to 8.0.13)."
}
]
}

50
2020/9xxx/CVE-2020-9248.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-9248",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "psirt@huawei.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "FusionCompute",
"version": {
"version_data": [
{
"version_value": "8.0.0"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Improper Authorization"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-fc-en",
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-fc-en"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service."
}
]
}

50
2020/9xxx/CVE-2020-9249.json
View File

@ -4,14 +4,58 @@
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2020-9249",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ASSIGNER": "psirt@huawei.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "HUAWEI P30",
"version": {
"version_data": [
{
"version_value": "Versions earlier than 10.1.0.160(C00E160R2P11)"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial of Service"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-02-smartphone-en",
"url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-02-smartphone-en"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "HUAWEI P30 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have a denial of service vulnerability. A module does not deal with mal-crafted messages and it leads to memory leak. Attackers can exploit this vulnerability to make the device denial of service.Affected product versions include: HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11)."
}
]
}