admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2019-01-30 10:03:28 -05:00
parent 3929e48f42
commit d07fae7826
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
45 changed files with 748 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
2016/5xxx/CVE-2016-5824.json
View File

@ -81,6 +81,11 @@
"name" : "https://github.com/libical/libical/issues/286",
"refsource" : "CONFIRM",
"url" : "https://github.com/libical/libical/issues/286"
},
{
"name" : "91459",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/91459"
}
]
}

5
2016/5xxx/CVE-2016-5825.json
View File

@ -61,6 +61,11 @@
"name" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1280832",
"refsource" : "MISC",
"url" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1280832"
},
{
"name" : "91459",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/91459"
}
]
}

5
2016/5xxx/CVE-2016-5826.json
View File

@ -61,6 +61,11 @@
"name" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1281041",
"refsource" : "MISC",
"url" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1281041"
},
{
"name" : "91459",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/91459"
}
]
}

5
2016/5xxx/CVE-2016-5827.json
View File

@ -61,6 +61,11 @@
"name" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1281043",
"refsource" : "MISC",
"url" : "https://bugzilla.mozilla.org/show_bug.cgi?id=1281043"
},
{
"name" : "91459",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/91459"
}
]
}

5
2018/10xxx/CVE-2018-10612.json
View File

@ -57,6 +57,11 @@
"name" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-352-03",
"refsource" : "MISC",
"url" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-352-03"
},
{
"name" : "106248",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/106248"
}
]
}

5
2018/10xxx/CVE-2018-10840.json
View File

@ -67,6 +67,11 @@
"refsource" : "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10840"
},
{
"name" : "RHSA-2019:0162",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0162"
},
{
"name" : "USN-3752-1",
"refsource" : "UBUNTU",

5
2018/10xxx/CVE-2018-10876.json
View File

@ -97,6 +97,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3753-2/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "106503",
"refsource" : "BID",

5
2018/10xxx/CVE-2018-10877.json
View File

@ -92,6 +92,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3754-1/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "106503",
"refsource" : "BID",

5
2018/10xxx/CVE-2018-10878.json
View File

@ -121,6 +121,11 @@
"name" : "USN-3753-2",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3753-2/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
}
]
}

5
2018/10xxx/CVE-2018-10879.json
View File

@ -122,6 +122,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3753-2/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "104902",
"refsource" : "BID",

5
2018/10xxx/CVE-2018-10880.json
View File

@ -102,6 +102,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3821-2/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "106503",
"refsource" : "BID",

5
2018/10xxx/CVE-2018-10882.json
View File

@ -97,6 +97,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3753-2/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "106503",
"refsource" : "BID",

5
2018/10xxx/CVE-2018-10883.json
View File

@ -96,6 +96,11 @@
"name" : "RHSA-2018:3096",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2018:3096"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
}
]
}

63
2018/12xxx/CVE-2018-12609.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-12609",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,43 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "OX App Suite 7.8.4 and earlier allows Server-Side Request Forgery."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20190104 Open-Xchange Security Advisory 2018-12-31",
"refsource" : "FULLDISC",
"url" : "http://seclists.org/fulldisclosure/2019/Jan/10"
},
{
"name" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf"
},
{
"name" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf"
},
{
"name" : "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_4789_7.6.3_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_4789_7.6.3_2018-06-25.pdf"
}
]
}

58
2018/12xxx/CVE-2018-12610.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-12610",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,38 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "OX App Suite 7.8.4 and earlier allows Information Exposure."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20190104 Open-Xchange Security Advisory 2018-12-31",
"refsource" : "FULLDISC",
"url" : "http://seclists.org/fulldisclosure/2019/Jan/10"
},
{
"name" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf"
},
{
"name" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf"
}
]
}

63
2018/12xxx/CVE-2018-12611.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-12611",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,43 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "OX App Suite 7.8.4 and earlier allows Directory Traversal."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20190104 Open-Xchange Security Advisory 2018-12-31",
"refsource" : "FULLDISC",
"url" : "http://seclists.org/fulldisclosure/2019/Jan/10"
},
{
"name" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "http://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4791_7.8.4_2018-06-25.pdf"
},
{
"name" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "https://software.open-xchange.com/OX6/doc/Release_Notes_for_Patch_Release_4790_7.8.3_2018-06-25.pdf"
},
{
"name" : "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_4789_7.6.3_2018-06-25.pdf",
"refsource" : "CONFIRM",
"url" : "https://software.open-xchange.com/products/appsuite/doc/Release_Notes_for_Patch_Release_4789_7.6.3_2018-06-25.pdf"
}
]
}

10
2018/14xxx/CVE-2018-14625.json
View File

@ -71,6 +71,16 @@
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14625",
"refsource" : "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14625"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "USN-3872-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3872-1/"
}
]
}

48
2018/15xxx/CVE-2018-15136.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-15136",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,28 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "TitanHQ SpamTitan before 7.01 has Improper input validation. This allows internal attackers to bypass the anti-spam filter to send malicious emails to an entire organization by modifying the URL requests sent to the application."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://www.fwhibbit.es/bypassing-spam-titan-my-first-cve",
"refsource" : "MISC",
"url" : "https://www.fwhibbit.es/bypassing-spam-titan-my-first-cve"
}
]
}

5
2018/16xxx/CVE-2018-16864.json
View File

@ -92,6 +92,11 @@
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0049"
},
{
"name" : "RHSA-2019:0204",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0204"
},
{
"name" : "USN-3855-1",
"refsource" : "UBUNTU",

5
2018/16xxx/CVE-2018-16865.json
View File

@ -92,6 +92,11 @@
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0049"
},
{
"name" : "RHSA-2019:0204",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0204"
},
{
"name" : "USN-3855-1",
"refsource" : "UBUNTU",

5
2018/16xxx/CVE-2018-16880.json
View File

@ -66,6 +66,11 @@
"name" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16880",
"refsource" : "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16880"
},
{
"name" : "106735",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/106735"
}
]
}

10
2018/16xxx/CVE-2018-16882.json
View File

@ -85,6 +85,16 @@
"refsource" : "CONFIRM",
"url" : "https://lwn.net/Articles/775721/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "USN-3872-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3872-1/"
},
{
"name" : "106254",
"refsource" : "BID",

48
2018/17xxx/CVE-2018-17431.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-17431",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,28 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/Fadavvi/CVE-2018-17431-PoC#confirmation-than-bug-exist-2018-09-25-ticket-id-xwr-503-79437",
"refsource" : "MISC",
"url" : "https://github.com/Fadavvi/CVE-2018-17431-PoC#confirmation-than-bug-exist-2018-09-25-ticket-id-xwr-503-79437"
}
]
}

5
2018/17xxx/CVE-2018-17958.json
View File

@ -62,6 +62,11 @@
"refsource" : "MLIST",
"url" : "https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03269.html"
},
{
"name" : "[debian-lts-announce] 20190129 [SECURITY] [DLA 1646-1] qemu security update",
"refsource" : "MLIST",
"url" : "https://lists.debian.org/debian-lts-announce/2019/01/msg00023.html"
},
{
"name" : "USN-3826-1",
"refsource" : "UBUNTU",

5
2018/17xxx/CVE-2018-17972.json
View File

@ -77,6 +77,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3835-1/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "105525",
"refsource" : "BID",

5
2018/18xxx/CVE-2018-18281.json
View File

@ -97,6 +97,11 @@
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3835-1/"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "105761",
"refsource" : "BID",

10
2018/18xxx/CVE-2018-18397.json
View File

@ -76,6 +76,16 @@
"name" : "https://github.com/torvalds/linux/commit/29ec90660d68bbdd69507c1c8b4e33aa299278b1",
"refsource" : "MISC",
"url" : "https://github.com/torvalds/linux/commit/29ec90660d68bbdd69507c1c8b4e33aa299278b1"
},
{
"name" : "RHSA-2019:0163",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0163"
},
{
"name" : "RHSA-2019:0202",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0202"
}
]
}

10
2018/18xxx/CVE-2018-18559.json
View File

@ -56,6 +56,16 @@
"name" : "https://blogs.securiteam.com/index.php/archives/3731",
"refsource" : "MISC",
"url" : "https://blogs.securiteam.com/index.php/archives/3731"
},
{
"name" : "RHSA-2019:0163",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0163"
},
{
"name" : "RHSA-2019:0188",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0188"
}
]
}

63
2018/18xxx/CVE-2018-18895.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-18895",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,43 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "A version of Castor XML, as used in Cisco WebEx Meetings Server before 2.8MR3 and 3.x before 3.0MR2 patch 1 and other products, allows XXE attacks."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20181102 Disclose Vulnerability",
"refsource" : "BUGTRAQ",
"url" : "https://seclists.org/bugtraq/2018/Nov/0"
},
{
"name" : "20181102 Disclose Vulnerability",
"refsource" : "FULLDISC",
"url" : "http://seclists.org/fulldisclosure/2018/Nov/0"
},
{
"name" : "http://packetstormsecurity.com/files/150162/Cisco-WebEx-Meetings-Server-XML-Injection.html",
"refsource" : "MISC",
"url" : "http://packetstormsecurity.com/files/150162/Cisco-WebEx-Meetings-Server-XML-Injection.html"
},
{
"name" : "1042085",
"refsource" : "SECTRACK",
"url" : "http://www.securitytracker.com/id/1042085"
}
]
}

5
2018/18xxx/CVE-2018-18985.json
View File

@ -57,6 +57,11 @@
"name" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-333-02",
"refsource" : "MISC",
"url" : "https://ics-cert.us-cert.gov/advisories/ICSA-18-333-02"
},
{
"name" : "106530",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/106530"
}
]
}

5
2018/19xxx/CVE-2018-19364.json
View File

@ -67,6 +67,11 @@
"refsource" : "MLIST",
"url" : "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg02795.html"
},
{
"name" : "[debian-lts-announce] 20190129 [SECURITY] [DLA 1646-1] qemu security update",
"refsource" : "MLIST",
"url" : "https://lists.debian.org/debian-lts-announce/2019/01/msg00023.html"
},
{
"name" : "USN-3826-1",
"refsource" : "UBUNTU",

10
2018/19xxx/CVE-2018-19407.json
View File

@ -57,6 +57,16 @@
"refsource" : "MISC",
"url" : "https://lkml.org/lkml/2018/11/20/580"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
},
{
"name" : "USN-3872-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3872-1/"
},
{
"name" : "105987",
"refsource" : "BID",

53
2018/19xxx/CVE-2018-19440.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-19440",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,33 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "ARM Trusted Firmware-A allows information disclosure."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://github.com/ARM-software/arm-trusted-firmware/pull/1710",
"refsource" : "CONFIRM",
"url" : "https://github.com/ARM-software/arm-trusted-firmware/pull/1710"
},
{
"name" : "https://github.com/ARM-software/arm-trusted-firmware/wiki/Trusted-Firmware-A-Security-Advisory-TFV-8",
"refsource" : "CONFIRM",
"url" : "https://github.com/ARM-software/arm-trusted-firmware/wiki/Trusted-Firmware-A-Security-Advisory-TFV-8"
}
]
}

5
2018/19xxx/CVE-2018-19489.json
View File

@ -62,6 +62,11 @@
"refsource" : "MLIST",
"url" : "https://lists.gnu.org/archive/html/qemu-devel/2018-11/msg04489.html"
},
{
"name" : "[debian-lts-announce] 20190129 [SECURITY] [DLA 1646-1] qemu security update",
"refsource" : "MLIST",
"url" : "https://lists.debian.org/debian-lts-announce/2019/01/msg00023.html"
},
{
"name" : "https://git.qemu.org/?p=qemu.git;a=commit;h=1d20398694a3b67a388d955b7a945ba4aa90a8a8",
"refsource" : "CONFIRM",

5
2018/19xxx/CVE-2018-19723.json
View File

@ -56,6 +56,11 @@
"name" : "https://helpx.adobe.com/security/products/acrobat/apsb18-34.html",
"refsource" : "CONFIRM",
"url" : "https://helpx.adobe.com/security/products/acrobat/apsb18-34.html"
},
{
"name" : "106751",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/106751"
}
]
}

63
2018/19xxx/CVE-2018-19782.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-19782",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,43 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "45954",
"refsource" : "EXPLOIT-DB",
"url" : "https://www.exploit-db.com/exploits/45954/"
},
{
"name" : "20181204 Multiple Cross-Site Scripting Vulnerabilities in FreshRSS 1.11.1",
"refsource" : "FULLDISC",
"url" : "http://seclists.org/fulldisclosure/2018/Dec/3"
},
{
"name" : "http://packetstormsecurity.com/files/150608/FreshRSS-1.11.1-Cross-Site-Scripting.html",
"refsource" : "MISC",
"url" : "http://packetstormsecurity.com/files/150608/FreshRSS-1.11.1-Cross-Site-Scripting.html"
},
{
"name" : "https://www.netsparker.com/web-applications-advisories/ns-18-024-multiple-cross-site-scripting-vulnerabilities-in-freshrss/",
"refsource" : "MISC",
"url" : "https://www.netsparker.com/web-applications-advisories/ns-18-024-multiple-cross-site-scripting-vulnerabilities-in-freshrss/"
}
]
}

5
2018/19xxx/CVE-2018-19854.json
View File

@ -66,6 +66,11 @@
"name" : "https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.3",
"refsource" : "MISC",
"url" : "https://kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.3"
},
{
"name" : "USN-3872-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3872-1/"
}
]
}

58
2018/19xxx/CVE-2018-19858.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-19858",
"STATE" : "RESERVED"
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
@ -11,7 +34,38 @@
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value" : "PrinceXML, versions 10 and below, is vulnerable to XXE due to the lack of protection against external entities. If an attacker passes HTML referencing an XML file (e.g., in an IFRAME element), PrinceXML will fetch the XML and parse it, thus giving an attacker file-read access and full-fledged SSRF."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "https://hacking.us.com/blog/XSS-to-XXE-in-Prince/",
"refsource" : "MISC",
"url" : "https://hacking.us.com/blog/XSS-to-XXE-in-Prince/"
},
{
"name" : "https://www.lynxsecurity.io/",
"refsource" : "MISC",
"url" : "https://www.lynxsecurity.io/"
},
{
"name" : "https://www.youtube.com/watch?v=-7YIzYtWhzM",
"refsource" : "MISC",
"url" : "https://www.youtube.com/watch?v=-7YIzYtWhzM"
}
]
}

10
2018/19xxx/CVE-2018-19863.json
View File

@ -52,10 +52,20 @@
},
"references" : {
"reference_data" : [
{
"name" : "https://discussions.agilebits.com/discussion/99429/the-security-content-of=-betas-7-2-3-beta-3-and-7-2-3-beta-4/p1?new=3D1",
"refsource" : "MISC",
"url" : "https://discussions.agilebits.com/discussion/99429/the-security-content-of=-betas-7-2-3-beta-3-and-7-2-3-beta-4/p1?new=3D1"
},
{
"name" : "https://support.1password.com/kb/201812/",
"refsource" : "CONFIRM",
"url" : "https://support.1password.com/kb/201812/"
},
{
"name" : "https://app-updates.agilebits.com/product_history/OPM7#v70203009",
"refsource" : "CONFIRM",
"url" : "https://app-updates.agilebits.com/product_history/OPM7#v70203009"
}
]
}

18
2018/20xxx/CVE-2018-20746.json Normal file
View File

@ -0,0 +1,18 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-20746",
"STATE" : "RESERVED"
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

18
2018/20xxx/CVE-2018-20747.json Normal file
View File

@ -0,0 +1,18 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-20747",
"STATE" : "RESERVED"
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

5
2018/9xxx/CVE-2018-9206.json
View File

@ -85,6 +85,11 @@
"name" : "106629",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/106629"
},
{
"name" : "105679",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/105679"
}
]
}

5
2018/9xxx/CVE-2018-9516.json
View File

@ -67,6 +67,11 @@
"name" : "DSA-4308",
"refsource" : "DEBIAN",
"url" : "https://www.debian.org/security/2018/dsa-4308"
},
{
"name" : "USN-3871-1",
"refsource" : "UBUNTU",
"url" : "https://usn.ubuntu.com/3871-1/"
}
]
}

5
2019/3xxx/CVE-2019-3815.json
View File

@ -67,6 +67,11 @@
"refsource" : "CONFIRM",
"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3815"
},
{
"name" : "RHSA-2019:0201",
"refsource" : "REDHAT",
"url" : "https://access.redhat.com/errata/RHSA-2019:0201"
},
{
"name" : "106632",
"refsource" : "BID",

18
2019/7xxx/CVE-2019-7216.json Normal file
View File

@ -0,0 +1,18 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2019-7216",
"STATE" : "RESERVED"
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}