admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-06 18:53:08 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-06-14 15:00:52 +00:00
parent fd925f3cbf
commit d4effd3511
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
9 changed files with 388 additions and 335 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
2019/10xxx/CVE-2019-10925.json
View File

@ -58,6 +58,16 @@
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-816980.pdf",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-816980.pdf"
},
{
"refsource": "MISC",
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-02",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-02"
},
{
"refsource": "BID",
"name": "108725",
"url": "http://www.securityfocus.com/bid/108725"
}
]
},

10
2019/10xxx/CVE-2019-10926.json
View File

@ -58,6 +58,16 @@
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-816980.pdf",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-816980.pdf"
},
{
"refsource": "MISC",
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-02",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-02"
},
{
"refsource": "BID",
"name": "108725",
"url": "http://www.securityfocus.com/bid/108725"
}
]
},

18
2019/12xxx/CVE-2019-12826.json Normal file
View File

@ -0,0 +1,18 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2019-12826",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}

324
2019/4xxx/CVE-2019-4239.json
View File

@ -1,166 +1,166 @@
{
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM MQ Advanced Cloud Pak (IBM Cloud Private 1.0.0 through 3.0.1) stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 159465."
}
]
},
"references" : {
"reference_data" : [
{
"title" : "IBM Security Bulletin 886591 (Application Integration and Connectivity)",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10886591",
"refsource" : "CONFIRM",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10886591"
},
{
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/159465",
"refsource" : "XF",
"name" : "ibm-mq-cve20194239-info-disc (159465)"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"product" : {
"product_data" : [
{
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.1.0"
},
{
"version_value" : "1.2.0"
},
{
"version_value" : "1.3.0"
},
{
"version_value" : "2.0.0"
},
{
"version_value" : "2.1.0"
},
{
"version_value" : "2.2.0"
},
{
"version_value" : "2.2.1"
},
{
"version_value" : "2.2.2"
},
{
"version_value" : "2.2.3"
},
{
"version_value" : "3.0.0"
},
{
"version_value" : "3.0.1"
}
]
},
"product_name" : "MQ Advanced Cloud Pak (IBM Cloud Private)"
},
{
"product_name" : "MQ Advanced Cloud Pak (IBM Cloud Private on RedHat OpenShift)",
"version" : {
"version_data" : [
{
"version_value" : "1.0.0"
},
{
"version_value" : "1.1.0"
},
{
"version_value" : "1.2.0"
},
{
"version_value" : "1.3.0"
},
{
"version_value" : "2.0.0"
},
{
"version_value" : "2.1.0"
},
{
"version_value" : "2.2.0"
},
{
"version_value" : "2.2.1"
},
{
"version_value" : "2.2.2"
},
{
"version_value" : "2.2.3"
},
{
"version_value" : "3.0.0"
},
{
"version_value" : "3.0.1"
}
]
}
}
]
},
"vendor_name" : "IBM"
"lang": "eng",
"value": "IBM MQ Advanced Cloud Pak (IBM Cloud Private 1.0.0 through 3.0.1) stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 159465."
}
]
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
},
"references": {
"reference_data": [
{
"title": "IBM Security Bulletin 886591 (Application Integration and Connectivity)",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10886591",
"refsource": "CONFIRM",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10886591"
},
{
"title": "X-Force Vulnerability Report",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/159465",
"refsource": "XF",
"name": "ibm-mq-cve20194239-info-disc (159465)"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.1.0"
},
{
"version_value": "1.2.0"
},
{
"version_value": "1.3.0"
},
{
"version_value": "2.0.0"
},
{
"version_value": "2.1.0"
},
{
"version_value": "2.2.0"
},
{
"version_value": "2.2.1"
},
{
"version_value": "2.2.2"
},
{
"version_value": "2.2.3"
},
{
"version_value": "3.0.0"
},
{
"version_value": "3.0.1"
}
]
},
"product_name": "MQ Advanced Cloud Pak (IBM Cloud Private)"
},
{
"product_name": "MQ Advanced Cloud Pak (IBM Cloud Private on RedHat OpenShift)",
"version": {
"version_data": [
{
"version_value": "1.0.0"
},
{
"version_value": "1.1.0"
},
{
"version_value": "1.2.0"
},
{
"version_value": "1.3.0"
},
{
"version_value": "2.0.0"
},
{
"version_value": "2.1.0"
},
{
"version_value": "2.2.0"
},
{
"version_value": "2.2.1"
},
{
"version_value": "2.2.2"
},
{
"version_value": "2.2.3"
},
{
"version_value": "3.0.0"
},
{
"version_value": "3.0.1"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
]
},
"CVE_data_meta" : {
"ID" : "CVE-2019-4239",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-06-07T00:00:00"
},
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
},
"BM" : {
"PR" : "N",
"SCORE" : "6.200",
"A" : "N",
"S" : "U",
"AV" : "L",
"I" : "N",
"AC" : "L",
"UI" : "N",
"C" : "H"
}
}
}
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"CVE_data_meta": {
"ID": "CVE-2019-4239",
"STATE": "PUBLIC",
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-06-07T00:00:00"
},
"data_format": "MITRE",
"impact": {
"cvssv3": {
"TM": {
"RL": "O",
"RC": "C",
"E": "U"
},
"BM": {
"PR": "N",
"SCORE": "6.200",
"A": "N",
"S": "U",
"AV": "L",
"I": "N",
"AC": "L",
"UI": "N",
"C": "H"
}
}
}
}

174
2019/4xxx/CVE-2019-4381.json
View File

@ -1,90 +1,90 @@
{
"CVE_data_meta" : {
"STATE" : "PUBLIC",
"ID" : "CVE-2019-4381",
"DATE_PUBLIC" : "2019-06-12T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com"
},
"impact" : {
"cvssv3" : {
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
},
"BM" : {
"AV" : "L",
"I" : "N",
"AC" : "H",
"UI" : "N",
"C" : "H",
"PR" : "N",
"SCORE" : "5.900",
"A" : "N",
"S" : "C"
}
}
},
"data_format" : "MITRE",
"references" : {
"reference_data" : [
{
"title" : "IBM Security Bulletin 887369 (i)",
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10887369",
"refsource" : "CONFIRM",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10887369"
},
{
"title" : "X-Force Vulnerability Report",
"refsource" : "XF",
"name" : "ibm-i-cve20194381-info-disc (162159)",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/162159"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "IBM",
"product" : {
"product_data" : [
{
"product_name" : "i",
"version" : {
"version_data" : [
{
"version_value" : "7.27.3"
}
]
}
}
]
}
"CVE_data_meta": {
"STATE": "PUBLIC",
"ID": "CVE-2019-4381",
"DATE_PUBLIC": "2019-06-12T00:00:00",
"ASSIGNER": "psirt@us.ibm.com"
},
"impact": {
"cvssv3": {
"TM": {
"RL": "O",
"RC": "C",
"E": "U"
},
"BM": {
"AV": "L",
"I": "N",
"AC": "H",
"UI": "N",
"C": "H",
"PR": "N",
"SCORE": "5.900",
"A": "N",
"S": "C"
}
]
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
}
},
"data_format": "MITRE",
"references": {
"reference_data": [
{
"title": "IBM Security Bulletin 887369 (i)",
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10887369",
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10887369"
},
{
"title": "X-Force Vulnerability Report",
"refsource": "XF",
"name": "ibm-i-cve20194381-info-disc (162159)",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/162159"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "IBM",
"product": {
"product_data": [
{
"product_name": "i",
"version": {
"version_data": [
{
"version_value": "7.27.3"
}
]
}
}
]
}
}
]
}
]
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM i 7.27.3 Clustering could allow a local attacker to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with the HMC. An attacker could exploit this vulnerability to obtain HMC credentials. IBM X-Force ID: 162159."
}
]
},
"data_version" : "4.0",
"data_type" : "CVE"
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM i 7.27.3 Clustering could allow a local attacker to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with the HMC. An attacker could exploit this vulnerability to obtain HMC credentials. IBM X-Force ID: 162159."
}
]
},
"data_version": "4.0",
"data_type": "CVE"
}

172
2019/4xxx/CVE-2019-4403.json
View File

@ -1,90 +1,90 @@
{
"data_type" : "CVE",
"description" : {
"description_data" : [
{
"value" : "IBM Connections 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 162264.",
"lang" : "eng"
}
]
},
"data_version" : "4.0",
"references" : {
"reference_data" : [
{
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10886079",
"refsource" : "CONFIRM",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10886079",
"title" : "IBM Security Bulletin 886079 (Connections)"
},
{
"name" : "ibm-connections-cve20194403-xss (162264)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/162264",
"title" : "X-Force Vulnerability Report"
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"data_type": "CVE",
"description": {
"description_data": [
{
"product" : {
"product_data" : [
{
"product_name" : "Connections",
"version" : {
"version_data" : [
{
"version_value" : "6.0"
}
]
}
}
]
},
"vendor_name" : "IBM"
"value": "IBM Connections 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 162264.",
"lang": "eng"
}
]
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Cross-Site Scripting",
"lang" : "eng"
}
]
},
"data_version": "4.0",
"references": {
"reference_data": [
{
"url": "https://www.ibm.com/support/docview.wss?uid=ibm10886079",
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/docview.wss?uid=ibm10886079",
"title": "IBM Security Bulletin 886079 (Connections)"
},
{
"name": "ibm-connections-cve20194403-xss (162264)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/162264",
"title": "X-Force Vulnerability Report"
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Connections",
"version": {
"version_data": [
{
"version_value": "6.0"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
]
},
"impact" : {
"cvssv3" : {
"BM" : {
"PR" : "L",
"S" : "C",
"A" : "N",
"SCORE" : "5.400",
"I" : "L",
"AV" : "N",
"C" : "L",
"AC" : "L",
"UI" : "R"
},
"TM" : {
"RL" : "O",
"E" : "H",
"RC" : "C"
}
}
},
"data_format" : "MITRE",
"CVE_data_meta" : {
"STATE" : "PUBLIC",
"ID" : "CVE-2019-4403",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-06-12T00:00:00"
}
}
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "Cross-Site Scripting",
"lang": "eng"
}
]
}
]
},
"impact": {
"cvssv3": {
"BM": {
"PR": "L",
"S": "C",
"A": "N",
"SCORE": "5.400",
"I": "L",
"AV": "N",
"C": "L",
"AC": "L",
"UI": "R"
},
"TM": {
"RL": "O",
"E": "H",
"RC": "C"
}
}
},
"data_format": "MITRE",
"CVE_data_meta": {
"STATE": "PUBLIC",
"ID": "CVE-2019-4403",
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-06-12T00:00:00"
}
}

5
2019/6xxx/CVE-2019-6580.json
View File

@ -88,6 +88,11 @@
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf"
},
{
"refsource": "MISC",
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01"
}
]
},

5
2019/6xxx/CVE-2019-6581.json
View File

@ -88,6 +88,11 @@
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf"
},
{
"refsource": "MISC",
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01"
}
]
},

5
2019/6xxx/CVE-2019-6582.json
View File

@ -88,6 +88,11 @@
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf",
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-212009.pdf"
},
{
"refsource": "MISC",
"name": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01",
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-19-162-01"
}
]
},