"-Synchronized-Data."

2025-06-21 05:40:25 +00:00 · 2020-05-01 19:01:13 +00:00 · 2020-05-01 19:01:13 +00:00 · daeaaff52c
commit daeaaff52c
parent 5c4c79ff90
2 changed files with 61 additions and 7 deletions
--- a/2019/16xxx/CVE-2019-16287.json
+++ b/2019/16xxx/CVE-2019-16287.json
@ -74,7 +74,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "An attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose presence puts the device in Administrative Mode, which will allow the attacker to executed commands with elevated privileges."
+                "value": "In HP ThinPro Linux 6.2, 6.2.1, 7.0 and 7.1, an attacker may be able to leverage the application filter bypass vulnerability to gain privileged access to create a file on the local file system whose presence puts the device in Administrative Mode, which will allow the attacker to executed commands with elevated privileges."
            }
        ]
    }
--- a/2020/10xxx/CVE-2020-10683.json
+++ b/2020/10xxx/CVE-2020-10683.json
@ -1,17 +1,71 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
-        "ID": "CVE-2020-10683",
        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ID": "CVE-2020-10683",
+        "STATE": "PUBLIC"
    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "dom4j before 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "refsource": "MISC",
+                "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1694235",
+                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1694235"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://github.com/dom4j/dom4j/releases/tag/version-2.1.3",
+                "url": "https://github.com/dom4j/dom4j/releases/tag/version-2.1.3"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "https://github.com/dom4j/dom4j/commit/a8228522a99a02146106672a34c104adbda5c658",
+                "url": "https://github.com/dom4j/dom4j/commit/a8228522a99a02146106672a34c104adbda5c658"
            }
        ]
    }