From e4ea0405a57a18c8496b69b2be3b94736e8fb007 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Sat, 16 Dec 2023 01:00:35 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/17xxx/CVE-2020-17483.json | 53 ++++++++++++++++++++++++++++++++-- 2020/17xxx/CVE-2020-17484.json | 53 ++++++++++++++++++++++++++++++++-- 2020/17xxx/CVE-2020-17485.json | 53 ++++++++++++++++++++++++++++++++-- 2023/50xxx/CVE-2023-50246.json | 5 ++++ 2023/50xxx/CVE-2023-50268.json | 5 ++++ 2023/6xxx/CVE-2023-6882.json | 18 ++++++++++++ 2023/6xxx/CVE-2023-6883.json | 18 ++++++++++++ 7 files changed, 199 insertions(+), 6 deletions(-) create mode 100644 2023/6xxx/CVE-2023-6882.json create mode 100644 2023/6xxx/CVE-2023-6883.json diff --git a/2020/17xxx/CVE-2020-17483.json b/2020/17xxx/CVE-2020-17483.json index bbe311efcd1..264419298b5 100644 --- a/2020/17xxx/CVE-2020-17483.json +++ b/2020/17xxx/CVE-2020-17483.json @@ -5,13 +5,62 @@ "CVE_data_meta": { "ID": "CVE-2020-17483", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://www.uffizio.com/", + "url": "https://www.uffizio.com/" + }, + { + "refsource": "MISC", + "name": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02", + "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02" + } + ] }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An improper access control vulnerability exists in Uffizio's GPS Tracker all versions that lead to sensitive information disclosure of all the connected devices. By visiting the vulnerable host at port 9000, we see it responds with a JSON body that has all the details about the devices which have been deployed." } ] } diff --git a/2020/17xxx/CVE-2020-17484.json b/2020/17xxx/CVE-2020-17484.json index 5af726fb9a0..79ab7324a6f 100644 --- a/2020/17xxx/CVE-2020-17484.json +++ b/2020/17xxx/CVE-2020-17484.json @@ -5,13 +5,62 @@ "CVE_data_meta": { "ID": "CVE-2020-17484", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://www.uffizio.com/", + "url": "https://www.uffizio.com/" + }, + { + "refsource": "MISC", + "name": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02", + "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02" + } + ] }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An Open Redirection vulnerability exists in Uffizio's GPS Tracker all versions allows an attacker to construct a URL within the application that causes a redirection to an arbitrary external domain." } ] } diff --git a/2020/17xxx/CVE-2020-17485.json b/2020/17xxx/CVE-2020-17485.json index 3ce542bd892..190ae2268d3 100644 --- a/2020/17xxx/CVE-2020-17485.json +++ b/2020/17xxx/CVE-2020-17485.json @@ -5,13 +5,62 @@ "CVE_data_meta": { "ID": "CVE-2020-17485", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://www.uffizio.com/", + "url": "https://www.uffizio.com/" + }, + { + "refsource": "MISC", + "name": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02", + "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-21-287-02" + } + ] }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A Remote Code Execution vulnerability exist in Uffizio's GPS Tracker all versions. The web server can be compromised by uploading and executing a web/reverse shell. An attacker could then run commands, browse system files, and browse local resources" } ] } diff --git a/2023/50xxx/CVE-2023-50246.json b/2023/50xxx/CVE-2023-50246.json index e9a7df783dc..66d6c2bc83a 100644 --- a/2023/50xxx/CVE-2023-50246.json +++ b/2023/50xxx/CVE-2023-50246.json @@ -77,6 +77,11 @@ "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64574", "refsource": "MISC", "name": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64574" + }, + { + "url": "http://www.openwall.com/lists/oss-security/2023/12/15/10", + "refsource": "MISC", + "name": "http://www.openwall.com/lists/oss-security/2023/12/15/10" } ] }, diff --git a/2023/50xxx/CVE-2023-50268.json b/2023/50xxx/CVE-2023-50268.json index 8594c6bc12a..c17e2e6d95b 100644 --- a/2023/50xxx/CVE-2023-50268.json +++ b/2023/50xxx/CVE-2023-50268.json @@ -82,6 +82,11 @@ "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64771", "refsource": "MISC", "name": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64771" + }, + { + "url": "http://www.openwall.com/lists/oss-security/2023/12/15/10", + "refsource": "MISC", + "name": "http://www.openwall.com/lists/oss-security/2023/12/15/10" } ] }, diff --git a/2023/6xxx/CVE-2023-6882.json b/2023/6xxx/CVE-2023-6882.json new file mode 100644 index 00000000000..a05bb52dfeb --- /dev/null +++ b/2023/6xxx/CVE-2023-6882.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2023-6882", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2023/6xxx/CVE-2023-6883.json b/2023/6xxx/CVE-2023-6883.json new file mode 100644 index 00000000000..7459e81e534 --- /dev/null +++ b/2023/6xxx/CVE-2023-6883.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2023-6883", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file