From e8e511eaa825cdc0efc2c255f887f2178579f975 Mon Sep 17 00:00:00 2001
From: CVE Team <cve-request@mitre.org>
Date: Wed, 3 Jun 2020 09:01:17 +0000
Subject: [PATCH] "-Synchronized-Data."

---
 2020/10xxx/CVE-2020-10135.json | 7 ++++++-
 2020/9xxx/CVE-2020-9484.json   | 5 +++++
 2 files changed, 11 insertions(+), 1 deletion(-)

diff --git a/2020/10xxx/CVE-2020-10135.json b/2020/10xxx/CVE-2020-10135.json
index ba970465990..3be61505a4c 100644
--- a/2020/10xxx/CVE-2020-10135.json
+++ b/2020/10xxx/CVE-2020-10135.json
@@ -38,7 +38,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "Legacy pairing and secure-connections pairing authentication in Bluetooth® BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key."
+                "value": "Legacy pairing and secure-connections pairing authentication in Bluetooth\u00ae BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key."
             }
         ]
     },
@@ -89,6 +89,11 @@
                 "name": "https://www.bluetooth.com/learn-about-bluetooth/bluetooth-technology/bluetooth-security/bias-vulnerability/",
                 "refsource": "CONFIRM",
                 "url": "https://www.bluetooth.com/learn-about-bluetooth/bluetooth-technology/bluetooth-security/bias-vulnerability/"
+            },
+            {
+                "refsource": "FULLDISC",
+                "name": "20200602 BIAS (Bluetooth Impersonation Attack) CVE 2020-10135 reproduction",
+                "url": "http://seclists.org/fulldisclosure/2020/Jun/5"
             }
         ]
     },
diff --git a/2020/9xxx/CVE-2020-9484.json b/2020/9xxx/CVE-2020-9484.json
index 222354f3dbb..19e4f55b4d4 100644
--- a/2020/9xxx/CVE-2020-9484.json
+++ b/2020/9xxx/CVE-2020-9484.json
@@ -83,6 +83,11 @@
                 "refsource": "MLIST",
                 "name": "[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update",
                 "url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html"
+            },
+            {
+                "refsource": "FULLDISC",
+                "name": "20200602 [CVE-2020-9484] Apache Tomcat RCE via PersistentManager",
+                "url": "http://seclists.org/fulldisclosure/2020/Jun/6"
             }
         ]
     },