diff --git a/2019/11xxx/CVE-2019-11666.json b/2019/11xxx/CVE-2019-11666.json index 37fb96987da..e28e03b6479 100644 --- a/2019/11xxx/CVE-2019-11666.json +++ b/2019/11xxx/CVE-2019-11666.json @@ -4,14 +4,97 @@ "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2019-11666", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "security@suse.com", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Micro Focus", + "product": { + "product_data": [ + { + "product_name": "Service Manager", + "version": { + "version_data": [ + { + "version_value": "9.30" + }, + { + "version_value": "9.31" + }, + { + "version_value": "9.32" + }, + { + "version_value": "9.33" + }, + { + "version_value": "9.34" + }, + { + "version_value": "9.35" + }, + { + "version_value": "9.40" + }, + { + "version_value": "9.41" + }, + { + "version_value": "9.50" + }, + { + "version_value": "9.51" + }, + { + "version_value": "9.52" + }, + { + "version_value": "9.60" + }, + { + "version_value": "9.61" + }, + { + "version_value": "9.62" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Insecure deserialization of untrusted data." + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "CONFIRM", + "name": "https://softwaresupport.softwaregrp.com/doc/KM03518316", + "url": "https://softwaresupport.softwaregrp.com/doc/KM03518316" + } + ] }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Insecure deserialization of untrusted data in Micro Focus Service Manager product versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. The vulnerability could be exploited to allow insecure deserialization of untrusted data." } ] } diff --git a/2019/13xxx/CVE-2019-13542.json b/2019/13xxx/CVE-2019-13542.json new file mode 100644 index 00000000000..a0f6ba8d8ce --- /dev/null +++ b/2019/13xxx/CVE-2019-13542.json @@ -0,0 +1,62 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2019-13542", + "ASSIGNER": "ics-cert@hq.dhs.gov", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "GmbH", + "product": { + "product_data": [ + { + "product_name": "3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server", + "version": { + "version_data": [ + { + "version_value": "all versions 3.5.11.0 to 3.5.15.0" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "NULL POINTER DEREFERENCE CWE-476" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "name": "https://www.us-cert.gov/ics/advisories/icsa-19-255-04", + "url": "https://www.us-cert.gov/ics/advisories/icsa-19-255-04" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "3S-Smart Software Solutions GmbH CODESYS V3 OPC UA Server, all versions 3.5.11.0 to 3.5.15.0, allows an attacker to send crafted requests from a trusted OPC UA client that cause a NULL pointer dereference, which may trigger a denial-of-service condition." + } + ] + } +} \ No newline at end of file diff --git a/2019/15xxx/CVE-2019-15903.json b/2019/15xxx/CVE-2019-15903.json index d024386d044..a4d35200373 100644 --- a/2019/15xxx/CVE-2019-15903.json +++ b/2019/15xxx/CVE-2019-15903.json @@ -81,6 +81,11 @@ "refsource": "BUGTRAQ", "name": "20190917 [slackware-security] expat (SSA:2019-259-01)", "url": "https://seclists.org/bugtraq/2019/Sep/30" + }, + { + "refsource": "MISC", + "name": "http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html", + "url": "http://packetstormsecurity.com/files/154503/Slackware-Security-Advisory-expat-Updates.html" } ] }