admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 03:02:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-12-31 20:01:05 +00:00
parent 5d08d652e7
commit ed2153d824
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
10 changed files with 365 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

58
2004/2xxx/CVE-2004-2776.json
View File

@ -2,7 +2,7 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2004-2776",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +11,61 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "go.cgi in GoScript 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) query string or (2) artarchive parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/mikaku/Monitorix/issues/30",
"url": "https://github.com/mikaku/Monitorix/issues/30"
},
{
"refsource": "MISC",
"name": "http://openwall.com/lists/oss-security/2013/12/12/8",
"url": "http://openwall.com/lists/oss-security/2013/12/12/8"
},
{
"refsource": "MISC",
"name": "http://marc.info/?l=bugtraq&m=109164242705572&w=2",
"url": "http://marc.info/?l=bugtraq&m=109164242705572&w=2"
}
]
}

70
2011/3xxx/CVE-2011-3585.json
View File

@ -1,8 +1,8 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2011-3585",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +11,71 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Multiple race conditions in the (1) mount.cifs and (2) umount.cifs programs in Samba 3.6 allow local users to cause a denial of service (mounting outage) via a SIGKILL signal during a time window when the /etc/mtab~ file exists."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "General Race Condition"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Samba",
"product": {
"product_data": [
{
"product_name": "Samba",
"version": {
"version_data": [
{
"version_value": "3.6"
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://bugzilla.samba.org/show_bug.cgi?id=7179",
"url": "https://bugzilla.samba.org/show_bug.cgi?id=7179"
},
{
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=742907",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=742907"
},
{
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2011/09/27/1",
"url": "https://www.openwall.com/lists/oss-security/2011/09/27/1"
},
{
"refsource": "MISC",
"name": "https://www.openwall.com/lists/oss-security/2011/09/30/5",
"url": "https://www.openwall.com/lists/oss-security/2011/09/30/5"
},
{
"refsource": "MISC",
"name": "https://git.samba.org/?p=cifs-utils.git;a=commitdiff;h=810f7e4e0f2dbcbee0294d9b371071cb08268200",
"url": "https://git.samba.org/?p=cifs-utils.git;a=commitdiff;h=810f7e4e0f2dbcbee0294d9b371071cb08268200"
}
]
}

58
2013/7xxx/CVE-2013-7070.json
View File

@ -2,7 +2,7 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-7070",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +11,61 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "The handle_request function in lib/HTTPServer.pm in Monitorix before 3.3.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the URI."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/mikaku/Monitorix/issues/30",
"url": "https://github.com/mikaku/Monitorix/issues/30"
},
{
"refsource": "MISC",
"name": "http://openwall.com/lists/oss-security/2013/12/12/8",
"url": "http://openwall.com/lists/oss-security/2013/12/12/8"
},
{
"refsource": "MISC",
"name": "https://github.com/mikaku/Monitorix/commit/ff80441be7089f774448dfe4b49e6fced70e71cb",
"url": "https://github.com/mikaku/Monitorix/commit/ff80441be7089f774448dfe4b49e6fced70e71cb"
}
]
}

58
2013/7xxx/CVE-2013-7071.json
View File

@ -2,7 +2,7 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-7071",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +11,61 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Cross-site scripting (XSS) vulnerability in the handle_request function in lib/HTTPServer.pm in Monitorix before 3.4.0 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/mikaku/Monitorix/issues/30",
"url": "https://github.com/mikaku/Monitorix/issues/30"
},
{
"refsource": "MISC",
"name": "http://openwall.com/lists/oss-security/2013/12/12/8",
"url": "http://openwall.com/lists/oss-security/2013/12/12/8"
},
{
"refsource": "MISC",
"name": "https://github.com/mikaku/Monitorix/commit/e86c11593238be6956a67a04d640c65810d50b59",
"url": "https://github.com/mikaku/Monitorix/commit/e86c11593238be6956a67a04d640c65810d50b59"
}
]
}

5
2018/16xxx/CVE-2018-16554.json
View File

@ -61,6 +61,11 @@
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908176",
"refsource": "MISC",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908176"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20191231 [SECURITY] [DLA 2054-1] jhead security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html"
}
]
}

5
2018/17xxx/CVE-2018-17088.json
View File

@ -56,6 +56,11 @@
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907925",
"refsource": "MISC",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907925"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20191231 [SECURITY] [DLA 2054-1] jhead security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html"
}
]
}

5
2019/1010xxx/CVE-2019-1010301.json
View File

@ -76,6 +76,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2019-441c2fb0d1",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTGUHTJTQ6EKEPDXFSKZKVLUJC4UAPBQ/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20191231 [SECURITY] [DLA 2054-1] jhead security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html"
}
]
}

5
2019/1010xxx/CVE-2019-1010302.json
View File

@ -66,6 +66,11 @@
"refsource": "FEDORA",
"name": "FEDORA-2019-441c2fb0d1",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTGUHTJTQ6EKEPDXFSKZKVLUJC4UAPBQ/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20191231 [SECURITY] [DLA 2054-1] jhead security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00037.html"
}
]
}

15
2019/10xxx/CVE-2019-10013.json
View File

@ -57,10 +57,25 @@
"refsource": "MISC",
"name": "http://axtls.sourceforge.net"
},
{
"refsource": "MISC",
"name": "https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/details/advisories-504842",
"url": "https://www.telekom.com/en/corporate-responsibility/data-protection-data-security/security/details/advisories-504842"
},
{
"refsource": "BUGTRAQ",
"name": "20191128 [Public Disclosure] Two Denial-of-Service vulnerabilities found in axTLS library (CVE-2019-9689 / CVE-2019-10013)",
"url": "https://seclists.org/bugtraq/2019/Nov/44"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/155500/axTLS-2.1.5-Denial-Of-Service.html",
"url": "http://packetstormsecurity.com/files/155500/axTLS-2.1.5-Denial-Of-Service.html"
},
{
"refsource": "MISC",
"name": "https://www.telekom.com/resource/blob/586416/12097aeb8f9a6bba89a804b94575521a/dl-191121-critical-remote-denial-of-service-vulnerability-i--data.pdf",
"url": "https://www.telekom.com/resource/blob/586416/12097aeb8f9a6bba89a804b94575521a/dl-191121-critical-remote-denial-of-service-vulnerability-i--data.pdf"
}
]
}

95
2019/18xxx/CVE-2019-18568.json Normal file
View File

@ -0,0 +1,95 @@
{
"CVE_data_meta": {
"ASSIGNER": "cert@airbus.com",
"DATE_PUBLIC": "2019-07-24T00:00:00.000Z",
"ID": "CVE-2019-18568",
"STATE": "PUBLIC",
"TITLE": "Avira Free Antivirus is proned to a local privilege escalation through the execution of kernel code from a restricted user."
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Antivirus Free Antivirus ",
"version": {
"version_data": [
{
"platform": "x86",
"version_affected": "<=",
"version_name": "Antivirus Free Antivirus ",
"version_value": "15.0.1907.1514"
}
]
}
}
]
},
"vendor_name": "AVIRA"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Nicolas Delhaye from AIRBUS"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Avira Free Antivirus 15.0.1907.1514 is prone to a local privilege escalation through the execution of kernel code from a restricted user."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.6"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-680 Integer Overflow to Buffer Overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://support.avira.com/hc/en-us/articles/360000109798-Avira-Antivirus-for-Windows",
"refsource": "CONFIRM",
"url": "https://support.avira.com/hc/en-us/articles/360000109798-Avira-Antivirus-for-Windows"
}
]
},
"source": {
"discovery": "INTERNAL"
}
}