admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-03-06 16:01:08 +00:00
parent f144a8362e
commit f0fc9b9994
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
2014/2xxx/CVE-2014-2875.json
View File

@ -11,7 +11,7 @@
"description_data": [
{
"lang": "eng",
"value": "The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses weak session IDs generated based on OS time, which allows remote attackers to hijack arbitrary sessions via a brute force attack. NOTE: CVE-2014-10300 and CVE-2014-10400 were SPLIT from this ID."
"value": "The session.lua library in CGILua 5.2 alpha 1 and 5.2 alpha 2 uses weak session IDs generated based on OS time, which allows remote attackers to hijack arbitrary sessions via a brute force attack. NOTE: CVE-2014-10399 and CVE-2014-10400 were SPLIT from this ID."
}
]
},

5
2020/10xxx/CVE-2020-10174.json
View File

@ -66,6 +66,11 @@
"url": "https://github.com/teejee2008/timeshift/releases/tag/v20.03",
"refsource": "MISC",
"name": "https://github.com/teejee2008/timeshift/releases/tag/v20.03"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20200306 CVE-2020-10174: timeshift: arbitrary local code execution due to unsafe usage of temporary directory in /tmp/timeshift",
"url": "http://www.openwall.com/lists/oss-security/2020/03/06/3"
}
]
}