- Synchronized data.

2025-06-08 14:08:13 +00:00 · 2018-10-19 09:07:56 -04:00 · 2018-10-19 09:07:56 -04:00 · f6b389ef2a
commit f6b389ef2a
parent c4388bf334
6 changed files with 22 additions and 5 deletions
--- a/2018/15xxx/CVE-2018-15312.json
+++ b/2018/15xxx/CVE-2018-15312.json
@ -38,7 +38,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "On 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6 a reflected Cross-Site Scripting (XSS) vulnerability is exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user."
+            "value" : "On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, a reflected Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an authenticated user to execute JavaScript for the currently logged-in user."
         }
      ]
   },
@ -57,6 +57,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://support.f5.com/csp/article/K44462254",
+            "refsource" : "CONFIRM",
            "url" : "https://support.f5.com/csp/article/K44462254"
         }
      ]
--- a/2018/15xxx/CVE-2018-15313.json
+++ b/2018/15xxx/CVE-2018-15313.json
@ -38,7 +38,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "On BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6 there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page."
+            "value" : "On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page."
         }
      ]
   },
@ -57,6 +57,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://support.f5.com/csp/article/K21042153",
+            "refsource" : "CONFIRM",
            "url" : "https://support.f5.com/csp/article/K21042153"
         }
      ]
--- a/2018/15xxx/CVE-2018-15314.json
+++ b/2018/15xxx/CVE-2018-15314.json
@ -38,7 +38,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "On BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6 there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page."
+            "value" : "On F5 BIG-IP AFM 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a Reflected Cross Site Scripting vulnerability in undisclosed TMUI page."
         }
      ]
   },
@ -57,6 +57,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://support.f5.com/csp/article/K04524282",
+            "refsource" : "CONFIRM",
            "url" : "https://support.f5.com/csp/article/K04524282"
         }
      ]
--- a/2018/15xxx/CVE-2018-15315.json
+++ b/2018/15xxx/CVE-2018-15315.json
@ -38,7 +38,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "BIG-IP reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page."
+            "value" : "On F5 BIG-IP 13.0.0-13.1.1.1 and 12.1.0-12.1.3.6, there is a reflected Cross Site Scripting (XSS) vulnerability in an undisclosed Configuration Utility page."
         }
      ]
   },
@ -57,6 +57,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://support.f5.com/csp/article/K41704442",
+            "refsource" : "CONFIRM",
            "url" : "https://support.f5.com/csp/article/K41704442"
         }
      ]
--- a/2018/15xxx/CVE-2018-15316.json
+++ b/2018/15xxx/CVE-2018-15316.json
@ -55,7 +55,7 @@
      "description_data" : [
         {
            "lang" : "eng",
-            "value" : "In BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge Client 7101-7160, the BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks."
+            "value" : "In F5 BIG-IP APM 13.0.0-13.1.1.1, APM Client 7.1.5-7.1.6, and/or Edge Client 7101-7160, the BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks."
         }
      ]
   },
@ -74,6 +74,8 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "https://support.f5.com/csp/article/K51220077",
+            "refsource" : "CONFIRM",
            "url" : "https://support.f5.com/csp/article/K51220077"
         }
      ]
--- a/2018/4xxx/CVE-2018-4013.json
+++ b/2018/4xxx/CVE-2018-4013.json
@ -54,6 +54,13 @@
   "references" : {
      "reference_data" : [
         {
+            "name" : "[live-devel] 20181017 New LIVE555 version - fixes a potential vulnerability in the RTSP server implementation",
+            "refsource" : "MLIST",
+            "url" : "http://lists.live555.com/pipermail/live-devel/2018-October/021071.html"
+         },
+         {
+            "name" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0684",
+            "refsource" : "MISC",
            "url" : "https://talosintelligence.com/vulnerability_reports/TALOS-2018-0684"
         }
      ]