admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2019/CVE-2019-148xx/CVE-2019-14847.json

248 lines
7.6 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2019-14847",
"sourceIdentifier": "secalert@redhat.com",
"published": "2019-11-06T10:15:10.933",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"lastModified": "2024-11-21T04:27:29.467",
bootstrap
2023-04-24 12:24:31 +02:00
"vulnStatus": "Modified",
Auto-Update: 2024-12-08T03:00:18.988682+00:00
2024-12-08 03:06:42 +00:00
"cveTags": [],
bootstrap
2023-04-24 12:24:31 +02:00
"descriptions": [
{
"lang": "en",
"value": "A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not possible with this issue."
},
{
"lang": "es",
"value": "Se encontr\u00f3 un fallo en samba versi\u00f3n 4.0.0 anteriores a samba 4.9.15 y samba versiones 4.10.x anteriores a 4.10.10. Un atacante puede bloquear el servidor AD DC LDAP por medio de la sincronizaci\u00f3n de directorios resultando en la denegaci\u00f3n de servicio. La escalada de privilegios no es posible con este problema."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
bootstrap
2023-04-24 12:24:31 +02:00
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"availabilityImpact": "HIGH"
bootstrap
2023-04-24 12:24:31 +02:00
},
"exploitabilityScore": 1.2,
"impactScore": 3.6
}
],
"cvssMetricV30": [
{
Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00
"source": "secalert@redhat.com",
bootstrap
2023-04-24 12:24:31 +02:00
"type": "Secondary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
bootstrap
2023-04-24 12:24:31 +02:00
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"availabilityImpact": "HIGH"
bootstrap
2023-04-24 12:24:31 +02:00
},
"exploitabilityScore": 1.2,
"impactScore": 3.6
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"baseScore": 4.0,
bootstrap
2023-04-24 12:24:31 +02:00
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"availabilityImpact": "PARTIAL"
bootstrap
2023-04-24 12:24:31 +02:00
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"source": "secalert@redhat.com",
"type": "Secondary",
bootstrap
2023-04-24 12:24:31 +02:00
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
},
{
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
"source": "nvd@nist.gov",
"type": "Primary",
bootstrap
2023-04-24 12:24:31 +02:00
"description": [
{
"lang": "en",
"value": "CWE-476"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.0.0",
"versionEndExcluding": "4.9.15",
"matchCriteriaId": "1E17D7DB-DD51-416A-804A-E1BAED865FB0"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:samba:samba:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.10.0",
"versionEndExcluding": "4.10.10",
"matchCriteriaId": "CC76A261-FE98-42F2-A791-47FBA16AB791"
}
]
}
]
},
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*",
"matchCriteriaId": "D100F7CE-FC64-4CC6-852A-6136D72DA419"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*",
"matchCriteriaId": "97A4B8DF-58DA-4AB6-A1F9-331B36409BA3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F1E78106-58E6-4D59-990F-75DA575BFAD9"
}
]
}
]
}
],
"references": [
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00015.html",
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14847",
"source": "secalert@redhat.com",
"tags": [
"Exploit",
"Issue Tracking"
]
},
{
"url": "https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html",
"source": "secalert@redhat.com"
},
Auto-Update: 2023-09-14T18:00:25.485222+00:00
2023-09-14 18:00:29 +00:00
{
"url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html",
"source": "secalert@redhat.com"
},
bootstrap
2023-04-24 12:24:31 +02:00
{
Auto-Update: 2023-11-07T21:02:52.274489+00:00
2023-11-07 21:03:21 +00:00
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKPYHDFI7HRELVXBE5J4MTGSI35AKFBI/",
bootstrap
2023-04-24 12:24:31 +02:00
"source": "secalert@redhat.com"
},
{
Auto-Update: 2023-11-07T21:02:52.274489+00:00
2023-11-07 21:03:21 +00:00
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XQ3IUACPZJXSC4OM6P2V4IC4QMZQZWPD/",
bootstrap
2023-04-24 12:24:31 +02:00
"source": "secalert@redhat.com"
},
{
"url": "https://www.samba.org/samba/security/CVE-2019-14847.html",
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://www.synology.com/security/advisory/Synology_SA_19_35",
"source": "secalert@redhat.com"
Auto-Update: 2024-11-23T11:07:34.152052+00:00
2024-11-23 11:10:51 +00:00
},
{
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00015.html",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
]
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14847",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Issue Tracking"
]
},
{
"url": "https://lists.debian.org/debian-lts-announce/2021/05/msg00023.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/09/msg00013.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKPYHDFI7HRELVXBE5J4MTGSI35AKFBI/",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XQ3IUACPZJXSC4OM6P2V4IC4QMZQZWPD/",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://www.samba.org/samba/security/CVE-2019-14847.html",
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
]
},
{
"url": "https://www.synology.com/security/advisory/Synology_SA_19_35",
"source": "af854a3a-2127-422b-91ae-364da2661108"
bootstrap
2023-04-24 12:24:31 +02:00
}
]
}
Reference in New Issue Copy Permalink