Skip to content

Commit

Permalink
"-Synchronized-Data."
Browse files Browse the repository at this point in the history
  • Loading branch information
@cve-team
cve-team committed Sep 28, 2021
1 parent b012b93 commit 9d45bb7
Show file tree
Hide file tree
Showing 9 changed files with 182 additions and 169 deletions.
5 changes: 5 additions & 0 deletions 2012/0xxx/CVE-2012-0881.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -101,6 +101,11 @@
"url": "https://www.oracle.com//security-alerts/cpujul2021.html",
"refsource": "MISC",
"name": "https://www.oracle.com//security-alerts/cpujul2021.html"
},
{
"refsource": "MLIST",
"name": "[hadoop-common-issues] 20210928 [GitHub] [hadoop] warrenzhu25 opened a new pull request #3496: HADOOP-17941. Update xerces to 2.12",
"url": "https://lists.apache.org/thread.html/rea7b831dceeb2a2fa817be6f63b08722042e3647fb2d47c144370a56@%3Ccommon-issues.hadoop.apache.org%3E"
}
]
}
Expand Down
43 changes: 22 additions & 21 deletions 2021/21xxx/CVE-2021-21522.json
View file
Original file line number Diff line number Diff line change
@@ -1,70 +1,71 @@
{
"CVE_data_meta": {
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-16",
"ID": "CVE-2021-21522",
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-16",
"ID": "CVE-2021-21522",
"STATE": "PUBLIC"
},
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "CPG BIOS",
"product_name": "CPG BIOS",
"version": {
"version_data": [
{
"version_affected": "<",
"version_affected": "<",
"version_value": "1.13.0"
}
]
}
}
]
},
},
"vendor_name": "Dell"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"lang": "eng",
"value": "Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetting the BIOS password on the system via the Manageability Interface."
}
]
},
},
"impact": {
"cvss": {
"baseScore": 8.2,
"baseSeverity": "High",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"baseScore": 8.2,
"baseSeverity": "High",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"lang": "eng",
"value": "CWE-255: Credentials Management"
}
]
}
]
},
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000191495"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000191495",
"name": "https://www.dell.com/support/kbdoc/000191495"
}
]
}
Expand Down
43 changes: 22 additions & 21 deletions 2021/21xxx/CVE-2021-21569.json
View file
Original file line number Diff line number Diff line change
@@ -1,70 +1,71 @@
{
"CVE_data_meta": {
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-02",
"ID": "CVE-2021-21569",
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-02",
"ID": "CVE-2021-21569",
"STATE": "PUBLIC"
},
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "NetWorker",
"product_name": "NetWorker",
"version": {
"version_data": [
{
"version_affected": "=",
"version_affected": "=",
"version_value": "18.x, 19.x"
}
]
}
}
]
},
},
"vendor_name": "Dell"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"lang": "eng",
"value": "Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information."
}
]
},
},
"impact": {
"cvss": {
"baseScore": 6.8,
"baseSeverity": "Medium",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"baseScore": 6.8,
"baseSeverity": "Medium",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
}
},
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"lang": "eng",
"value": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"
}
]
}
]
},
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/en-us/000188311/"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/en-us/000188311/",
"name": "https://www.dell.com/support/kbdoc/en-us/000188311/"
}
]
}
Expand Down
43 changes: 22 additions & 21 deletions 2021/21xxx/CVE-2021-21570.json
View file
Original file line number Diff line number Diff line change
@@ -1,70 +1,71 @@
{
"CVE_data_meta": {
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-02",
"ID": "CVE-2021-21570",
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-02",
"ID": "CVE-2021-21570",
"STATE": "PUBLIC"
},
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "NetWorker",
"product_name": "NetWorker",
"version": {
"version_data": [
{
"version_affected": "=",
"version_affected": "=",
"version_value": "18.x, 19.x"
}
]
}
}
]
},
},
"vendor_name": "Dell"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"lang": "eng",
"value": "Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain access to unauthorized information."
}
]
},
},
"impact": {
"cvss": {
"baseScore": 6.8,
"baseSeverity": "Medium",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"baseScore": 6.8,
"baseSeverity": "Medium",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
}
},
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"lang": "eng",
"value": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"
}
]
}
]
},
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/en-us/000188311/dsa-2021-124-dell-networker-security-update-for-multiple-vulnerabilities"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/en-us/000188311/dsa-2021-124-dell-networker-security-update-for-multiple-vulnerabilities",
"name": "https://www.dell.com/support/kbdoc/en-us/000188311/dsa-2021-124-dell-networker-security-update-for-multiple-vulnerabilities"
}
]
}
Expand Down
43 changes: 22 additions & 21 deletions 2021/36xxx/CVE-2021-36283.json
View file
Original file line number Diff line number Diff line change
@@ -1,70 +1,71 @@
{
"CVE_data_meta": {
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-16",
"ID": "CVE-2021-36283",
"ASSIGNER": "[email protected]",
"DATE_PUBLIC": "2021-09-16",
"ID": "CVE-2021-36283",
"STATE": "PUBLIC"
},
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "CPG BIOS",
"product_name": "CPG BIOS",
"version": {
"version_data": [
{
"version_affected": "<",
"version_affected": "<",
"version_value": "1.3.1"
}
]
}
}
]
},
},
"vendor_name": "Dell"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"lang": "eng",
"value": "Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM."
}
]
},
},
"impact": {
"cvss": {
"baseScore": 7.5,
"baseSeverity": "High",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"baseScore": 7.5,
"baseSeverity": "High",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"lang": "eng",
"value": "CWE-20: Improper Input Validation"
}
]
}
]
},
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://www.dell.com/support/kbdoc/000191495/"
"refsource": "MISC",
"url": "https://www.dell.com/support/kbdoc/000191495/",
"name": "https://www.dell.com/support/kbdoc/000191495/"
}
]
}
Expand Down
Loading

0 comments on commit 9d45bb7

Please sign in to comment.