Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

DIVD check json 5.0 format #2

Open
wants to merge 10 commits into
base: master
Choose a base branch
from
Open

DIVD check json 5.0 format #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
6e1ae07
First three
MrSeccubus Mar 25, 2022
bf9e8e3
CVE-2021-26474
MrSeccubus Mar 25, 2022
d41e698
CVE-2021-26473
MrSeccubus Mar 25, 2022
5b3860b
Kaseya
MrSeccubus Mar 28, 2022
7865550
SmarterMail
MrSeccubus Mar 28, 2022
706455c
unitrends
MrSeccubus Mar 29, 2022
7bda3a1
SmarterMail
MrSeccubus Mar 29, 2022
7150737
QlikSense
MrSeccubus Mar 29, 2022
6585d8f
SmarterTrack
MrSeccubus Mar 29, 2022
6f99835
Four-eyes review by @vcartman
MrSeccubus Mar 30, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
406 changes: 188 additions & 218 deletions review_set/2021/26xxx/CVE-2021-26471.json
View file
Open in desktop

Large diffs are not rendered by default.

409 changes: 191 additions & 218 deletions review_set/2021/26xxx/CVE-2021-26472.json
View file
Open in desktop

Large diffs are not rendered by default.

406 changes: 188 additions & 218 deletions review_set/2021/26xxx/CVE-2021-26473.json
View file
Open in desktop

Large diffs are not rendered by default.

1,095 changes: 874 additions & 221 deletions review_set/2021/26xxx/CVE-2021-26474.json
View file
Open in desktop

Large diffs are not rendered by default.

365 changes: 158 additions & 207 deletions review_set/2021/30xxx/CVE-2021-30116.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,211 +1,162 @@
{
"containers": {
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Discovered by Wietse Boonstra"
},
{
"lang": "en",
"value": "Additional research by Frank Breedijk"
}
],
"descriptions": [
{
"lang": "en",
"value": "Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10.0,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2022-03-15T00:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://csirt.divd.nl/2021/07/04/Kaseya-Case-Update-2/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://helpdesk.kaseya.com/hc/en-gb/articles/4403440684689-Important-Notice-July-2nd-2021"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://csirt.divd.nl/2021/07/07/Kaseya-Limited-Disclosure/"
}
],
"source": {
"advisory": "DIVD-2021-00011",
"discovery": "EXTERNAL"
},
"title": "Unauthenticated credential leak and business logic flaw in Kaseya VSA <= v9.5.6",
"x_generator": {
"engine": "Vulnogram 0.0.9"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "[email protected]",
"ID": "CVE-2021-30116",
"STATE": "PUBLIC",
"TITLE": "Unauthenticated credential leak and business logic flaw in Kaseya VSA <= v9.5.6"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Discovered by Wietse Boonstra"
},
{
"lang": "eng",
"value": "Additional research by Frank Breedijk"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 10,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://csirt.divd.nl/2021/07/04/Kaseya-Case-Update-2/",
"refsource": "CONFIRM",
"url": "https://csirt.divd.nl/2021/07/04/Kaseya-Case-Update-2/"
},
{
"name": "https://helpdesk.kaseya.com/hc/en-gb/articles/4403440684689-Important-Notice-July-2nd-2021",
"refsource": "CONFIRM",
"url": "https://helpdesk.kaseya.com/hc/en-gb/articles/4403440684689-Important-Notice-July-2nd-2021"
},
{
"name": "https://csirt.divd.nl/2021/07/07/Kaseya-Limited-Disclosure/",
"refsource": "CONFIRM",
"url": "https://csirt.divd.nl/2021/07/07/Kaseya-Limited-Disclosure/"
}
]
},
"source": {
"advisory": "DIVD-2021-00011",
"discovery": "EXTERNAL"
}
"dataType": "CVE_RECORD",
"dataVersion": "5.0",
"cveMetadata": {
"cveId": "CVE-2021-30116",
"assignerOrgId": "00000000-0000-4000-9000-000000000000",
"assignerShortName": "mitre",
"dateUpdated": "2022-03-14T23:00:00.000Z",
"serial": 1,
"state": "PUBLISHED"
},
"containers": {
"cna": {
"providerMetadata": {
"orgId": "00000000-0000-4000-9000-000000000000",
"shortName": "mitre",
"dateUpdated": "2022-03-14T23:00:00.000Z"
},
"title": "Unauthenticated credential leak and business logic flaw in Kaseya VSA <= v9.5.6",
"problemTypes": [
{
"descriptions": [
{
"lang": "en",
"cweId": "CWE-522",
"description": "CWE-522 Insufficiently Protected Credentials",
"type": "text"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2021-30116",
"dateUpdated": "2022-03-15T00:00:00",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.0"
],
"impacts": [
{
"capecId": "CAPEC-115",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-115 Authentication Bypass"
}
]
}
],
"affected": [
{
"vendor": "Kaseya",
"product": "Kaseya VSA on premise",
"versions": [
{
"status": "affected",
"version": "v9.0",
"lessThanOrEqual": "v9.5.6"
}
],
"defaultStatus": "unaffected"
}
],
"descriptions": [
{
"lang": "en",
"value": "Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021.\n",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "Kaseya VSA before 9.5.7 allows credential disclosure, as exploited in the wild in July 2021.<br>"
}
]
}
],
"references": [
{
"url": "https://csirt.divd.nl/2021/07/04/Kaseya-Case-Update-2/",
"tags": [
"third-party-advisory"
]
},
{
"url": "https://helpdesk.kaseya.com/hc/en-gb/articles/4403440684689-Important-Notice-July-2nd-2021",
"tags": [
"vendor-advisory"
]
},
{
"url": "https://csirt.divd.nl/2021/07/07/Kaseya-Limited-Disclosure/",
"tags": [
"third-party-advisory"
]
}
],
"metrics": [
{
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
],
"cvssV3_1": {
"version": "3.1",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
}
],
"configurations": [
{
"lang": "en",
"value": "On premise version only",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "On premise version only"
}
]
}
],
"exploits": [
{
"lang": "en",
"value": "Exploited in the wild",
"supportingMedia": [
{
"type": "text/html",
"base64": false,
"value": "Exploited in the wild"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Discovered by Wietse Boonstra of DIVD",
"type": "finder"
},
{
"lang": "en",
"value": "Additional research by Frank Breedijk of DIVD",
"type": "analyst"
}
],
"source": {
"advisory": "DIVD-2021-00011",
"discovery": "INTERNAL"
},
"x_generator": {
"engine": "Vulnogram 0.0.9"
}
}
}
}
Loading