github.com/khulnasoft-lab/tunnel-db@v0.0.0-20231117205118-74e1113bd007/pkg/vulnsrc/redhat/testdata/happy5/vuln-list-redhat/api/2019/CVE-2019-0160.json (about) 1 { 2 "affected_release": [ 3 { 4 "product_name": "Red Hat Enterprise Linux 7", 5 "release_date": "2019-08-06T00:00:00Z", 6 "advisory": "RHSA-2019:2125", 7 "package": "ovmf-20180508-6.gitee3198e672e2.el7", 8 "cpe": "cpe:/o:redhat:enterprise_linux:7" 9 }, 10 { 11 "product_name": "Red Hat Enterprise Linux 8", 12 "release_date": "2019-11-05T00:00:00Z", 13 "advisory": "RHSA-2019:3338", 14 "package": "edk2-20190308git89910a39dcfd-6.el8", 15 "cpe": "cpe:/a:redhat:enterprise_linux:8" 16 } 17 ], 18 "package_state": null, 19 "threat_severity": "Critical", 20 "public_date": "2019-02-26T00:00:00Z", 21 "bugzilla": { 22 "description": "\nCVE-2019-0160 edk2: Buffer overflows in PartitionDxe and UdfDxe with long file names and invalid UDF media\n ", 23 "id": "1691640", 24 "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1691640" 25 }, 26 "cvss": { 27 "cvss_base_score": "", 28 "cvss_scoring_vector": "", 29 "status": "" 30 }, 31 "cvss3": { 32 "cvss3_base_score": "5.9", 33 "cvss3_scoring_vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", 34 "status": "verified" 35 }, 36 "iava": "", 37 "cwe": "(CWE-122|CWE-121)", 38 "statement": "", 39 "acknowledgement": "", 40 "name": "CVE-2019-0160", 41 "document_distribution": "", 42 "details": [ 43 "\nBuffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.\n ", 44 "\nBuffer overflows were discovered in UDF-related codes under MdeModulePkg\\Universal\\Disk\\PartitionDxe\\Udf.c and MdeModulePkg\\Universal\\Disk\\UdfDxe, which could be triggered with long file names or invalid formatted UDF media.\n " 45 ], 46 "references": null 47 }