| Repo in the shape of github.com/CVEProject/cvelist, with |
| some actual data. |
| |
| -- README.md -- |
| ignore me please |
| |
| -- 2021/0xxx/CVE-2021-0001.json -- |
| { |
| "data_type": "CVE", |
| "data_format": "MITRE", |
| "data_version": "4.0", |
| "CVE_data_meta": { |
| "ID": "CVE-2021-0001", |
| "ASSIGNER": "secure@intel.com", |
| "STATE": "PUBLIC" |
| }, |
| "affects": { |
| "vendor": { |
| "vendor_data": [ |
| { |
| "vendor_name": "n/a", |
| "product": { |
| "product_data": [ |
| { |
| "product_name": "Intel(R) IPP", |
| "version": { |
| "version_data": [ |
| { |
| "version_value": "before version 2020 update 1" |
| } |
| ] |
| } |
| } |
| ] |
| } |
| } |
| ] |
| } |
| }, |
| "problemtype": { |
| "problemtype_data": [ |
| { |
| "description": [ |
| { |
| "lang": "eng", |
| "value": "information disclosure" |
| } |
| ] |
| } |
| ] |
| }, |
| "references": { |
| "reference_data": [ |
| { |
| "refsource": "MISC", |
| "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00477.html", |
| "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00477.html" |
| }, |
| { |
| "refsource": "*added for testing*", |
| "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00477.html", |
| "url": "https://golang.org/x/mod" |
| } |
| ] |
| }, |
| "description": { |
| "description_data": [ |
| { |
| "lang": "eng", |
| "value": "Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information disclosure via local access." |
| } |
| ] |
| } |
| } |
| -- 2021/0xxx/CVE-2021-0010.json -- |
| { |
| "data_type": "CVE", |
| "data_format": "MITRE", |
| "data_version": "4.0", |
| "CVE_data_meta": { |
| "ID": "CVE-2021-0010", |
| "ASSIGNER": "cve@mitre.org", |
| "STATE": "RESERVED" |
| }, |
| "description": { |
| "description_data": [ |
| { |
| "lang": "eng", |
| "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." |
| } |
| ] |
| } |
| } |
| -- 2021/1xxx/CVE-2021-1384.json -- |
| { |
| "data_type": "CVE", |
| "data_format": "MITRE", |
| "data_version": "4.0", |
| "CVE_data_meta": { |
| "ID": "CVE-2021-1384", |
| "ASSIGNER": "cve@mitre.org", |
| "STATE": "REJECT" |
| }, |
| "references": { |
| "reference_data": [ |
| { |
| "refsource": "*added for testing*", |
| "name": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00477.html", |
| "url": "https://golang.org/x/sync" |
| } |
| ] |
| }, |
| "description": { |
| "description_data": [ |
| { |
| "lang": "eng", |
| "value": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none." |
| } |
| ] |
| } |
| } |
| -- 2020/9xxx/CVE-2020-9283.json -- |
| { |
| "CVE_data_meta": { |
| "ASSIGNER": "cve@mitre.org", |
| "ID": "CVE-2020-9283", |
| "STATE": "PUBLIC" |
| }, |
| "affects": { |
| "vendor": { |
| "vendor_data": [ |
| { |
| "product": { |
| "product_data": [ |
| { |
| "product_name": "n/a", |
| "version": { |
| "version_data": [ |
| { |
| "version_value": "n/a" |
| } |
| ] |
| } |
| } |
| ] |
| }, |
| "vendor_name": "n/a" |
| } |
| ] |
| } |
| }, |
| "data_format": "MITRE", |
| "data_type": "CVE", |
| "data_version": "4.0", |
| "description": { |
| "description_data": [ |
| { |
| "lang": "eng", |
| "value": "golang.org/x/crypto before v0.0.0-20200220183623-bac4c82f6975 for Go allows a panic during signature verification in the golang.org/x/crypto/ssh package. A client can attack an SSH server that accepts public keys. Also, a server can attack any SSH client." |
| } |
| ] |
| }, |
| "problemtype": { |
| "problemtype_data": [ |
| { |
| "description": [ |
| { |
| "lang": "eng", |
| "value": "n/a" |
| } |
| ] |
| } |
| ] |
| }, |
| "references": { |
| "reference_data": [ |
| { |
| "refsource": "CONFIRM", |
| "name": "https://groups.google.com/forum/#!topic/golang-announce/3L45YRc91SY", |
| "url": "https://groups.google.com/forum/#!topic/golang-announce/3L45YRc91SY" |
| }, |
| { |
| "refsource": "*added for testing*", |
| "name": "https://groups.google.com/forum/#!topic/golang-announce/3L45YRc91SY", |
| "url": "https://golang.org/x/crypto" |
| } |
| ] |
| } |
| } |
| |