Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
3 vulnerabilities by Cyber Security Cloud , Inc.
CVE-2020-5622 (GCVE-0-2020-5622)
Vulnerability from cvelistv5 – Published: 2020-09-02 04:35 – Updated: 2024-08-04 08:39
VLAI
Summary
Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.shadan-kun.com/news/20200831/ | x_refsource_MISC |
| https://jvn.jp/en/jp/JVN42665874/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Cyber Security Cloud , Inc. | Shadankun Server Security Type (excluding normal blocking method types) |
Affected:
Ver.1.5.3 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T08:39:25.017Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Shadankun Server Security Type (excluding normal blocking method types)",
"vendor": "Cyber Security Cloud , Inc.",
"versions": [
{
"status": "affected",
"version": "Ver.1.5.3 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-09-02T04:35:14.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2020-5622",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Shadankun Server Security Type (excluding normal blocking method types)",
"version": {
"version_data": [
{
"version_value": "Ver.1.5.3 and earlier"
}
]
}
}
]
},
"vendor_name": "Cyber Security Cloud , Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.shadan-kun.com/news/20200831/",
"refsource": "MISC",
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"name": "https://jvn.jp/en/jp/JVN42665874/index.html",
"refsource": "MISC",
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2020-5622",
"datePublished": "2020-09-02T04:35:14.000Z",
"dateReserved": "2020-01-06T00:00:00.000Z",
"dateUpdated": "2024-08-04T08:39:25.017Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2020-5622 (GCVE-0-2020-5622)
Vulnerability from nvd – Published: 2020-09-02 04:35 – Updated: 2024-08-04 08:39
VLAI
Summary
Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request.
Severity
No CVSS data available.
CWE
- Denial-of-service (DoS)
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://www.shadan-kun.com/news/20200831/ | x_refsource_MISC |
| https://jvn.jp/en/jp/JVN42665874/index.html | x_refsource_MISC |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Cyber Security Cloud , Inc. | Shadankun Server Security Type (excluding normal blocking method types) |
Affected:
Ver.1.5.3 and earlier
|
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T08:39:25.017Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Shadankun Server Security Type (excluding normal blocking method types)",
"vendor": "Cyber Security Cloud , Inc.",
"versions": [
{
"status": "affected",
"version": "Ver.1.5.3 and earlier"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Denial-of-service (DoS)",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-09-02T04:35:14.000Z",
"orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"shortName": "jpcert"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "vultures@jpcert.or.jp",
"ID": "CVE-2020-5622",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Shadankun Server Security Type (excluding normal blocking method types)",
"version": {
"version_data": [
{
"version_value": "Ver.1.5.3 and earlier"
}
]
}
}
]
},
"vendor_name": "Cyber Security Cloud , Inc."
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Shadankun Server Security Type (excluding normal blocking method types) Ver.1.5.3 and earlier allows remote attackers to cause a denial of service which may result in not being able to add newly detected attack source IP addresses as blocking targets for about 10 minutes via a specially crafted request."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Denial-of-service (DoS)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.shadan-kun.com/news/20200831/",
"refsource": "MISC",
"url": "https://www.shadan-kun.com/news/20200831/"
},
{
"name": "https://jvn.jp/en/jp/JVN42665874/index.html",
"refsource": "MISC",
"url": "https://jvn.jp/en/jp/JVN42665874/index.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
"assignerShortName": "jpcert",
"cveId": "CVE-2020-5622",
"datePublished": "2020-09-02T04:35:14.000Z",
"dateReserved": "2020-01-06T00:00:00.000Z",
"dateUpdated": "2024-08-04T08:39:25.017Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
JVNDB-2020-000060
Vulnerability from jvndb - Published: 2020-08-31 14:41 - Updated:2020-08-31 14:41
Severity
Summary
"Shadankun Server Security Type" vulnerable to denial-of-service (DoS)
Details
"Shadankun Server Security Type" provided by Cyber Security Cloud , Inc. contains a denial-of-service (DoS) vulnerability. When "Rule id"s assigned by the product's internal script overlap, it would not be able to add newly detected attack source IP addresses as the blocking targets (CWE-703).
The overlaps of "Rule id"s occur under following conditions:
* When multiple attack requests are sent from a large number of source IP addresses in under 10 microseconds
* When attack requests from more than one source IP addresses occurred at the same time by the minute/10 microsecond to 100 millisecond units, but different time by the second
References
Impacted products
| Vendor | Product | |
|---|---|---|
{
"@rdf:about": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-000060.html",
"dc:date": "2020-08-31T14:41+09:00",
"dcterms:issued": "2020-08-31T14:41+09:00",
"dcterms:modified": "2020-08-31T14:41+09:00",
"description": "\"Shadankun Server Security Type\" provided by Cyber Security Cloud , Inc. contains a denial-of-service (DoS) vulnerability. When \"Rule id\"s assigned by the product\u0027s internal script overlap, it would not be able to add newly detected attack source IP addresses as the blocking targets (CWE-703).\r\n\r\n The overlaps of \"Rule id\"s occur under following conditions: \r\n* When multiple attack requests are sent from a large number of source IP addresses in under 10 microseconds\r\n* When attack requests from more than one source IP addresses occurred at the same time by the minute/10 microsecond to 100 millisecond units, but different time by the second",
"link": "https://jvndb.jvn.jp/en/contents/2020/JVNDB-2020-000060.html",
"sec:cpe": {
"#text": "cpe:/a:shadan-kun:server_security_type",
"@product": "Shadankun Server Security Type",
"@vendor": "Cyber Security Cloud , Inc.",
"@version": "2.2"
},
"sec:cvss": [
{
"@score": "5.0",
"@severity": "Medium",
"@type": "Base",
"@vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"@version": "2.0"
},
{
"@score": "5.3",
"@severity": "Medium",
"@type": "Base",
"@vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"@version": "3.0"
}
],
"sec:identifier": "JVNDB-2020-000060",
"sec:references": [
{
"#text": "https://jvn.jp/en/jp/JVN42665874/index.html",
"@id": "JVN#42665874",
"@source": "JVN"
},
{
"#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5622",
"@id": "CVE-2020-5622",
"@source": "CVE"
},
{
"#text": "https://nvd.nist.gov/vuln/detail/CVE-2020-5622",
"@id": "CVE-2020-5622",
"@source": "NVD"
},
{
"#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
"@id": "CWE-Other",
"@title": "No Mapping(CWE-Other)"
}
],
"title": "\"Shadankun Server Security Type\" vulnerable to denial-of-service (DoS)"
}