cvelist/2017/3xxx/CVE-2017-3761.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@lenovo.com",
        "DATE_PUBLIC": "2017-10-05T00:00:00",
        "ID": "CVE-2017-3761",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Service Framework application",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "various versions"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Lenovo Group Ltd."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, could lead to remote code execution."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Remote code execution"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://support.lenovo.com/us/en/product_security/LEN-15374",
                "refsource": "CONFIRM",
                "url": "https://support.lenovo.com/us/en/product_security/LEN-15374"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 06:19:15 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "psirt@lenovo.com",`
			`"DATE_PUBLIC": "2017-10-05T00:00:00",`
			`"ID": "CVE-2017-3761",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Service Framework application",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "various versions"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Lenovo Group Ltd."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Lenovo from 2017-10-17. 2017-10-17 15:33:23 -04:00			`{`
"-Synchronized-Data." 2019-03-18 06:19:15 +00:00			`"lang": "eng",`
			`"value": "The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, could lead to remote code execution."`
- Added submission from Lenovo from 2017-10-17. 2017-10-17 15:33:23 -04:00			`}`
"-Synchronized-Data." 2019-03-18 06:19:15 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Remote code execution"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://support.lenovo.com/us/en/product_security/LEN-15374",`
			`"refsource": "CONFIRM",`
			`"url": "https://support.lenovo.com/us/en/product_security/LEN-15374"`
			`}`
			`]`
			`}`
			`}`