admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2018/1xxx/CVE-2018-1774.json

100 lines
2.8 KiB
JSON
Raw Normal View History

- Synchronized data.
2017-12-13 17:04:27 -05:00
{
IBM20181108-181920 Added CVE-2017-1119, CVE-2018-1684, CVE-2018-1834, CVE-2016-9749, CVE-2018-1774, CVE-2018-1842, CVE-2018-1802, CVE-2018-1857, CVE-2018-1799, CVE-2018-1781, CVE-2018-1780
2018-11-08 18:19:20 -05:00
"data_type" : "CVE",
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "API Connect",
"version" : {
"version_data" : [
{
"version_value" : "5.0.0.0"
},
{
"version_value" : "2018.1"
},
{
"version_value" : "5.0.8.4"
},
{
"version_value" : "2018.3.6"
}
]
}
}
]
},
"vendor_name" : "IBM"
}
]
}
},
- Synchronized data.
2017-12-13 17:04:27 -05:00
"CVE_data_meta" : {
IBM20181108-181920 Added CVE-2017-1119, CVE-2018-1684, CVE-2018-1834, CVE-2016-9749, CVE-2018-1774, CVE-2018-1842, CVE-2018-1802, CVE-2018-1857, CVE-2018-1799, CVE-2018-1781, CVE-2018-1780
2018-11-08 18:19:20 -05:00
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2018-11-04T00:00:00",
- Synchronized data.
2017-12-13 17:04:27 -05:00
"ID" : "CVE-2018-1774",
IBM20181108-181920 Added CVE-2017-1119, CVE-2018-1684, CVE-2018-1834, CVE-2016-9749, CVE-2018-1774, CVE-2018-1842, CVE-2018-1802, CVE-2018-1857, CVE-2018-1799, CVE-2018-1781, CVE-2018-1780
2018-11-08 18:19:20 -05:00
"STATE" : "PUBLIC"
- Synchronized data.
2017-12-13 17:04:27 -05:00
},
"description" : {
"description_data" : [
{
"lang" : "eng",
IBM20181108-181920 Added CVE-2017-1119, CVE-2018-1684, CVE-2018-1834, CVE-2016-9749, CVE-2018-1774, CVE-2018-1842, CVE-2018-1802, CVE-2018-1857, CVE-2018-1799, CVE-2018-1781, CVE-2018-1780
2018-11-08 18:19:20 -05:00
"value" : "IBM API Connect 5.0.0.0, 5.0.8.4, 2018.1 and2018.3.6 is vulnerable to CSV injection via the developer portal and analytics that could contain malicious commands that would be executed once opened by an administrator. IBM X-Force ID: 148692."
}
]
},
"data_version" : "4.0",
"references" : {
"reference_data" : [
{
"url" : "https://www.ibm.com/support/docview.wss?uid=ibm10737867",
"title" : "IBM Security Bulletin 737867 (API Connect)",
"name" : "https://www.ibm.com/support/docview.wss?uid=ibm10737867",
"refsource" : "CONFIRM"
},
{
"name" : "ibm-api-cve20181774-script-injection (148692)",
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/148692",
"refsource" : "XF"
- Synchronized data.
2017-12-13 17:04:27 -05:00
}
]
IBM20181108-181920 Added CVE-2017-1119, CVE-2018-1684, CVE-2018-1834, CVE-2016-9749, CVE-2018-1774, CVE-2018-1842, CVE-2018-1802, CVE-2018-1857, CVE-2018-1799, CVE-2018-1781, CVE-2018-1780
2018-11-08 18:19:20 -05:00
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"value" : "Gain Access",
"lang" : "eng"
}
]
}
]
},
"data_format" : "MITRE",
"impact" : {
"cvssv3" : {
"BM" : {
"C" : "H",
"AV" : "N",
"UI" : "R",
"AC" : "L",
"SCORE" : "8.900",
"I" : "H",
"S" : "C",
"A" : "L",
"PR" : "L"
},
"TM" : {
"RL" : "O",
"E" : "U",
"RC" : "C"
}
}
- Synchronized data.
2017-12-13 17:04:27 -05:00
}
}
Reference in New Issue Copy Permalink