cvelist/2018/0xxx/CVE-2018-0719.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "security@qnapsecurity.com.tw",
      "DATE_PUBLIC" : "2018-09-20T00:00:00",
      "ID" : "CVE-2018-0719",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "QNAP QTS",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "QTS 4.2.6 build 20180711, QTS 4.3.3 build 20180725, QTS 4.3.4 build 20180710 and earlier versions"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "QNAP"
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.2.6 build 20180711 and earlier versions, 4.3.3 build 20180725 and earlier versions, and 4.3.4 build 20180710 and earlier versions could allow remote attackers to inject javascript code."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "Cross-site scripting"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "name" : "https://www.qnap.com/zh-tw/security-advisory/nas-201809-20",
            "refsource" : "CONFIRM",
            "url" : "https://www.qnap.com/zh-tw/security-advisory/nas-201809-20"
         }
      ]
   }
}
- Synchronized data. 2017-11-28 10:02:59 -05:00			`{`
			`"CVE_data_meta" : {`
Added the information supplied by the CNA for CVE-2018-0719. 2018-11-27 15:04:53 -05:00			`"ASSIGNER" : "security@qnapsecurity.com.tw",`
			`"DATE_PUBLIC" : "2018-09-20T00:00:00",`
- Synchronized data. 2017-11-28 10:02:59 -05:00			`"ID" : "CVE-2018-0719",`
Added the information supplied by the CNA for CVE-2018-0719. 2018-11-27 15:04:53 -05:00			`"STATE" : "PUBLIC"`
			`},`
			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
			`"product_name" : "QNAP QTS",`
			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "QTS 4.2.6 build 20180711, QTS 4.3.3 build 20180725, QTS 4.3.4 build 20180710 and earlier versions"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name" : "QNAP"`
			`}`
			`]`
			`}`
- Synchronized data. 2017-11-28 10:02:59 -05:00			`},`
			`"data_format" : "MITRE",`
			`"data_type" : "CVE",`
			`"data_version" : "4.0",`
			`"description" : {`
			`"description_data" : [`
			`{`
			`"lang" : "eng",`
- Synchronized data. 2018-11-27 16:04:03 -05:00			`"value" : "Cross-site scripting (XSS) vulnerability in QNAP QTS 4.2.6 build 20180711 and earlier versions, 4.3.3 build 20180725 and earlier versions, and 4.3.4 build 20180710 and earlier versions could allow remote attackers to inject javascript code."`
Added the information supplied by the CNA for CVE-2018-0719. 2018-11-27 15:04:53 -05:00			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "Cross-site scripting"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references" : {`
			`"reference_data" : [`
			`{`
- Synchronized data. 2018-11-27 16:04:03 -05:00			`"name" : "https://www.qnap.com/zh-tw/security-advisory/nas-201809-20",`
			`"refsource" : "CONFIRM",`
Added the information supplied by the CNA for CVE-2018-0719. 2018-11-27 15:04:53 -05:00			`"url" : "https://www.qnap.com/zh-tw/security-advisory/nas-201809-20"`
- Synchronized data. 2017-11-28 10:02:59 -05:00			`}`
			`]`
			`}`
			`}`