cvelist/2018/1xxx/CVE-2018-1069.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "secalert@redhat.com",
      "DATE_PUBLIC" : "2018-03-07T00:00:00",
      "ID" : "CVE-2018-1069",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "OpenShift Enterprise",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "3.7"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "Red Hat, Inc."
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on the network filesystem."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "CWE-284 (Improper Access Control)"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1552987"
         }
      ]
   }
}
- Synchronized data. 2017-12-04 03:02:28 -05:00			`{`
			`"CVE_data_meta" : {`
- Added submission from Red Hat from 2018-03-08. 2018-03-09 08:21:49 -05:00			`"ASSIGNER" : "secalert@redhat.com",`
			`"DATE_PUBLIC" : "2018-03-07T00:00:00",`
- Synchronized data. 2017-12-04 03:02:28 -05:00			`"ID" : "CVE-2018-1069",`
- Added submission from Red Hat from 2018-03-08. 2018-03-09 08:21:49 -05:00			`"STATE" : "PUBLIC"`
			`},`
			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
			`"product_name" : "OpenShift Enterprise",`
			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "3.7"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name" : "Red Hat, Inc."`
			`}`
			`]`
			`}`
- Synchronized data. 2017-12-04 03:02:28 -05:00			`},`
			`"data_format" : "MITRE",`
			`"data_type" : "CVE",`
			`"data_version" : "4.0",`
			`"description" : {`
			`"description_data" : [`
			`{`
			`"lang" : "eng",`
- Added submission from Red Hat from 2018-03-08. 2018-03-09 08:21:49 -05:00			`"value" : "Red Hat OpenShift Enterprise version 3.7 is vulnerable to access control override for container network filesystems. An attacker could override the UserId and GroupId for GlusterFS and NFS to read and write any data on the network filesystem."`
			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "CWE-284 (Improper Access Control)"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references" : {`
			`"reference_data" : [`
			`{`
			`"url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1552987"`
- Synchronized data. 2017-12-04 03:02:28 -05:00			`}`
			`]`
			`}`
			`}`