cvelist/2018/1xxx/CVE-2018-1155.json

{
    "CVE_data_meta": {
        "ASSIGNER": "vulnreport@tenable.com",
        "DATE_PUBLIC": "2018-07-31T00:00:00",
        "ID": "CVE-2018-1155",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "SecurityCenter",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "All versions prior to 5.7.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Tenable"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In SecurityCenter versions prior to 5.7.0, a cross-site scripting (XSS) issue could allow an authenticated attacker to inject JavaScript code into an image filename parameter within the Reports feature area. Properly updated input validation techniques have been implemented to correct this issue."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Cross-Site Scripting (XSS)"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://www.tenable.com/security/tns-2018-11",
                "refsource": "CONFIRM",
                "url": "https://www.tenable.com/security/tns-2018-11"
            },
            {
                "name": "1041431",
                "refsource": "SECTRACK",
                "url": "http://www.securitytracker.com/id/1041431"
            }
        ]
    }
}
- Synchronized data. 2017-12-05 02:03:20 -05:00			`{`
"-Synchronized-Data." 2019-03-18 01:32:44 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "vulnreport@tenable.com",`
			`"DATE_PUBLIC": "2018-07-31T00:00:00",`
			`"ID": "CVE-2018-1155",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "SecurityCenter",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "All versions prior to 5.7.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Tenable"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
Adding 2 CVEs for Tenable. 2018-08-02 14:18:18 -04:00			`{`
"-Synchronized-Data." 2019-03-18 01:32:44 +00:00			`"lang": "eng",`
			`"value": "In SecurityCenter versions prior to 5.7.0, a cross-site scripting (XSS) issue could allow an authenticated attacker to inject JavaScript code into an image filename parameter within the Reports feature area. Properly updated input validation techniques have been implemented to correct this issue."`
Adding 2 CVEs for Tenable. 2018-08-02 14:18:18 -04:00			`}`
"-Synchronized-Data." 2019-03-18 01:32:44 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Cross-Site Scripting (XSS)"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://www.tenable.com/security/tns-2018-11",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.tenable.com/security/tns-2018-11"`
			`},`
			`{`
			`"name": "1041431",`
			`"refsource": "SECTRACK",`
			`"url": "http://www.securitytracker.com/id/1041431"`
			`}`
			`]`
			`}`
			`}`