cvelist/2017/6xxx/CVE-2017-6704.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2017-6704",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Cisco Prime Collaboration Provisioning Tool",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Cisco Prime Collaboration Provisioning Tool"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "n/a"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A vulnerability in the web application in the Cisco Prime Collaboration Provisioning tool could allow an authenticated, remote attacker to perform arbitrary file downloads that could allow the attacker to read files from the underlying filesystem. More Information: CSCvc90335. Known Affected Releases: 12.1."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Arbitrary File Download Vulnerability"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "1038744",
                "refsource": "SECTRACK",
                "url": "http://www.securitytracker.com/id/1038744"
            },
            {
                "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2",
                "refsource": "CONFIRM",
                "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2"
            },
            {
                "name": "99223",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/99223"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 07:14:59 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "psirt@cisco.com",`
			`"ID": "CVE-2017-6704",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Cisco Prime Collaboration Provisioning Tool",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Cisco Prime Collaboration Provisioning Tool"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "n/a"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 07:14:59 +00:00			`"lang": "eng",`
			`"value": "A vulnerability in the web application in the Cisco Prime Collaboration Provisioning tool could allow an authenticated, remote attacker to perform arbitrary file downloads that could allow the attacker to read files from the underlying filesystem. More Information: CSCvc90335. Known Affected Releases: 12.1."`
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`}`
"-Synchronized-Data." 2019-03-18 07:14:59 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Arbitrary File Download Vulnerability"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "1038744",`
			`"refsource": "SECTRACK",`
			`"url": "http://www.securitytracker.com/id/1038744"`
			`},`
			`{`
			`"name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2",`
			`"refsource": "CONFIRM",`
			`"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2"`
			`},`
			`{`
			`"name": "99223",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/99223"`
			`}`
			`]`
			`}`
			`}`