cvelist/2017/3xxx/CVE-2017-3764.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@lenovo.com",
        "DATE_PUBLIC": "2017-11-30T00:00:00",
        "ID": "CVE-2017-3764",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "xClarity Administrator",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Earlier than 1.4.0"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Lenovo Group Ltd."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A vulnerability was identified in Lenovo XClarity Administrator (LXCA) before 1.4.0 where LXCA user account names may be exposed to unauthenticated users with access to the LXCA web user interface. No password information of the user accounts is exposed."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Unauthenticated User Enumeration"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://support.lenovo.com/us/en/product_security/LEN-16335",
                "refsource": "CONFIRM",
                "url": "https://support.lenovo.com/us/en/product_security/LEN-16335"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 02:27:15 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "psirt@lenovo.com",`
			`"DATE_PUBLIC": "2017-11-30T00:00:00",`
			`"ID": "CVE-2017-3764",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "xClarity Administrator",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Earlier than 1.4.0"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Lenovo Group Ltd."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Lenovo for LEN-16335 from 2017-11-30. 2017-11-30 13:10:31 -05:00			`{`
"-Synchronized-Data." 2019-03-18 02:27:15 +00:00			`"lang": "eng",`
			`"value": "A vulnerability was identified in Lenovo XClarity Administrator (LXCA) before 1.4.0 where LXCA user account names may be exposed to unauthenticated users with access to the LXCA web user interface. No password information of the user accounts is exposed."`
- Added submission from Lenovo for LEN-16335 from 2017-11-30. 2017-11-30 13:10:31 -05:00			`}`
"-Synchronized-Data." 2019-03-18 02:27:15 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Unauthenticated User Enumeration"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://support.lenovo.com/us/en/product_security/LEN-16335",`
			`"refsource": "CONFIRM",`
			`"url": "https://support.lenovo.com/us/en/product_security/LEN-16335"`
			`}`
			`]`
			`}`
			`}`