cvelist/2017/7xxx/CVE-2017-7736.json

{
    "CVE_data_meta": {
        "ASSIGNER": "psirt@fortinet.com",
        "DATE_PUBLIC": "2017-11-17T00:00:00",
        "ID": "CVE-2017-7736",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Fortinet FortiWeb",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "FortiWeb 5.8.0, 5.7.1 and earlier"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Fortinet, Inc."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A stored Cross-site Scripting (XSS) vulnerability in Fortinet FortiWeb webUI Certificate View page in 5.8.0, 5.7.1 and earlier, allows attackers to inject arbitrary web script or HTML via special crafted malicious certificate import."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Cross-site Scripting (XSS)"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://fortiguard.com/advisory/FG-IR-17-131",
                "refsource": "CONFIRM",
                "url": "https://fortiguard.com/advisory/FG-IR-17-131"
            },
            {
                "name": "101916",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/101916"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-17 22:48:32 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "psirt@fortinet.com",`
			`"DATE_PUBLIC": "2017-11-17T00:00:00",`
			`"ID": "CVE-2017-7736",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Fortinet FortiWeb",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "FortiWeb 5.8.0, 5.7.1 and earlier"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Fortinet, Inc."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
Publication request for fortinet 20171122 2017-11-22 11:08:28 -05:00			`{`
"-Synchronized-Data." 2019-03-17 22:48:32 +00:00			`"lang": "eng",`
			`"value": "A stored Cross-site Scripting (XSS) vulnerability in Fortinet FortiWeb webUI Certificate View page in 5.8.0, 5.7.1 and earlier, allows attackers to inject arbitrary web script or HTML via special crafted malicious certificate import."`
Publication request for fortinet 20171122 2017-11-22 11:08:28 -05:00			`}`
"-Synchronized-Data." 2019-03-17 22:48:32 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Cross-site Scripting (XSS)"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://fortiguard.com/advisory/FG-IR-17-131",`
			`"refsource": "CONFIRM",`
			`"url": "https://fortiguard.com/advisory/FG-IR-17-131"`
			`},`
			`{`
			`"name": "101916",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/101916"`
			`}`
			`]`
			`}`
			`}`