cvelist/2017/13xxx/CVE-2017-13259.json

{
    "CVE_data_meta": {
        "ASSIGNER": "security@android.com",
        "DATE_PUBLIC": "2018-03-05T00:00:00",
        "ID": "CVE-2017-13259",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Android",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "5.1.1"
                                        },
                                        {
                                            "version_value": "6.0"
                                        },
                                        {
                                            "version_value": "6.0.1"
                                        },
                                        {
                                            "version_value": "7.0"
                                        },
                                        {
                                            "version_value": "7.1.1"
                                        },
                                        {
                                            "version_value": "7.1.2"
                                        },
                                        {
                                            "version_value": "8.0"
                                        },
                                        {
                                            "version_value": "8.1"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Google Inc."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "In functionality implemented in sdp_discovery.cc, there are possible out of bounds reads due to missing bounds checks. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68161546."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Information disclosure"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://source.android.com/security/bulletin/2018-03-01",
                "refsource": "CONFIRM",
                "url": "https://source.android.com/security/bulletin/2018-03-01"
            },
            {
                "name": "103253",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/103253"
            }
        ]
    }
}
- Populated repo from CVE List. 2017-10-16 12:31:07 -04:00			`{`
"-Synchronized-Data." 2019-03-18 07:02:48 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "security@android.com",`
			`"DATE_PUBLIC": "2018-03-05T00:00:00",`
			`"ID": "CVE-2017-13259",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Android",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "5.1.1"`
			`},`
			`{`
			`"version_value": "6.0"`
			`},`
			`{`
			`"version_value": "6.0.1"`
			`},`
			`{`
			`"version_value": "7.0"`
			`},`
			`{`
			`"version_value": "7.1.1"`
			`},`
			`{`
			`"version_value": "7.1.2"`
			`},`
			`{`
			`"version_value": "8.0"`
			`},`
			`{`
			`"version_value": "8.1"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Google Inc."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Google Android for March 2018 Android Security Bulletin from 2018-04-03. 2018-04-04 12:28:35 -04:00			`{`
"-Synchronized-Data." 2019-03-18 07:02:48 +00:00			`"lang": "eng",`
			`"value": "In functionality implemented in sdp_discovery.cc, there are possible out of bounds reads due to missing bounds checks. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-68161546."`
- Added submission from Google Android for March 2018 Android Security Bulletin from 2018-04-03. 2018-04-04 12:28:35 -04:00			`}`
"-Synchronized-Data." 2019-03-18 07:02:48 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Information disclosure"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://source.android.com/security/bulletin/2018-03-01",`
			`"refsource": "CONFIRM",`
			`"url": "https://source.android.com/security/bulletin/2018-03-01"`
			`},`
			`{`
			`"name": "103253",`
			`"refsource": "BID",`
			`"url": "http://www.securityfocus.com/bid/103253"`
			`}`
			`]`
			`}`
			`}`