cvelist/2018/1xxx/CVE-2018-1362.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "psirt@us.ibm.com",
      "DATE_PUBLIC" : "2018-01-12T00:00:00",
      "ID" : "CVE-2018-1362",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "Cram Social Program Management",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "6.0.5"
                              },
                              {
                                 "version_value" : "6.1.1"
                              },
                              {
                                 "version_value" : "6.2.0"
                              },
                              {
                                 "version_value" : "7.0.1"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "IBM"
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "Gain Privileges"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "name" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/137380",
            "refsource" : "MISC",
            "url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/137380"
         },
         {
            "name" : "http://www.ibm.com/support/docview.wss?uid=swg22012528",
            "refsource" : "CONFIRM",
            "url" : "http://www.ibm.com/support/docview.wss?uid=swg22012528"
         }
      ]
   }
}
- Synchronized data. 2017-12-13 17:04:27 -05:00			`{`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"CVE_data_meta" : {`
			`"ASSIGNER" : "psirt@us.ibm.com",`
			`"DATE_PUBLIC" : "2018-01-12T00:00:00",`
			`"ID" : "CVE-2018-1362",`
			`"STATE" : "PUBLIC"`
			`},`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"product_name" : "Cram Social Program Management",`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "6.0.5"`
			`},`
			`{`
			`"version_value" : "6.1.1"`
			`},`
			`{`
			`"version_value" : "6.2.0"`
			`},`
			`{`
			`"version_value" : "7.0.1"`
			`}`
			`]`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`}`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`}`
			`]`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`},`
			`"vendor_name" : "IBM"`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`}`
			`]`
			`}`
- Synchronized data. 2017-12-13 17:04:27 -05:00			`},`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`"data_format" : "MITRE",`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"data_type" : "CVE",`
- Synchronized data. 2017-12-13 17:04:27 -05:00			`"data_version" : "4.0",`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"description" : {`
			`"description_data" : [`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`{`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"lang" : "eng",`
			`"value" : "IBM Curam Social Program Management 6.0.5, 6.1.1, 6.2.0, and 7.0.1 within Citizen Portal could allow an authenticated user to withdraw other user's submitted applications from the system and possibly obtain privileges. IBM X-Force ID: 137380."`
IBM20180119 Added CVE-2017-1693, CVE-2018-13362. 2018-01-19 07:45:30 -05:00			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "Gain Privileges"`
			`}`
			`]`
			`}`
			`]`
			`},`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"references" : {`
			`"reference_data" : [`
- Synchronized data. 2017-12-13 17:04:27 -05:00			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/137380",`
			`"refsource" : "MISC",`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/137380"`
			`},`
			`{`
- Added 'refsource' and 'name' attributes for reference urls and aligned treatment of whitespace in descriptions with data downloads. 2018-04-05 09:33:01 -04:00			`"name" : "http://www.ibm.com/support/docview.wss?uid=swg22012528",`
			`"refsource" : "CONFIRM",`
- Synchronized data. 2018-01-19 10:02:39 -05:00			`"url" : "http://www.ibm.com/support/docview.wss?uid=swg22012528"`
- Synchronized data. 2017-12-13 17:04:27 -05:00			`}`
			`]`
			`}`
			`}`