cvelist/2018/7xxx/CVE-2018-7679.json

{
    "CVE_data_meta": {
        "ASSIGNER": "security@suse.com",
        "DATE_PUBLIC": "2018-06-20T00:00:00",
        "ID": "CVE-2018-7679",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Solutions Business Manager 11.4",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "Solutions Business Manager 11.4 prior to 11.4"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Micro Focus"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Client-side remote code execution"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm",
                "refsource": "CONFIRM",
                "url": "http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm"
            }
        ]
    }
}
- Synchronized data. 2018-03-05 08:04:01 -05:00			`{`
"-Synchronized-Data." 2019-03-18 01:27:19 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "security@suse.com",`
			`"DATE_PUBLIC": "2018-06-20T00:00:00",`
			`"ID": "CVE-2018-7679",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Solutions Business Manager 11.4",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "Solutions Business Manager 11.4 prior to 11.4"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Micro Focus"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
Adding 4 CVEs for Micro Focus. 2018-06-21 14:29:19 -04:00			`{`
"-Synchronized-Data." 2019-03-18 01:27:19 +00:00			`"lang": "eng",`
			`"value": "Micro Focus Solutions Business Manager versions prior to 11.4 when ASP.NET is configured with execute permission on the virtual directories and does not validate the contents of user avatar images, could lead to remote code execution."`
Adding 4 CVEs for Micro Focus. 2018-06-21 14:29:19 -04:00			`}`
"-Synchronized-Data." 2019-03-18 01:27:19 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Client-side remote code execution"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm",`
			`"refsource": "CONFIRM",`
			`"url": "http://help.serena.com/doc_center/sbm/ver11_4/sbm_release_notes.htm"`
			`}`
			`]`
			`}`
			`}`