cvelist/2018/7xxx/CVE-2018-7227.json

{
    "CVE_data_meta": {
        "ASSIGNER": "cybersecurity@schneider-electric.com",
        "DATE_PUBLIC": "2018-03-01T00:00:00",
        "ID": "CVE-2018-7227",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Pelco Sarix Professional",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "all firmware versions prior to 3.29.67"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Schneider Electric SE"
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow retrieving of specially crafted URLs without authentication that can reveal sensitive information to an attacker."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Information Disclosure"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/",
                "refsource": "CONFIRM",
                "url": "https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/"
            }
        ]
    }
}
- Synchronized data. 2018-02-19 12:04:25 -05:00			`{`
"-Synchronized-Data." 2019-03-18 04:50:51 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "cybersecurity@schneider-electric.com",`
			`"DATE_PUBLIC": "2018-03-01T00:00:00",`
			`"ID": "CVE-2018-7227",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Pelco Sarix Professional",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "all firmware versions prior to 3.29.67"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Schneider Electric SE"`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Schneider Electric from 2018-03-09. 2018-03-09 17:06:08 -05:00			`{`
"-Synchronized-Data." 2019-03-18 04:50:51 +00:00			`"lang": "eng",`
			`"value": "A vulnerability exists in Schneider Electric's Pelco Sarix Professional in all firmware versions prior to 3.29.67 which could allow retrieving of specially crafted URLs without authentication that can reveal sensitive information to an attacker."`
- Added submission from Schneider Electric from 2018-03-09. 2018-03-09 17:06:08 -05:00			`}`
"-Synchronized-Data." 2019-03-18 04:50:51 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Information Disclosure"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.schneider-electric.com/en/download/document/SEVD-2018-058-01/"`
			`}`
			`]`
			`}`
			`}`