Merge branch 'patch-9' of https://github.com/htoomey/cvelist

2025-06-01 11:12:04 +00:00 · 2018-04-03 17:11:50 -04:00 · 2018-04-03 17:11:50 -04:00 · 3de98c2f7f
commit 3de98c2f7f
parent 14f549d545 c6b1952a40
1 changed files with 77 additions and 11 deletions
--- a/2017/3xxx/CVE-2017-3972.json
+++ b/2017/3xxx/CVE-2017-3972.json
@ -1,18 +1,84 @@
 {
-   "CVE_data_meta" : {
-      "ASSIGNER" : "cve@mitre.org",
-      "ID" : "CVE-2017-3972",
-      "STATE" : "RESERVED"
+   "CVE_data_meta": {
+      "ASSIGNER": "psirt@mcafee.com",
+      "DATE_PUBLIC": "2017-03-29T17:00:00.000Z",
+      "ID": "CVE-2017-3972",
+      "STATE": "PUBLIC",
+      "TITLE": "SB10192 - Network Security Management (NSM) - Infrastructure-based foot printing vulnerability"
   },
-   "data_format" : "MITRE",
-   "data_type" : "CVE",
-   "data_version" : "4.0",
-   "description" : {
-      "description_data" : [
+   "affects": {
+      "vendor": {
+         "vendor_data": [
+            {
+               "product": {
+                  "product_data": [
+                     {
+                        "product_name": "Network Security Management (NSM)",
+                        "version": {
+                           "version_data": [
+                              {
+                                 "affected": "<",
+                                 "version_name": "8.2",
+                                 "version_value": "8.2.7.42.2"
+                              }
+                           ]
+                        }
+                     }
+                  ]
+               },
+               "vendor_name": "McAfee"
+            }
+         ]
+      }
+   },
+   "data_format": "MITRE",
+   "data_type": "CVE",
+   "data_version": "4.0",
+   "description": {
+      "description_data": [
         {
-            "lang" : "eng",
-            "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            "lang": "eng",
+            "value": "Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to execute arbitrary code via the server banner leaking potentially sensitive or security relevant information."
         }
      ]
+   },
+   "impact": {
+      "cvss": {
+         "attackComplexity": "LOW",
+         "attackVector": "NETWORK",
+         "availabilityImpact": "LOW",
+         "baseScore": 8.3,
+         "baseSeverity": "HIGH",
+         "confidentialityImpact": "LOW",
+         "integrityImpact": "LOW",
+         "privilegesRequired": "NONE",
+         "scope": "CHANGED",
+         "userInteraction": "NONE",
+         "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
+         "version": "3.0"
+      }
+   },
+   "problemtype": {
+      "problemtype_data": [
+         {
+            "description": [
+               {
+                  "lang": "eng",
+                  "value": "Infrastructure-based foot printing vulnerability"
+               }
+            ]
+         }
+      ]
+   },
+   "references": {
+      "reference_data": [
+         {
+            "url": "https://kc.mcafee.com/corporate/index?page=content&id=SB10192"
+         }
+      ]
+   },
+   "source": {
+      "advisory": "SB10192",
+      "discovery": "EXTERNAL"
   }
 }