From 98dd49c847417a0461e6aad1322c138765d381d8 Mon Sep 17 00:00:00 2001
From: Omar Santos <os@cisco.com>
Date: Fri, 8 Feb 2019 23:04:52 -0500
Subject: [PATCH] Update CVE-2018-18895.json

---
 2018/18xxx/CVE-2018-18895.json | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/2018/18xxx/CVE-2018-18895.json b/2018/18xxx/CVE-2018-18895.json
index d5293bdb516..3f4f3b90067 100644
--- a/2018/18xxx/CVE-2018-18895.json
+++ b/2018/18xxx/CVE-2018-18895.json
@@ -15,7 +15,12 @@
                         "version" : {
                            "version_data" : [
                               {
-                                 "version_value" : "2.8"
+                                 "affected" : "<",
+                                 "version_value" : "2.8MR3"
+                              },
+                              {
+                                 "affected" : "<",
+                                 "version_value" : "3.0MR2 patch 1"
                               }
                            ]
                         }
@@ -34,7 +39,7 @@
       "description_data" : [
          {
             "lang" : "eng",
-            "value" : "A version of Castor XML, as used in Cisco WebEx Meetings Server before 2.8MR3 and 3.x before 3.0MR2 patch 1 and other products, allows XXE attacks. This vulnerability was previously documented in CVE-2014-3004."
+            "value" : "A version of Castor XML, as used in Cisco WebEx Meetings Server before 2.8MR3 and 3.x before 3.0MR2 patch 1 and other products, allows XXE attacks. This vulnerability was previously documented in CVE-2014-3004. Cisco Webex Meetings Server prior to versions 2.8MR3 and 3.0MR2 patch 1."
          }
       ]
    },