Adding CVE-2018-6487

2025-08-04 08:44:25 +00:00 · 2018-02-20 10:54:06 -08:00 · 2018-02-20 10:54:06 -08:00 · d950bd9698
commit d950bd9698
parent d19f0ea330
1 changed files with 81 additions and 12 deletions
--- a/2018/6xxx/CVE-2018-6487.json
+++ b/2018/6xxx/CVE-2018-6487.json
@ -1,18 +1,87 @@
 {
-   "CVE_data_meta" : {
-      "ASSIGNER" : "cve@mitre.org",
-      "ID" : "CVE-2018-6487",
-      "STATE" : "RESERVED"
+   "CVE_data_meta": {
+      "ASSIGNER": "security@microfocus.com",
+      "DATE_PUBLIC": "2018-02-20T17:00:00.000Z",
+      "ID": "CVE-2018-6487",
+      "STATE": "PUBLIC",
+      "TITLE": "MFSBGN03799 rev.1 - Micro Focus UCMDB, Remote Disclosure of Information"
   },
-   "data_format" : "MITRE",
-   "data_type" : "CVE",
-   "data_version" : "4.0",
-   "description" : {
-      "description_data" : [
+   "affects": {
+      "vendor": {
+         "vendor_data": [
+            {
+               "product": {
+                  "product_data": [
+                     {
+                        "product_name": "Universal CMDB Foundation Software",
+                        "version": {
+                           "version_data": [
+                              {
+                                 "version_name": "10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11"
+                              }
+                           ]
+                        }
+                     }
+                  ]
+               },
+               "vendor_name": "Micro Focus"
+            }
+         ]
+      }
+   },
+   "data_format": "MITRE",
+   "data_type": "CVE",
+   "data_version": "4.0",
+   "description": {
+      "description_data": [
         {
-            "lang" : "eng",
-            "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            "lang": "eng",
+            "value": "Remote Disclosure of Information in Micro Focus Universal CMDB Foundation Software, version numbers 10.10, 10.11, 10.20, 10.21, 10.22, 10.30, 10.31, 4.10, 4.11. This vulnerability could be remotely exploited to allow disclosure of information."
         }
      ]
+   },
+   "exploit": [
+      {
+         "lang": "eng",
+         "value": "Remote Disclosure of Information"
+      }
+   ],
+   "impact": {
+      "cvss": {
+         "attackComplexity": "LOW",
+         "attackVector": "NETWORK",
+         "availabilityImpact": "HIGH",
+         "baseScore": 9.8,
+         "baseSeverity": "CRITICAL",
+         "confidentialityImpact": "HIGH",
+         "integrityImpact": "HIGH",
+         "privilegesRequired": "NONE",
+         "scope": "UNCHANGED",
+         "userInteraction": "NONE",
+         "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
+         "version": "3.0"
+      }
+   },
+   "problemtype": {
+      "problemtype_data": [
+         {
+            "description": [
+               {
+                  "lang": "eng",
+                  "value": "Remote Disclosure of Information"
+               }
+            ]
+         }
+      ]
+   },
+   "references": {
+      "reference_data": [
+         {
+            "url": "https://softwaresupport.softwaregrp.com/document/-/facetsearch/document/KM03091097"
+         }
+      ]
+   },
+   "source": {
+      "discovery": "UNKNOWN"
   }
-}
+}