admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-08 22:18:26 +00:00
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2017-7335.json

Browse Source
This commit is contained in:
jimzengca 2017-10-23 15:56:13 -07:00 committed by GitHub
parent 85176ed376
commit e2a5fdb6fe
1 changed files with 54 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

69
2017/7xxx/CVE-2017-7335.json
View File

@ -1,18 +1,57 @@
{ {
"CVE_data_meta" : { "CVE_data_meta": {
"ASSIGNER" : "cve@mitre.org", "ASSIGNER": "psirt@fortinet.com",
"ID" : "CVE-2017-7335", "ID": "CVE-2017-7335",
"STATE" : "RESERVED" "STATE": "PUBLIC"
}, },
"data_format" : "MITRE", "affects": {
"data_type" : "CVE", "vendor": {
"data_version" : "4.0", "vendor_data": [
"description" : { {
"description_data" : [ "vendor_name": "Fortinet",
{ "product": {
"lang" : "eng", "product_data": [
"value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." {
} "product_name": "Fortinet FortiWLC",
"version": {
"version_data": [
{
"version_value": "FortiWLC 8.3.2, 8.3.1, 8.3.0, 8.2, 8.1, 8.0, 7.0.10, 7.0.9 and below."
}
]
}
}
]
}
}
] ]
} }
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Execute unauthorized code or commands"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://fortiguard.com/psirt/FG-IR-17-106"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Cross-Site Scripting (XSS) vulnerability in Fortinet FortiWLC allows an authenticated user to inject arbitrary web script or HTML via non-sanitized parameters "refresh" and "branchtotable" present in HTTP POST requests."
}
]
}
} }