admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added CVE-2017-1000192

Browse Source
This commit is contained in:
Kurt Seifried 2017-11-16 14:14:08 -07:00
parent 87e2211f6e
commit fdba68d886
No known key found for this signature in database
GPG Key ID: F15CADC4A00F8174
1 changed files with 62 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

62
2017/1000xxx/CVE-2017-1000192.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "kurt@seifried.org",
"DATE_ASSIGNED": "2017-08-22T17:29:33.415730",
"ID": "CVE-2017-1000192",
"REQUESTER": "artem.moskowsky@gmail.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "sysPass",
"version": {
"version_data": [
{
"version_value": "2.1.7 and older"
}
]
}
}
]
},
"vendor_name": "Cygnux"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cygnux sysPass version 2.1.7 and older is vulnerable to a Local File Inclusion in the functionality of javascript files inclusion. The attacker can read the configuration files that contain the login and password from the database, private encryption key, as well as other sensitive information."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Directory Traversal"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/nuxsmin/sysPass/releases/tag/2.1.8.17042901"
}
]
}
}