CVE-2017-0912

{"id": "CVE-2017-0912", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 2.7, "exploitabilityScore": 2.3}]}, "published": "2018-07-03T21:29:00.217", "references": [{"url": "https://community.ubnt.com/t5/UCRM/New-UCRM-upgrades-available-2-8-2-and-2-9-0-beta3/td-p/2211814", "tags": ["Vendor Advisory"], "source": "support@hackerone.com"}, {"url": "https://community.ubnt.com/t5/UCRM/New-UCRM-upgrades-available-2-8-2-and-2-9-0-beta3/td-p/2211814", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Ubiquiti UCRM versions 2.5.0 to 2.7.7 are vulnerable to Stored Cross-site Scripting. Due to the lack sanitization, it is possible to inject arbitrary HTML code by manipulating the uploaded filename. Successful exploitation requires valid credentials to an account with \"Edit\" access to \"Scheduling\"."}, {"lang": "es", "value": "Ubiquiti UCRM desde la versi\u00f3n 2.5.0 a la 2.7.7 es vulnerable a Cross-Site Scripting (XSS) persistente. Debido a la falta de saneamiento, es posible inyectar c\u00f3digo HTML arbitrario manipulando el nombre de archivo subido. La explotaci\u00f3n exitosa de esta vulnerabilidad requiere credenciales v\u00e1lidas para una cuenta con acceso \"Edit\" a \"Scheduling\"."}], "lastModified": "2024-11-21T03:03:52.973", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ui:ucrm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BFDCEF6-A604-40E3-800A-BC5A2EDE822D", "versionEndIncluding": "2.7.7", "versionStartIncluding": "2.5.0"}], "operator": "OR"}]}], "sourceIdentifier": "support@hackerone.com"}