{"containers":{"cna":{"affected":[{"product":"Client for Open Enterprise Server","vendor":"Micro Focus","versions":[{"lessThan":"2 SP4 (IR8a)","status":"affected","version":"2 SP4 (IR8a)","versionType":"custom"}]}],"datePublic":"2018-05-18T00:00:00.000Z","descriptions":[{"lang":"en","value":"The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys."}],"metrics":[{"cvssV3_0":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.0"}}],"problemTypes":[{"descriptions":[{"description":"Elevation of privilege via buffer overflow.","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2021-01-06T16:15:53.000Z","orgId":"f81092c5-7f14-476d-80dc-24857f90be84","shortName":"microfocus"},"references":[{"tags":["x_refsource_MISC"],"url":"https://www.novell.com/support/kb/doc.php?id=7022983"},{"tags":["x_refsource_MISC"],"url":"https://bugzilla.novell.com/show_bug.cgi?id=1093607"}],"source":{"defect":["1093607"],"discovery":"EXTERNAL"},"title":"Client for OES Elevation of Privilege via Buffer Overflow","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"security@microfocus.com","DATE_PUBLIC":"2018-05-18T18:00:00.000Z","ID":"CVE-2018-7687","STATE":"PUBLIC","TITLE":"Client for OES Elevation of Privilege via Buffer Overflow"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"Client for Open Enterprise Server","version":{"version_data":[{"affected":"<","version_affected":"<","version_name":"2 SP4 (IR8a)","version_value":"2 SP4 (IR8a)"}]}}]},"vendor_name":"Micro Focus"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys."}]},"impact":{"cvss":{"attackComplexity":"LOW","attackVector":"LOCAL","availabilityImpact":"HIGH","baseScore":7.8,"baseSeverity":"HIGH","confidentialityImpact":"HIGH","integrityImpact":"HIGH","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","version":"3.0"}},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Elevation of privilege via buffer overflow."}]}]},"references":{"reference_data":[{"name":"https://www.novell.com/support/kb/doc.php?id=7022983","refsource":"MISC","url":"https://www.novell.com/support/kb/doc.php?id=7022983"},{"name":"https://bugzilla.novell.com/show_bug.cgi?id=1093607","refsource":"MISC","url":"https://bugzilla.novell.com/show_bug.cgi?id=1093607"}]},"source":{"defect":["1093607"],"discovery":"EXTERNAL"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T06:31:05.169Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://www.novell.com/support/kb/doc.php?id=7022983"},{"tags":["x_refsource_MISC","x_transferred"],"url":"https://bugzilla.novell.com/show_bug.cgi?id=1093607"}]}]},"cveMetadata":{"assignerOrgId":"f81092c5-7f14-476d-80dc-24857f90be84","assignerShortName":"microfocus","cveId":"CVE-2018-7687","datePublished":"2018-05-21T20:00:00.000Z","dateReserved":"2018-03-05T00:00:00.000Z","dateUpdated":"2024-09-16T22:36:42.898Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}