U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2013-2070

Change History

Modified Analysis by NIST 11/16/2020 3:11:24 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:a:igor_sysoev:nginx:1.2.1:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.2:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.3:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.4:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.5:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.6:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.7:*:*:*:*:*:*:*
     *cpe:2.3:a:igor_sysoev:nginx:1.2.8:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.4:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.6:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.7:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.8:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.9:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.10:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.11:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.12:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.13:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.15:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.16:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.17:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.18:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.1.19:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.2.0:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.0:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.1:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.2:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.3:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.4:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.5:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.6:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.7:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.8:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.9:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.10:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.11:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.12:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.13:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.14:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.15:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.3.16:*:*:*:*:*:*:*
     *cpe:2.3:a:nginx:nginx:1.4.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:* versions from (including) 1.1.4 up to (including) 1.2.8
     *cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:* versions from (including) 1.3.9 up to (including) 1.4.0
Added CWE

								
							
							
						
NIST NVD-CWE-noinfo
Removed CWE
NIST CWE-264

								
						
Changed Reference Type
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105950.html No Types Assigned
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105950.html Third Party Advisory
Changed Reference Type
http://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html Vendor Advisory
http://mailman.nginx.org/pipermail/nginx-announce/2013/000114.html Patch, Vendor Advisory
Changed Reference Type
http://nginx.org/download/patch.2013.proxy.txt Exploit
http://nginx.org/download/patch.2013.proxy.txt Patch, Vendor Advisory
Changed Reference Type
http://seclists.org/oss-sec/2013/q2/291 No Types Assigned
http://seclists.org/oss-sec/2013/q2/291 Mailing List, Patch, Third Party Advisory
Changed Reference Type
http://secunia.com/advisories/55181 No Types Assigned
http://secunia.com/advisories/55181 Third Party Advisory
Changed Reference Type
http://security.gentoo.org/glsa/glsa-201310-04.xml No Types Assigned
http://security.gentoo.org/glsa/glsa-201310-04.xml Third Party Advisory
Changed Reference Type
http://www.debian.org/security/2013/dsa-2721 No Types Assigned
http://www.debian.org/security/2013/dsa-2721 Third Party Advisory
Changed Reference Type
http://www.openwall.com/lists/oss-security/2013/05/13/3 No Types Assigned
http://www.openwall.com/lists/oss-security/2013/05/13/3 Mailing List, Patch, Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/59824 No Types Assigned
http://www.securityfocus.com/bid/59824 Third Party Advisory, VDB Entry
Changed Reference Type
https://bugzilla.redhat.com/show_bug.cgi?id=962525 No Types Assigned
https://bugzilla.redhat.com/show_bug.cgi?id=962525 Issue Tracking, Patch, Third Party Advisory
Changed Reference Type
https://exchange.xforce.ibmcloud.com/vulnerabilities/84172 No Types Assigned
https://exchange.xforce.ibmcloud.com/vulnerabilities/84172 Third Party Advisory, VDB Entry