U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2014-3623

Change History

Modified Analysis 4/13/2018 9:00:56 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:apache:wss4j:*:*:*:*:*:*:*:* versions up to (excluding) 1.6.17
     *cpe:2.3:a:apache:wss4j:*:*:*:*:*:*:*:* versions from (including) 2.0.0 up to (excluding) 2.0.2
Changed CPE Configuration
AND
     OR
          *cpe:2.3:a:apache:wss4j:1.6.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.13:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.14:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.15:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:1.6.16:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:2.0.0:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:2.0.0-rc1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:wss4j:2.0.1:*:*:*:*:*:*:*
     OR
          *cpe:2.3:a:apache:cxf:2.7.0:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:2.7.1:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:2.7.10:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:2.7.11:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:2.7.12:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:3.0.0:*:*:*:*:*:*:*
          *cpe:2.3:a:apache:cxf:3.0.1:*:*:*:*:*:*:*
OR
     *cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:* versions from (including) 2.7.0 up to (including) 2.7.13
     *cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:* versions from (including) 3.0.0 up to (excluding) 3.0.2
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-0236.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-0236.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-0675.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-0675.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-0850.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-0850.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-0851.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-0851.html Third Party Advisory
Changed Reference Type
http://seclists.org/oss-sec/2014/q4/437 No Types Assigned
http://seclists.org/oss-sec/2014/q4/437 Mailing List, Third Party Advisory
Changed Reference Type
http://secunia.com/advisories/61909 No Types Assigned
http://secunia.com/advisories/61909 Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/70736 No Types Assigned
http://www.securityfocus.com/bid/70736 Third Party Advisory, VDB Entry
Changed Reference Type
https://exchange.xforce.ibmcloud.com/vulnerabilities/97754 No Types Assigned
https://exchange.xforce.ibmcloud.com/vulnerabilities/97754 VDB Entry
Changed Reference Type
https://issues.apache.org/jira/browse/WSS-511 No Types Assigned
https://issues.apache.org/jira/browse/WSS-511 Vendor Advisory