NVD - CVE-2017-5677

Vulnerability Change Records for CVE-2017-5677

Change History

Initial Analysis by NIST 2/28/2017 1:59:41 PM

Action	Type	Old Value	New Value
Added	CVSS V3		AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added	CVSS V2		(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added	CWE		CWE-20
Added	CPE Configuration		OR cpe:2.3:a:pear:html_ajax:0.3.0::::::: cpe:2.3:a:pear:html_ajax:0.3.1::::::: cpe:2.3:a:pear:html_ajax:0.3.2::::::: cpe:2.3:a:pear:html_ajax:0.3.3::::::: cpe:2.3:a:pear:html_ajax:0.3.4::::::: cpe:2.3:a:pear:html_ajax:0.4.0::::::: cpe:2.3:a:pear:html_ajax:0.4.1::::::: cpe:2.3:a:pear:html_ajax:0.5.0::::::: cpe:2.3:a:pear:html_ajax:0.5.1::::::: cpe:2.3:a:pear:html_ajax:0.5.2::::::: cpe:2.3:a:pear:html_ajax:0.5.3::::::: cpe:2.3:a:pear:html_ajax:0.5.4::::::: cpe:2.3:a:pear:html_ajax:0.5.5::::::: cpe:2.3:a:pear:html_ajax:0.5.6::::::: cpe:2.3:a:pear:html_ajax:0.5.7:::::::
Changed	Reference Type	http://blog.pear.php.net/2017/02/02/security-html_ajax-058/ No Types Assigned	http://blog.pear.php.net/2017/02/02/security-html_ajax-058/ Vendor Advisory
Changed	Reference Type	http://karmainsecurity.com/KIS-2017-01 No Types Assigned	http://karmainsecurity.com/KIS-2017-01 Third Party Advisory
Changed	Reference Type	http://seclists.org/fulldisclosure/2017/Feb/12 No Types Assigned	http://seclists.org/fulldisclosure/2017/Feb/12 Third Party Advisory, Mailing List
Changed	Reference Type	http://www.securityfocus.com/bid/96044 No Types Assigned	http://www.securityfocus.com/bid/96044 Third Party Advisory, VDB Entry
Changed	Reference Type	https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f5acb5adcd195f9a06b732794cb0de7620def646 No Types Assigned	https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f5acb5adcd195f9a06b732794cb0de7620def646 Third Party Advisory
Changed	Reference Type	https://pear.php.net/bugs/bug.php?id=21165 No Types Assigned	https://pear.php.net/bugs/bug.php?id=21165 Vendor Advisory