Vulnerability Change Records for CVE-2017-9462

Change History

CVE Modified by MITRE 7/06/2018 9:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/07/msg00005.html [No Types Assigned]

Initial Analysis 6/08/2017 9:27:37 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:mercurial-scm:mercurial:4.1.2:*:*:*:*:*:*:* (and previous)
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Added CVSS V3

								
							
							
						
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
https://bugs.debian.org/861243 No Types Assigned
https://bugs.debian.org/861243 Mailing List, Patch, Third Party Advisory
Changed Reference Type
https://www.mercurial-scm.org/repo/hg/rev/77eaf9539499 No Types Assigned
https://www.mercurial-scm.org/repo/hg/rev/77eaf9539499 Mailing List, Vendor Advisory
Changed Reference Type
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.1.3_.282017-4-18.29 No Types Assigned
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.1.3_.282017-4-18.29 Vendor Advisory

Reanalysis 2/05/2020 1:32:39 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:mercurial:mercurial:*:*:*:*:*:*:*:* versions up to (including) 4.12
OR
     *cpe:2.3:a:mercurial:mercurial:*:*:*:*:*:*:*:* versions up to (excluding) 4.1.3
Removed CVSS V3
NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

								
						
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Reanalysis 6/08/2017 2:14:56 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:mercurial-scm:mercurial:4.1.2:*:*:*:*:*:*:* (and previous)
OR
     *cpe:2.3:a:mercurial:mercurial:4.12:*:*:*:*:*:*:* (and previous)
Changed Reference Type
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.1.3_.282017-4-18.29 Vendor Advisory
https://www.mercurial-scm.org/wiki/WhatsNew#Mercurial_4.1.3_.282017-4-18.29 Release Notes, Vendor Advisory

CVE Modified by MITRE 6/20/2017 9:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/99123 [No Types Assigned]

CVE Modified by MITRE 11/05/2017 9:29:09 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2017/dsa-3963 [No Types Assigned]

CWE Remap 10/02/2019 8:3:26 PM

Action Type Old Value New Value
Changed CWE
CWE-264
CWE-732

CVE Modified by MITRE 1/04/2018 9:31:55 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2017:1576 [No Types Assigned]

CVE Modified by MITRE 9/25/2017 9:29:03 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201709-18 [No Types Assigned]