Vulnerability Change Records for CVE-2018-1000632

Change History

CVE Modified by MITRE 5/31/2019 6:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/4a77652531d62299a30815cf5f233af183425db8e3c9a824a814e768@%3Cdev.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 10/24/2019 7:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:3172 [No Types Assigned]

CVE Modified by MITRE 6/01/2019 6:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/00571f362a7a2470fba50a31282c65637c40d2e21ebe6ee535a4ed74@%3Ccommits.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 5/30/2019 4:29:00 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20190530-0001/ [No Types Assigned]

CVE Modified by MITRE 9/25/2018 6:29:06 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2018/09/msg00028.html [No Types Assigned]

CVE Modified by MITRE 7/14/2020 11:15:19 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpujul2020.html [No Types Assigned]

Modified Analysis 3/08/2019 11:29:43 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:oracle:flexcube_investor_servicing:12.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:flexcube_investor_servicing:12.1.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:flexcube_investor_servicing:12.3.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:flexcube_investor_servicing:12.4.0:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:flexcube_investor_servicing:14.0.0:*:*:*:*:*:*:*
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0362 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0362 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0364 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0364 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0365 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0365 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2019:0380 No Types Assigned
https://access.redhat.com/errata/RHSA-2019:0380 Third Party Advisory
Changed Reference Type
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html No Types Assigned
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html Patch, Third Party Advisory

CVE Modified by MITRE 11/12/2019 3:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451@%3Csolr-user.lucene.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 6/04/2019 10:29:00 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/9d4c1af6f702c3d6d6f229de57112ddccac8ce44446a01b7937ab9e0@%3Ccommits.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 2/20/2019 6:29:00 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0380 [No Types Assigned]

CVE Modified by MITRE 5/14/2019 1:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1159 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1160 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1161 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:1162 [No Types Assigned]

Initial Analysis 10/31/2018 2:8:31 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:dom4j_project:dom4j:*:*:*:*:*:*:*:* versions up to (excluding) 2.1.1
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:N/I:P/A:P)
Added CVSS V3

								
							
							
						
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Added CWE

								
							
							
						
CWE-91
Changed Reference Type
https://github.com/dom4j/dom4j/commit/e598eb43d418744c4dbf62f647dd2381c9ce9387 No Types Assigned
https://github.com/dom4j/dom4j/commit/e598eb43d418744c4dbf62f647dd2381c9ce9387 Patch, Third Party Advisory
Changed Reference Type
https://github.com/dom4j/dom4j/issues/48 No Types Assigned
https://github.com/dom4j/dom4j/issues/48 Patch, Third Party Advisory
Changed Reference Type
https://ihacktoprotect.com/post/dom4j-xml-injection/ No Types Assigned
https://ihacktoprotect.com/post/dom4j-xml-injection/ Exploit, Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2018/09/msg00028.html No Types Assigned
https://lists.debian.org/debian-lts-announce/2018/09/msg00028.html Mailing List, Third Party Advisory

CVE Modified by MITRE 6/10/2019 4:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/7e9e78f0e4288fac6591992836d2a80d4df19161e54bd71ab4b8e458@%3Cdev.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 4/15/2020 5:15:21 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuapr2020.html [No Types Assigned]

CVE Modified by MITRE 6/14/2021 2:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuApr2021.html [No Types Assigned]

CVE Modified by MITRE 5/31/2019 5:29:01 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/7f6e120e6ed473f4e00dde4c398fc6698eb383bd7857d20513e989ce@%3Cdev.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 6/03/2019 1:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/d7d960b2778e35ec9b4d40c8efd468c7ce7163bcf6489b633491c89f@%3Cdev.maven.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 5/12/2021 2:15:08 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJULAHVR3I5SX7OSMXAG75IMNSAYOXGA/ [No Types Assigned]

CVE Modified by MITRE 5/12/2021 4:15:07 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IOOVVCRQE6ATFD2JM2EMDXOQXTRIVZGP/ [No Types Assigned]

CVE Modified by MITRE 1/16/2019 2:29:32 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html [No Types Assigned]

CVE Modified by MITRE 2/19/2019 6:29:03 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0362 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0364 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:0365 [No Types Assigned]

CVE Modified by MITRE 5/31/2019 7:29:00 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/5a020ecaa3c701f408f612f7ba2ee37a021644c4a39da2079ed3ddbc@%3Ccommits.maven.apache.org%3E [No Types Assigned]