National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2018-1296

Change History

Initial Analysis - 2/21/2019 12:13:24 PM

Action Type Old Value New Value
Changed Reference Type
http://www.securityfocus.com/bid/106764 No Types Assigned
http://www.securityfocus.com/bid/106764 Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/a5b15bc76fbdad2ee40761aacf954a13aeef67e305f86d483f267e8e@%3Cuser.hadoop.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/a5b15bc76fbdad2ee40761aacf954a13aeef67e305f86d483f267e8e@%3Cuser.hadoop.apache.org%3E Mailing List, Mitigation, Vendor Advisory
Added CWE
CWE-200
Added CVSS V2
(AV:N/AC:L/Au:N/C:P/I:N/A:N)
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Added CPE Configuration
OR
     *cpe:2.3:a:apache:hadoop:*:*:*:*:*:*:*:* versions from (including) 2.5.0 up to (including) 2.7.5
     *cpe:2.3:a:apache:hadoop:2.8.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:2.8.1:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:2.8.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:2.8.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:2.9.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:alpha1:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:alpha2:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:alpha3:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:alpha4:*:*:*:*:*:*
     *cpe:2.3:a:apache:hadoop:3.0.0:beta1:*:*:*:*:*:*