Vulnerability Change Records for CVE-2018-19981

Change History

Initial Analysis 4/08/2019 9:38:17 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:amazon:amazon_web_services_software_development_kit:*:*:*:*:*:android:*:* versions up to (including) 2.8.5
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:S/C:C/I:C/A:C)
Added CVSS V3

								
							
							
						
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-264
Changed Reference Type
https://aws-amplify.github.io/aws-sdk-android/docs/reference/com/amazonaws/auth/CognitoCachingCredentialsProvider.html No Types Assigned
https://aws-amplify.github.io/aws-sdk-android/docs/reference/com/amazonaws/auth/CognitoCachingCredentialsProvider.html Exploit, Third Party Advisory
Changed Reference Type
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_01.png No Types Assigned
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_01.png Exploit, Third Party Advisory
Changed Reference Type
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_02.png No Types Assigned
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_02.png Exploit, Third Party Advisory
Changed Reference Type
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_03.png No Types Assigned
https://raw.githubusercontent.com/lorenzodifuccia/cloudflare/master/Images/vulns/aws/aws_sdk_sp_03.png Exploit, Third Party Advisory

CWE Remap 10/02/2019 8:3:26 PM

Action Type Old Value New Value
Changed CWE
CWE-264
CWE-264
CWE-255
CWE-312