NVD

Vulnerability Change Records for CVE-2019-11269

Action	Type	Old Value	New Value
Added	CVSS V3		AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Added	CVSS V2		(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Added	CWE		CWE-601
Added	CPE Configuration		OR cpe:2.3:a:pivotal_software:spring_security_oauth::::::::* versions from (including) 2.0.0 up to (excluding) 2.0.18 cpe:2.3:a:pivotal_software:spring_security_oauth::::::::* versions from (including) 2.1.0 up to (excluding) 2.1.5 cpe:2.3:a:pivotal_software:spring_security_oauth::::::::* versions from (including) 2.2.0 up to (excluding) 2.2.5 cpe:2.3:a:pivotal_software:spring_security_oauth::::::::* versions from (including) 2.3.0 up to (excluding) 2.3.6
Changed	Reference Type	https://pivotal.io/security/cve-2019-11269 No Types Assigned	https://pivotal.io/security/cve-2019-11269 Vendor Advisory
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism