NVD

Vulnerability Change Records for CVE-2019-17062

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:oxid-esales:eshop:::::community::: versions from (including) 4.9.0 up to (including) 4.10.0 cpe:2.3:a:oxid-esales:eshop:::::professional::: versions from (including) 4.9.0 up to (including) 4.10.0 cpe:2.3:a:oxid-esales:eshop:::::enterprise::: versions from (including) 5.2.0 up to (including) 5.3.0 cpe:2.3:a:oxid-esales:eshop:::::community::: versions from (including) 6.0.0 up to (excluding) 6.0.6 cpe:2.3:a:oxid-esales:eshop:::::enterprise::: versions from (including) 6.0.0 up to (excluding) 6.0.6 cpe:2.3:a:oxid-esales:eshop:::::professional::: versions from (including) 6.0.0 up to (excluding) 6.0.6 cpe:2.3:a:oxid-esales:eshop:::::community::: versions from (including) 6.1.0 up to (excluding) 6.1.5 cpe:2.3:a:oxid-esales:eshop:::::enterprise::: versions from (including) 6.1.0 up to (excluding) 6.1.5 cpe:2.3:a:oxid-esales:eshop:::::professional::: versions from (including) 6.1.0 up to (excluding) 6.1.5
Added	CVSS V2		NIST (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Added	CWE		NIST CWE-384
Changed	Reference Type	https://oxidforge.org/en/security-bulletin-2019-002.html No Types Assigned	https://oxidforge.org/en/security-bulletin-2019-002.html Vendor Advisory