National Vulnerability Database

National Vulnerability Database

NVD

Vulnerability Change Records for CVE-2019-2684

Change History

CVE Modified by Oracle 6/03/2019 11:29:07 AM

Action Type Old Value New Value
Added Reference 

								
							
							
								
							
						
								
							
								
http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00013.html [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/13/2019 6:29:00 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://usn.ubuntu.com/3975-1/ [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CPE Deprecation Remap 9/08/2020 9:0:10 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Changed
						CPE Configuration
						
							
							
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update_211:*:*:*:*:*:*

								
							
							
								
							
						
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update211:*:*:*:*:*:*

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 1/07/2020 3:15:09 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://support.f5.com/csp/article/K11175903?utm_source=f5support&utm_medium=RSS [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/04/2019 11:29:01 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00007.html [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 2/03/2020 7:15:26 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r3bbb800a816d0a51eccc5a228c58736960a9fffafa581a225834d97d@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r6ccee4e849bc77df0840c7f853f6bd09d426f6741247da2b7429d5d9@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/10/2019 3:29:07 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.debian.org/debian-lts-announce/2019/05/msg00011.html [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 9/01/2020 5:15:11 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://www.openwall.com/lists/oss-security/2020/09/01/4 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/rcd7544b24d8fc32b7950ec4c117052410b661babaa857fb1fc641152@%3Cuser.cassandra.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 6/18/2019 5:15:11 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1518 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CPE Deprecation Remap 9/08/2020 8:29:48 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Changed
						CPE Configuration
						
							
							
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update_201:*:*:*:*:*:*

								
							
							
								
							
						
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update201:*:*:*:*:*:*

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 2/13/2020 12:15:29 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r48c1444845fe15a823e1374674bfc297d5008a5453788099ea14caf0@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/raba0fabaf4d56d4325ab2aca8814f0b30a237ab83d8106b115ee279a@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 12/18/2019 1:15:20 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/38a01302c92ae513910d8c851a2d111736565bd698be4e3af3e4c063@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/43530b91506e2e0c11cfbe691173f5df8c48f51b98262426d7493b67@%3Cannounce.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/71bd3e4e222479c266eaafc8d0c171ef5782a69b52f68df11b650ed7@%3Cusers.tomcat.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/c58d6c3b49c615916b163809f963a55421cac2264885739508e68108@%3Cannounce.apache.org%3E [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/f7f54b4888060d99f59993f006e25005a2b58db0c07ff866bdcd6f17@%3Cdev.tomcat.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 6/04/2019 1:29:01 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1325 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 10/02/2019 4:15:12 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbst03959en_us [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 9/11/2020 12:15:12 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/rab8d90d28f944d84e4d7852f355a25c89451ae02c2decc4d355a9cfc@%3Cuser.cassandra.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 8/15/2019 2:15:20 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://security.gentoo.org/glsa/201908-10 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/30/2019 3:29:01 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://seclists.org/bugtraq/2019/May/75 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://www.debian.org/security/2019/dsa-4453 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/23/2019 11:30:14 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00058.html [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00059.html [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 9/02/2020 1:15:12 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r718e01f61b35409a4f7a3ccbc1cb5136a1558a9f9c2cb8d4ca9be1ce@%3Cuser.cassandra.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/13/2019 6:29:03 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1146 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 9/01/2020 12:15:11 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/rcd7544b24d8fc32b7950ec4c117052410b661babaa857fb1fc641152@%3Cdev.cassandra.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				Initial Analysis 4/25/2019 2:3:50 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						CPE Configuration
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:7.0:update_211:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:8.0:update_201:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:8.0:update_202:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:11.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:12.0.0:*:*:*:*:*:*:*

								
								
					

					

						Added
						CVSS V2
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
(AV:N/AC:M/Au:N/C:N/I:P/A:N)

								
								
					

					

						Added
						CVSS V3
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

								
								
					

					

						Added
						CWE
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
CWE-284

								
								
					

					

						Changed
						Reference Type
						
							
							
								
							
								
http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html No Types Assigned

								
							
							
								
							
						
								
							
								
http://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html Patch, Vendor Advisory

								
								
					

				
			




		

	
		

			 
			

				CWE Remap 8/24/2020 1:37:01 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Changed
						CWE
						
							
							
								
							
								
CWE-284


								
							
							
								
							
						
								
							
								
NVD-CWE-noinfo


								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 9/02/2020 6:15:10 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://lists.apache.org/thread.html/r1fd117082b992e7d43c1286e966c285f98aa362e685695d999ff42f7@%3Cuser.cassandra.apache.org%3E [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/14/2019 1:29:06 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1163 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1164 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1165 [No Types Assigned]

								
								
					

					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1166 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/07/2019 5:29:09 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHBA-2019:0959 [No Types Assigned]

								
								
					

				
			




		

	
		

			 
			

				CPE Deprecation Remap 9/08/2020 8:29:51 AM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Changed
						CPE Configuration
						
							
							
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update_202:*:*:*:*:*:*

								
							
							
								
							
						
								
							
								
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update202:*:*:*:*:*:*

								
								
					

				
			




		

	
		

			 
			

				CVE Modified by Oracle 5/16/2019 12:29:06 PM
			



			

				 
					

						Action
						Type
						Old Value
						New Value
					

				
				
					

						Added
						Reference
						
							
							
								
							
								

								
							
							
								
							
						
								
							
								
https://access.redhat.com/errata/RHSA-2019:1238 [No Types Assigned]