Vulnerability Change Records for CVE-2020-1953

Change History

CVE Modified by Apache Software Foundation 3/13/2020 2:15:13 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/rde2186ad6ac0d6ed8d51af7509244adcf1ce0f9a3b7e1d1dd3b64676@%3Ccommits.camel.apache.org%3E [No Types Assigned]

Initial Analysis 3/18/2020 11:1:57 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:apache:commons_configuration:2.2:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:commons_configuration:2.3:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:commons_configuration:2.4:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:commons_configuration:2.5:*:*:*:*:*:*:*
     *cpe:2.3:a:apache:commons_configuration:2.6:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Added CWE

								
							
							
						
NIST CWE-20
Changed Reference Type
https://lists.apache.org/thread.html/d0e00f2e147a9e9b13a6829133092f349b2882bf6860397368a52600@%3Cannounce.tomcat.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/d0e00f2e147a9e9b13a6829133092f349b2882bf6860397368a52600@%3Cannounce.tomcat.apache.org%3E Not Applicable
Changed Reference Type
https://lists.apache.org/thread.html/rde2186ad6ac0d6ed8d51af7509244adcf1ce0f9a3b7e1d1dd3b64676@%3Ccommits.camel.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/rde2186ad6ac0d6ed8d51af7509244adcf1ce0f9a3b7e1d1dd3b64676@%3Ccommits.camel.apache.org%3E Patch, Vendor Advisory

CWE Remap 7/21/2021 7:39:23 AM

Action Type Old Value New Value
Changed CWE
CWE-20
NVD-CWE-noinfo

CVE Modified by Apache Software Foundation 12/22/2020 9:15:14 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r16a2e949e35780c8974cf66104e812410f3904f752df6b66bf292269@%3Ccommits.servicecomb.apache.org%3E [No Types Assigned]

CVE Modified by Apache Software Foundation 10/20/2020 6:15:42 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuoct2020.html [No Types Assigned]