Vulnerability Change Records for CVE-2020-2590

Change History

CVE Modified by Oracle 1/22/2020 6:15:12 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20200122-0003/ [No Types Assigned]

CVE Modified by Oracle 1/28/2020 8:15:11 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00050.html [No Types Assigned]

CVE Modified by Oracle 1/21/2020 9:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0196 [No Types Assigned]

CVE Modified by Oracle 2/27/2020 2:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0632 [No Types Assigned]

CVE Modified by Oracle 2/07/2020 3:15:21 PM

Action Type Old Value New Value
Added CVSS V3

								
							
							
						
Oracle AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

CVE Modified by Oracle 1/20/2020 8:15:16 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://seclists.org/bugtraq/2020/Jan/24 [No Types Assigned]
Added Reference

								
							
							
						
https://www.debian.org/security/2020/dsa-4605 [No Types Assigned]

Modified Analysis 2/26/2021 2:38:16 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.9.0:*:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.9.1:*:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:-:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_1:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_2:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_3:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_4:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_5:*:*:*:*:*:*
     *cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_6:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:* versions from (including) 7.3
     *cpe:2.3:a:netapp:active_iq_unified_manager:*:*:*:*:*:vmware_vsphere:*:* versions from (including) 9.5
     *cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:e-series_santricity_management:-:*:*:*:*:vmware_vcenter:*:*
     *cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:* versions from (including) 11.0.0 up to (including) 11.60.3
     *cpe:2.3:a:netapp:e-series_santricity_storage_manager:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*
     *cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*
     *cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_tus:7.7:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Changed Reference Type
https://kc.mcafee.com/corporate/index?page=content&id=SB10315 No Types Assigned
https://kc.mcafee.com/corporate/index?page=content&id=SB10315 Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2020/02/msg00034.html Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/02/msg00034.html Mailing List, Third Party Advisory
Changed Reference Type
https://seclists.org/bugtraq/2020/Jan/24 Mailing List, Third Party Advisory
https://seclists.org/bugtraq/2020/Jan/24 Issue Tracking, Mailing List, Third Party Advisory
Changed Reference Type
https://security.gentoo.org/glsa/202101-19 No Types Assigned
https://security.gentoo.org/glsa/202101-19 Third Party Advisory

CVE Modified by Oracle 2/01/2020 10:15:09 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://usn.ubuntu.com/4257-1/ [No Types Assigned]

CVE Modified by Oracle 5/13/2020 4:15:12 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://kc.mcafee.com/corporate/index?page=content&id=SB10315 [No Types Assigned]

CVE Modified by Oracle 1/26/2021 1:15:52 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/202101-19 [No Types Assigned]

CVE Modified by Oracle 1/30/2020 6:15:40 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0202 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0231 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0232 [No Types Assigned]

CVE Modified by Oracle 1/21/2020 1:15:12 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0157 [No Types Assigned]

CVE Modified by Oracle 2/29/2020 9:15:10 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2020/02/msg00034.html [No Types Assigned]

CVE Modified by Oracle 1/16/2020 11:15:19 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0122 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0128 [No Types Assigned]

CPE Deprecation Remap 9/08/2020 8:30:04 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update_231:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.8.0:update231:*:*:*:*:*:*

Initial Analysis 1/22/2020 4:14:20 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update_241:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:1.8.0:update_231:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:11.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jdk:13.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jre:1.7.0:update_241:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jre:1.8.0:update_231:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jre:11.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:oracle:jre:13.0.1:*:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:M/Au:N/C:N/I:P/A:N)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Added CWE

								
							
							
						
NIST NVD-CWE-noinfo
Changed Reference Type
https://access.redhat.com/errata/RHSA-2020:0122 No Types Assigned
https://access.redhat.com/errata/RHSA-2020:0122 Patch, Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2020:0128 No Types Assigned
https://access.redhat.com/errata/RHSA-2020:0128 Patch, Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2020:0157 No Types Assigned
https://access.redhat.com/errata/RHSA-2020:0157 Third Party Advisory
Changed Reference Type
https://access.redhat.com/errata/RHSA-2020:0196 No Types Assigned
https://access.redhat.com/errata/RHSA-2020:0196 Third Party Advisory
Changed Reference Type
https://seclists.org/bugtraq/2020/Jan/24 No Types Assigned
https://seclists.org/bugtraq/2020/Jan/24 Third Party Advisory
Changed Reference Type
https://security.netapp.com/advisory/ntap-20200122-0003/ No Types Assigned
https://security.netapp.com/advisory/ntap-20200122-0003/ Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2020/dsa-4605 No Types Assigned
https://www.debian.org/security/2020/dsa-4605 Third Party Advisory
Changed Reference Type
https://www.oracle.com/security-alerts/cpujan2020.html No Types Assigned
https://www.oracle.com/security-alerts/cpujan2020.html Patch, Vendor Advisory

CPE Deprecation Remap 9/08/2020 9:0:18 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update_241:*:*:*:*:*:*
OR
     *cpe:2.3:a:oracle:jdk:1.7.0:update241:*:*:*:*:*:*

CVE Modified by Oracle 2/17/2020 2:15:15 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://seclists.org/bugtraq/2020/Feb/22 [No Types Assigned]

CVE Modified by Oracle 2/13/2020 6:15:11 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2020/dsa-4621 [No Types Assigned]

CVE Modified by Oracle 2/18/2020 2:15:14 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0541 [No Types Assigned]

CVE Modified by Oracle 1/29/2020 5:15:12 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00060.html [No Types Assigned]