Vulnerability Change Records for CVE-2020-27853

Change History

CVE Modified by MITRE 11/09/2020 1:15:14 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://github.security.telekom.com/2020/11/wire-secure-messenger-format-string-vulnerability.html [No Types Assigned]

Initial Analysis 11/02/2020 11:2:12 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:wire:wire:*:*:*:*:*:*:*:* versions up to (excluding) 2020-10-16
     *cpe:2.3:a:wire:wire_-_audio\,_video\,_and_signaling:*:*:*:*:*:*:*:* versions from (including) 5.3 up to (excluding) 6.4
     *cpe:2.3:a:wire:wire_secure_messenger:*:*:*:*:*:android:*:* versions up to (excluding) 3.49.918
     *cpe:2.3:a:wire:wire_secure_messenger:*:*:*:*:*:iphone_os:*:* versions up to (excluding) 3.61
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
NIST CWE-134
Changed Reference Type
https://github.com/wireapp/wire-audio-video-signaling/issues/23#issuecomment-710075689 No Types Assigned
https://github.com/wireapp/wire-audio-video-signaling/issues/23#issuecomment-710075689 Third Party Advisory