NVD

Vulnerability Change Records for CVE-2020-5421

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:pivotal_software:spring_framework::::::::* versions up to (including) 4.2.9 cpe:2.3:a:pivotal_software:spring_framework::::::::* versions from (including) 4.3.0 up to (including) 4.3.28 cpe:2.3:a:pivotal_software:spring_framework::::::::* versions from (including) 5.0.0 up to (including) 5.0.18 cpe:2.3:a:pivotal_software:spring_framework::::::::* versions from (including) 5.1.0 up to (including) 5.1.17 cpe:2.3:a:pivotal_software:spring_framework::::::::* versions from (including) 5.2.0 up to (including) 5.2.8
Added	CVSS V2		NIST (AV:N/AC:L/Au:S/C:P/I:P/A:P)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST NVD-CWE-noinfo
Changed	Reference Type	https://tanzu.vmware.com/security/cve-2020-5421 No Types Assigned	https://tanzu.vmware.com/security/cve-2020-5421 Vendor Advisory