NVD - CVE-2020-9484

Vulnerability Change Records for CVE-2020-9484

Change History

Initial Analysis by NIST 5/22/2020 2:11:11 PM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:apache:tomcat::::::::* versions from (including) 7.0.0 up to (including) 7.0.103 cpe:2.3:a:apache:tomcat::::::::* versions from (including) 8.5.0 up to (including) 8.5.54 cpe:2.3:a:apache:tomcat:9.0.0:milestone1::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone10::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone11::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone12::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone13::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone14::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone15::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone16::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone17::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone18::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone19::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone2::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone20::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone21::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone22::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone23::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone24::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone25::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone26::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone27::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone3::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone4::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone5::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone6::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone7::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone8::::::* cpe:2.3:a:apache:tomcat:9.0.0:milestone9::::::* cpe:2.3:a:apache:tomcat::::::::* versions from (including) 9.0.1 up to (including) 9.0.34 cpe:2.3:a:apache:tomcat:10.0.0:milestone1::::::* cpe:2.3:a:apache:tomcat:10.0.0:milestone2::::::* cpe:2.3:a:apache:tomcat:10.0.0:milestone3::::::* cpe:2.3:a:apache:tomcat:10.0.0:milestone4::::::*
Added	CVSS V2		NIST (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST CWE-502
Changed	Reference Type	https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E No Types Assigned	https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E Mailing List, Mitigation, Patch, Third Party Advisory
Changed	Reference Type	https://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926@%3Cusers.tomcat.apache.org%3E No Types Assigned	https://lists.apache.org/thread.html/rf70f53af27e04869bdac18b1fc14a3ee529e59eb12292c8791a77926@%3Cusers.tomcat.apache.org%3E Mailing List, Mitigation, Patch, Third Party Advisory