Vulnerability Change Records for CVE-2021-21277

Change History

Initial Analysis 2/08/2021 1:6:52 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:peerigon:angular-expressions:*:*:*:*:*:node.js:*:* versions up to (excluding) 1.1.2
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:S/C:P/I:P/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
NIST CWE-74
Changed Reference Type
http://blog.angularjs.org/2016/09/angular-16-expression-sandbox-removal.html No Types Assigned
http://blog.angularjs.org/2016/09/angular-16-expression-sandbox-removal.html Vendor Advisory
Changed Reference Type
https://github.com/peerigon/angular-expressions/commit/07edb62902b1f6127b3dcc013da61c6316dd0bf1 No Types Assigned
https://github.com/peerigon/angular-expressions/commit/07edb62902b1f6127b3dcc013da61c6316dd0bf1 Patch, Third Party Advisory
Changed Reference Type
https://github.com/peerigon/angular-expressions/security/advisories/GHSA-j6px-jwvv-vpwq No Types Assigned
https://github.com/peerigon/angular-expressions/security/advisories/GHSA-j6px-jwvv-vpwq Vendor Advisory
Changed Reference Type
https://www.npmjs.com/package/angular-expressions No Types Assigned
https://www.npmjs.com/package/angular-expressions Product