Vulnerability Change Records for CVE-2021-23840

Change History

CVE Modified by OpenSSL Software Foundation 7/20/2021 7:15:30 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com//security-alerts/cpujul2021.html [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 6/29/2021 11:15:18 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 2/19/2021 8:15:14 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20210219-0009/ [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 7/14/2021 6:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846 [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 6/02/2021 3:15:08 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.tenable.com/security/tns-2021-10 [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 3/31/2021 10:15:18 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/202103-03 [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 5/11/2021 6:15:08 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.tenable.com/security/tns-2021-09 [No Types Assigned]

Modified Analysis 3/05/2021 10:39:00 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from (including) 1.0.2 up to (including) 1.0.2x
OR
     *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from (including) 1.0.2 up to (excluding) 1.0.2y
     *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from (including) 1.1.1 up to (excluding) 1.1.1j
Changed Reference Type
https://www.tenable.com/security/tns-2021-03 No Types Assigned
https://www.tenable.com/security/tns-2021-03 Third Party Advisory

Modified Analysis 9/13/2021 3:45:23 PM

Action Type Old Value New Value
Changed Reference Type
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846 No Types Assigned
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846 Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b@%3Cissues.bookkeeper.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E No Types Assigned
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E Mailing List, Third Party Advisory
Changed Reference Type
https://www.oracle.com//security-alerts/cpujul2021.html No Types Assigned
https://www.oracle.com//security-alerts/cpujul2021.html Third Party Advisory

CVE Modified by OpenSSL Software Foundation 6/14/2021 2:15:36 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuApr2021.html [No Types Assigned]

Initial Analysis 2/25/2021 3:59:18 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:* versions from (including) 1.0.2 up to (including) 1.0.2x
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added CWE

								
							
							
						
NIST CWE-190
Changed Reference Type
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1 No Types Assigned
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1 Patch, Vendor Advisory
Changed Reference Type
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2 No Types Assigned
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2 Broken Link
Changed Reference Type
https://security.netapp.com/advisory/ntap-20210219-0009/ No Types Assigned
https://security.netapp.com/advisory/ntap-20210219-0009/ Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2021/dsa-4855 No Types Assigned
https://www.debian.org/security/2021/dsa-4855 Third Party Advisory
Changed Reference Type
https://www.openssl.org/news/secadv/20210216.txt No Types Assigned
https://www.openssl.org/news/secadv/20210216.txt Vendor Advisory

CVE Modified by OpenSSL Software Foundation 6/28/2021 11:15:23 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4@%3Cissues.bookkeeper.apache.org%3E [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 3/02/2021 5:15:14 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.tenable.com/security/tns-2021-03 [No Types Assigned]

CVE Modified by OpenSSL Software Foundation 2/18/2021 10:15:15 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2021/dsa-4855 [No Types Assigned]