Vulnerability Change Records for CVE-2021-32638

Change History

Initial Analysis 6/04/2021 6:34:55 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:github:codeql_action:*:*:*:*:*:*:*:* versions up to (excluding) 20210304
Added CVSS V2

								
							
							
						
NIST (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Added CVSS V3.1

								
							
							
						
NIST AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Changed Reference Type
https://github.com/github/codeql-action/commit/58defc0652e935f6f2ffc70a82828b98d75476fb No Types Assigned
https://github.com/github/codeql-action/commit/58defc0652e935f6f2ffc70a82828b98d75476fb Patch, Third Party Advisory
Changed Reference Type
https://github.com/github/codeql-action/commit/88714e3a60e72ec53caa0e6a203652ee1f3fb1db No Types Assigned
https://github.com/github/codeql-action/commit/88714e3a60e72ec53caa0e6a203652ee1f3fb1db Patch, Third Party Advisory
Changed Reference Type
https://github.com/github/codeql-action/releases/tag/codeql-bundle-20210304 No Types Assigned
https://github.com/github/codeql-action/releases/tag/codeql-bundle-20210304 Third Party Advisory
Changed Reference Type
https://github.com/github/codeql-action/security/advisories/GHSA-g36v-2xff-pv5m No Types Assigned
https://github.com/github/codeql-action/security/advisories/GHSA-g36v-2xff-pv5m Exploit, Mitigation, Patch, Third Party Advisory
Changed Reference Type
https://www.netmeister.org/blog/passing-passwords.html No Types Assigned
https://www.netmeister.org/blog/passing-passwords.html Third Party Advisory