Apache CXF has the ability to integrate with JMX by registering an InstrumentationManager extension with the CXF bus. If the ‘createMBServerConnectorFactory‘ property of the default InstrumentationManagerImpl is not disabled, then it is vulnerable to a man-in-the-middle (MITM) style attack. An attacker on the same host can connect to the registry and rebind the entry to another server, thus acting as a proxy to the original. They are then able to gain access to all of the information that is sent and received over JMX.

Metrics

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:A/AC:M/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Apache
  • Cxf
Netapp
  • Oncommand Workflow Automation
  • Snapmanager
Oracle
  • Communications Diameter Signaling Router
  • Communications Diameter Signaling Router Idih\
  • Communications Element Manager
  • Communications Session Report Manager
  • Communications Session Route Manager
  • Enterprise Manager Base Platform
  • Peoplesoft Enterprise Peopletools
Redhat
  • Jboss Enterprise Application Platform
  • Jboss Enterprise Application Platform Cd
  • Jboss Enterprise Bpms Platform
  • Jboss Enterprise Brms Platform
  • Jboss Single Sign On

Configuration 1 [-]

OR cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:*
cpe:2.3:a:apache:cxf:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR cpe:2.3:a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*

Configuration 3 [-]

OR cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:snapmanager:-:*:*:*:*:sap:*:*

Configuration 4 [-]

OR cpe:2.3:a:oracle:communications_diameter_signaling_router_idih\::*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_element_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_report_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:communications_session_route_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:oracle:enterprise_manager_base_platform:13.2.1.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.56:*:*:*:*:*:*:*
Package CPE Advisory Released Date
EAP 7.3.3
cxf-core cpe:/a:redhat:jboss_enterprise_application_platform:7.3 RHSA-2020:4247 2020-10-13T00:00:00Z
EAP-CD 20 Tech Preview
cxf-core cpe:/a:redhat:jboss_enterprise_application_platform_cd:20 RHSA-2020:3585 2020-08-31T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 6
eap7-activemq-artemis-0:2.9.0-5.redhat_00011.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-activemq-artemis-native-1:1.0.2-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-apache-commons-codec-0:1.14.0-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-apache-commons-lang-0:3.10.0-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-apache-cxf-0:3.3.7-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-artemis-native-1:1.0.2-3.redhat_1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-bouncycastle-0:1.65.0-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-glassfish-jsf-0:2.3.9-11.SP12_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-hal-console-0:3.2.10-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-hibernate-0:5.3.18-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-httpcomponents-client-0:4.5.12-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-httpcomponents-core-0:4.4.13-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jberet-0:1.3.7-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jboss-invocation-0:1.5.3-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jboss-logmanager-0:2.1.17-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jboss-server-migration-0:1.7.2-2.Final_redhat_00002.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jboss-xnio-base-0:3.7.9-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-jgroups-0:4.1.10-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-narayana-0:5.9.9-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-picketbox-0:5.0.3-8.Final_redhat_00007.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-25.SP12_redhat_00013.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-snakeyaml-0:1.26.0-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-undertow-0:2.0.31-1.SP1_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-velocity-0:2.2.0-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-wildfly-0:7.3.3-4.GA_redhat_00004.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-wildfly-elytron-0:1.10.8-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-wildfly-transaction-client-0:1.1.13-1.Final_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-ws-commons-XmlSchema-0:2.2.5-1.redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
eap7-xerces-j2-0:2.12.0-2.SP03_redhat_00001.1.el6eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el6 RHSA-2020:4244 2020-10-13T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 7
eap7-activemq-artemis-0:2.9.0-5.redhat_00011.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-activemq-artemis-native-1:1.0.2-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-apache-commons-codec-0:1.14.0-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-apache-commons-lang-0:3.10.0-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-apache-cxf-0:3.3.7-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-artemis-native-1:1.0.2-3.redhat_1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-bouncycastle-0:1.65.0-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-glassfish-jsf-0:2.3.9-11.SP12_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-hal-console-0:3.2.10-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-hibernate-0:5.3.18-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-httpcomponents-client-0:4.5.12-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-httpcomponents-core-0:4.4.13-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jberet-0:1.3.7-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jboss-invocation-0:1.5.3-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jboss-logmanager-0:2.1.17-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jboss-server-migration-0:1.7.2-2.Final_redhat_00002.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jboss-xnio-base-0:3.7.9-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-jgroups-0:4.1.10-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-narayana-0:5.9.9-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-picketbox-0:5.0.3-8.Final_redhat_00007.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-25.SP12_redhat_00013.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-snakeyaml-0:1.26.0-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-undertow-0:2.0.31-1.SP1_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-velocity-0:2.2.0-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-wildfly-0:7.3.3-4.GA_redhat_00004.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-wildfly-elytron-0:1.10.8-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-wildfly-transaction-client-0:1.1.13-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-ws-commons-XmlSchema-0:2.2.5-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
eap7-xerces-j2-0:2.12.0-2.SP03_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el7 RHSA-2020:4246 2020-10-13T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 8
eap7-activemq-artemis-0:2.9.0-5.redhat_00011.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-activemq-artemis-native-1:1.0.2-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-apache-commons-codec-0:1.14.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-apache-commons-lang-0:3.10.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-apache-cxf-0:3.3.7-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-artemis-native-1:1.0.2-3.redhat_1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-bouncycastle-0:1.65.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-glassfish-jsf-0:2.3.9-11.SP12_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-hal-console-0:3.2.10-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-hibernate-0:5.3.18-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-httpcomponents-client-0:4.5.12-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-httpcomponents-core-0:4.4.13-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jberet-0:1.3.7-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jboss-invocation-0:1.5.3-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jboss-logmanager-0:2.1.17-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jboss-server-migration-0:1.7.2-2.Final_redhat_00002.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jboss-xnio-base-0:3.7.9-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-jgroups-0:4.1.10-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-narayana-0:5.9.9-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-picketbox-0:5.0.3-8.Final_redhat_00007.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-picketlink-bindings-0:2.5.5-25.SP12_redhat_00013.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-snakeyaml-0:1.26.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-undertow-0:2.0.31-1.SP1_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-velocity-0:2.2.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-wildfly-0:7.3.3-4.GA_redhat_00004.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-wildfly-elytron-0:1.10.8-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-wildfly-transaction-client-0:1.1.13-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-ws-commons-XmlSchema-0:2.2.5-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
eap7-xerces-j2-0:2.12.0-2.SP03_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.3::el8 RHSA-2020:4245 2020-10-13T00:00:00Z
Red Hat Single Sign-On 7.4.3
cxf-core cpe:/a:redhat:jboss_single_sign_on:7.4 RHSA-2020:4931 2020-11-04T00:00:00Z
RHDM 7.9.0
cxf-core cpe:/a:redhat:jboss_enterprise_brms_platform:7.9 RHSA-2020:4960 2020-11-05T00:00:00Z
RHPAM 7.9.0
cxf-core cpe:/a:redhat:jboss_enterprise_bpms_platform:7.9 RHSA-2020:4961 2020-11-05T00:00:00Z
References
Link Providers
http://cxf.apache.org/security-advisories.data/CVE-2020-1954.txt.asc?version=1&modificationDate=1585730169000&api=v2 cve-icon cve-icon
https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E cve-icon cve-icon
https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E cve-icon cve-icon
https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2020-1954 cve-icon
https://security.netapp.com/advisory/ntap-20220210-0001/ cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2020-1954 cve-icon
https://www.oracle.com/security-alerts/cpuoct2020.html cve-icon cve-icon
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apache

Published: 2020-04-01T20:07:29

Updated: 2024-08-04T06:54:00.267Z

Reserved: 2019-12-02T00:00:00

Link: CVE-2020-1954

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-04-01T21:15:14.597

Modified: 2023-11-07T03:19:38.010

Link: CVE-2020-1954

cve-icon Redhat

Severity : Low

Publid Date: 2020-04-01T00:00:00Z

Links: CVE-2020-1954 - Bugzilla