CVE-2019-20921

Risk Scores

Affected Products

Exploit Intelligence

• CIRCL seen: CVE-2019-20921 (circl-sighting)
• https://www.npmjs.com/advisories/1522 (circl)
• https://snyk.io/vuln/SNYK-JS-BOOTSTRAPSELECT-570457 (circl)
• https://github.com/advisories/GHSA-9r7h-6639-v5mw (circl)
• https://github.com/snapappointments/bootstrap-select/issues/2199 (circl)
• https://issues.jtl-software.de/issues/SHOP-7964 (circl)

Timeline

• Sep 30, 2020 CVE Published
• Sep 30, 2020 PoC Published
• Apr 14, 2021 EPSS Score
• Jun 23, 2021 EPSS Score
• Aug 24, 2021 EPSS Score
• Oct 26, 2021 EPSS Score
• Dec 27, 2021 EPSS Score
• Feb 28, 2022 EPSS Score
• May 1, 2022 EPSS Score
• Jul 3, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Nov 6, 2022 EPSS Score

References

• https://wid.cert-bund.de/.well-known/csaf/white/2021/wid-sec-w-2022-0808.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0808 advisory
• https://access.redhat.com/errata/RHSA-2021:1169 advisory
• https://access.redhat.com/errata/RHSA-2021:1184 advisory
• https://access.redhat.com/errata/RHSA-2021:1186 advisory
• https://lists.suse.com/pipermail/sle-security-updates/2022-July/011638.html advisory
• https://lists.suse.com/pipermail/sle-security-updates/2022-July/011631.html advisory
• https://lists.suse.com/pipermail/sle-security-updates/2022-July/011682.html advisory
• https://lists.suse.com/pipermail/sle-security-updates/2022-August/011812.html advisory
• https://access.redhat.com/errata/RHSA-2022:6813 advisory
• https://www.tenable.com/security/tns-2022-20 advisory
• https://www.ibm.com/support/pages/node/7248914 advisory