WID-SEC-W-2024-3184

Risk Scores

Affected Products

Exploit Intelligence

• POC for CVE-2019-7616 / ESA-2019-09 (github-poc-repo)
• ossf-cve-benchmark/CVE-2019-10744 (github-poc-repo)
• CVE-2020-27223 Vulnerability App & PoC (github-poc-repo)
• ttestoo/Jetty-CVE-2020-27223 (github-poc-repo)
• AURORA demo target — deliberately vulnerable lockfiles (CVE-2019-10744, CVE-2018-18074, CVE-2020-26160) (github-poc-repo)
• AURORA demo target — deliberately vulnerable lockfiles (CVE-2019-10744, CVE-2018-18074, CVE-2020-26160) (github-poc)
• ttestoo/Jetty-CVE-2020-27223 (github-poc)
• CVE-2020-27223 Vulnerability App & PoC (github-poc)
• POC for CVE-2019-7616 / ESA-2019-09 (github-poc)
• https://support.f5.com/csp/article/K47105354?utm_source=f5support&utm_medium=RSS (circl)

…and 10 more exploits

Timeline

• Jul 30, 2019 CVE Published
• Oct 15, 2024 CVE Updated
• Apr 1, 2026 Distribution Patch
• Apr 1, 2026 Distribution Patch
• Apr 1, 2026 Distribution Patch

References

• https://wid.cert-bund.de/.well-known/csaf/white/2019/wid-sec-w-2024-3184.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-3184 advisory
• https://discuss.elastic.co/t/elastic-stack-6-8-2-and-7-2-1-security-update/192963 url
• https://access.redhat.com/errata/RHSA-2019:3024 url
• https://support.f5.com/csp/article/K47105354?utm_source=f5support&utm_medium=RSS url
• https://access.redhat.com/errata/RHSA-2020:2362 url
• https://access.redhat.com/errata/RHSA-2020:2819 url
• https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-4_release_notes.htm url