Search

Find a vulnerability

Search criteria

    672 vulnerabilities by Sonicwall

    CVE-2026-0206 (GCVE-0-2026-0206)

    Vulnerability from nvd – Published: 2026-04-29 16:21 – Updated: 2026-04-29 17:00
    VLAI
    Summary
    A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based buffer overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 4.9,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0206",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T17:00:27.554889Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-29T17:00:31.592Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:21:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall."
                }
              ],
              "value": "A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based buffer overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:21:40.001Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0206",
        "datePublished": "2026-04-29T16:21:40.001Z",
        "dateReserved": "2025-10-30T10:54:33.982Z",
        "dateUpdated": "2026-04-29T17:00:31.592Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-0205 (GCVE-0-2026-0205)

    Vulnerability from nvd – Published: 2026-04-29 16:18 – Updated: 2026-04-29 16:59
    VLAI
    Summary
    A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-35 - Path traversal: '.../...//'
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:18
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.8,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0205",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T16:59:18.475980Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-29T16:59:41.635Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:18:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services."
                }
              ],
              "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-35",
                  "description": "CWE-35 Path traversal: \u0027.../...//\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:18:45.856Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0205",
        "datePublished": "2026-04-29T16:18:45.856Z",
        "dateReserved": "2025-10-30T10:54:31.125Z",
        "dateUpdated": "2026-04-29T16:59:41.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-0204 (GCVE-0-2026-0204)

    Vulnerability from nvd – Published: 2026-04-29 16:15 – Updated: 2026-04-30 03:55
    VLAI
    Summary
    A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1390 - Weak Authentication
    • CWE-306 - Missing authentication for critical function
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0204",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-30T03:55:59.264Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions."
                }
              ],
              "value": "A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1390",
                  "description": "CWE-1390 Weak Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing authentication for critical function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:15:32.039Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0204",
        "datePublished": "2026-04-29T16:15:32.039Z",
        "dateReserved": "2025-10-30T10:54:03.249Z",
        "dateUpdated": "2026-04-30T03:55:59.264Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4116 (GCVE-0-2026-4116)

    Vulnerability from nvd – Published: 2026-04-09 14:27 – Updated: 2026-04-13 18:26
    VLAI
    Summary
    Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-176 - Improper handling of unicode encoding
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4116",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-13T18:26:14.491064Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-13T18:26:18.229Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eImproper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication.\u003c/p\u003e"
                }
              ],
              "value": "Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-176",
                  "description": "CWE-176 Improper handling of unicode encoding",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:27:29.341Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4116",
        "datePublished": "2026-04-09T14:27:29.341Z",
        "dateReserved": "2026-03-13T12:13:43.715Z",
        "dateUpdated": "2026-04-13T18:26:18.229Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4114 (GCVE-0-2026-4114)

    Vulnerability from nvd – Published: 2026-04-09 14:25 – Updated: 2026-05-10 13:19
    VLAI
    Summary
    Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-176 - Improper handling of unicode encoding
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.6,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4114",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-10T03:56:06.306670Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-10T13:19:33.572Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eImproper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.\u003c/p\u003e"
                }
              ],
              "value": "Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-176",
                  "description": "CWE-176 Improper handling of unicode encoding",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:25:41.059Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4114",
        "datePublished": "2026-04-09T14:25:41.059Z",
        "dateReserved": "2026-03-13T11:57:22.758Z",
        "dateUpdated": "2026-05-10T13:19:33.572Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4113 (GCVE-0-2026-4113)

    Vulnerability from nvd – Published: 2026-04-09 14:23 – Updated: 2026-04-13 18:27
    VLAI
    Summary
    An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-204 - Observable response discrepancy
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4113",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-13T18:27:00.386461Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-13T18:27:04.538Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials.\u003c/p\u003e"
                }
              ],
              "value": "An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-204",
                  "description": "CWE-204 Observable response discrepancy",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:23:53.270Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4113",
        "datePublished": "2026-04-09T14:23:53.270Z",
        "dateReserved": "2026-03-13T11:57:20.974Z",
        "dateUpdated": "2026-04-13T18:27:04.538Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4112 (GCVE-0-2026-4112)

    Vulnerability from nvd – Published: 2026-04-09 14:22 – Updated: 2026-05-10 13:18
    VLAI
    Summary
    Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper neutralization of special elements used in an SQL command ('SQL injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4112",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-10T03:56:04.484507Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-10T13:18:49.315Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper neutralization of special elements used in an SQL command (\u201cSQL Injection\u201d) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator."
                }
              ],
              "value": "Improper neutralization of special elements used in an SQL command (\u201cSQL Injection\u201d) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper neutralization of special elements used in an SQL command (\u0027SQL injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:22:21.018Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4112",
        "datePublished": "2026-04-09T14:22:21.018Z",
        "dateReserved": "2026-03-13T11:57:18.440Z",
        "dateUpdated": "2026-05-10T13:18:49.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3470 (GCVE-0-2026-3470)

    Vulnerability from nvd – Published: 2026-03-31 20:19 – Updated: 2026-03-31 20:34
    VLAI
    Summary
    A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper input validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 3.8,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3470",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:34:11.598748Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:34:15.574Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database."
                }
              ],
              "value": "A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:19:38.338Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3470",
        "datePublished": "2026-03-31T20:19:38.338Z",
        "dateReserved": "2026-03-03T10:00:16.245Z",
        "dateUpdated": "2026-03-31T20:34:15.574Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3469 (GCVE-0-2026-3469)

    Vulnerability from nvd – Published: 2026-03-31 20:18 – Updated: 2026-03-31 20:34
    VLAI
    Summary
    A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper input validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 2.7,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3469",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:34:36.717764Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:34:53.148Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive."
                }
              ],
              "value": "A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:18:32.521Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3469",
        "datePublished": "2026-03-31T20:18:32.521Z",
        "dateReserved": "2026-03-03T09:59:59.495Z",
        "dateUpdated": "2026-03-31T20:34:53.148Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3468 (GCVE-0-2026-3468)

    Vulnerability from nvd – Published: 2026-03-31 20:17 – Updated: 2026-03-31 20:35
    VLAI
    Summary
    A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 4.8,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "CHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3468",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:35:08.592056Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:35:38.252Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code."
                }
              ],
              "value": "A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:17:11.236Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3468",
        "datePublished": "2026-03-31T20:17:11.236Z",
        "dateReserved": "2026-03-03T09:59:57.366Z",
        "dateUpdated": "2026-03-31T20:35:38.252Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-0206 (GCVE-0-2026-0206)

    Vulnerability from cvelistv5 – Published: 2026-04-29 16:21 – Updated: 2026-04-29 17:00
    VLAI
    Summary
    A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-121 - Stack-based buffer overflow
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:21
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 4.9,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0206",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T17:00:27.554889Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-29T17:00:31.592Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:21:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall."
                }
              ],
              "value": "A post-authentication Stack-based Buffer Overflow vulnerabilities in SonicOS allows a remote attacker to crash a firewall."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-121",
                  "description": "CWE-121 Stack-based buffer overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:21:40.001Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0206",
        "datePublished": "2026-04-29T16:21:40.001Z",
        "dateReserved": "2025-10-30T10:54:33.982Z",
        "dateUpdated": "2026-04-29T17:00:31.592Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-0205 (GCVE-0-2026-0205)

    Vulnerability from cvelistv5 – Published: 2026-04-29 16:18 – Updated: 2026-04-29 16:59
    VLAI
    Summary
    A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-35 - Path traversal: '.../...//'
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:18
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.8,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0205",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T16:59:18.475980Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-29T16:59:41.635Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:18:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services."
                }
              ],
              "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-35",
                  "description": "CWE-35 Path traversal: \u0027.../...//\u0027",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:18:45.856Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0205",
        "datePublished": "2026-04-29T16:18:45.856Z",
        "dateReserved": "2025-10-30T10:54:31.125Z",
        "dateUpdated": "2026-04-29T16:59:41.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-0204 (GCVE-0-2026-0204)

    Vulnerability from cvelistv5 – Published: 2026-04-29 16:15 – Updated: 2026-04-30 03:55
    VLAI
    Summary
    A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1390 - Weak Authentication
    • CWE-306 - Missing authentication for critical function
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SonicOS Affected: 6.5.5.1-6n and older versions
    Affected: 7.0.1-5169 and older versions
    Affected: 7.3.1-7013 and older versions
    Affected: 8.1.0-8017 and older versions
    Create a notification for this product.
    Date Public
    2026-04-29 16:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "ADJACENT_NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-0204",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-29T00:00:00+00:00",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-30T03:55:59.264Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Gen6",
                "Gen7",
                "Gen8"
              ],
              "product": "SonicOS",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "6.5.5.1-6n and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.0.1-5169 and older versions"
                },
                {
                  "status": "affected",
                  "version": "7.3.1-7013 and older versions"
                },
                {
                  "status": "affected",
                  "version": "8.1.0-8017 and older versions"
                }
              ]
            }
          ],
          "datePublic": "2026-04-29T16:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions."
                }
              ],
              "value": "A vulnerability in the access control mechanism of SonicOS may allow certain management interface functions to be accessible under specific conditions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1390",
                  "description": "CWE-1390 Weak Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing authentication for critical function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-29T16:15:32.039Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0004",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-0204",
        "datePublished": "2026-04-29T16:15:32.039Z",
        "dateReserved": "2025-10-30T10:54:03.249Z",
        "dateUpdated": "2026-04-30T03:55:59.264Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4116 (GCVE-0-2026-4116)

    Vulnerability from cvelistv5 – Published: 2026-04-09 14:27 – Updated: 2026-04-13 18:26
    VLAI
    Summary
    Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-176 - Improper handling of unicode encoding
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4116",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-13T18:26:14.491064Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-13T18:26:18.229Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eImproper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication.\u003c/p\u003e"
                }
              ],
              "value": "Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-176",
                  "description": "CWE-176 Improper handling of unicode encoding",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:27:29.341Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4116",
        "datePublished": "2026-04-09T14:27:29.341Z",
        "dateReserved": "2026-03-13T12:13:43.715Z",
        "dateUpdated": "2026-04-13T18:26:18.229Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4114 (GCVE-0-2026-4114)

    Vulnerability from cvelistv5 – Published: 2026-04-09 14:25 – Updated: 2026-05-10 13:19
    VLAI
    Summary
    Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-176 - Improper handling of unicode encoding
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "HIGH",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 6.6,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4114",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-10T03:56:06.306670Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-10T13:19:33.572Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eImproper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.\u003c/p\u003e"
                }
              ],
              "value": "Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-176",
                  "description": "CWE-176 Improper handling of unicode encoding",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:25:41.059Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4114",
        "datePublished": "2026-04-09T14:25:41.059Z",
        "dateReserved": "2026-03-13T11:57:22.758Z",
        "dateUpdated": "2026-05-10T13:19:33.572Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4113 (GCVE-0-2026-4113)

    Vulnerability from cvelistv5 – Published: 2026-04-09 14:23 – Updated: 2026-04-13 18:27
    VLAI
    Summary
    An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-204 - Observable response discrepancy
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4113",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-13T18:27:00.386461Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-13T18:27:04.538Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials.\u003c/p\u003e"
                }
              ],
              "value": "An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-204",
                  "description": "CWE-204 Observable response discrepancy",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:23:53.270Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4113",
        "datePublished": "2026-04-09T14:23:53.270Z",
        "dateReserved": "2026-03-13T11:57:20.974Z",
        "dateUpdated": "2026-04-13T18:27:04.538Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4112 (GCVE-0-2026-4112)

    Vulnerability from cvelistv5 – Published: 2026-04-09 14:22 – Updated: 2026-05-10 13:18
    VLAI
    Summary
    Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-89 - Improper neutralization of special elements used in an SQL command ('SQL injection')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall SMA1000 Affected: 12.4.3-03245 (platform-hotfix) and earlier versions.
    Affected: 12.5.0-02283 (platform-hotfix) and earlier versions.
    Create a notification for this product.
    Date Public
    2026-04-09 05:11
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.2,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4112",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-10T03:56:04.484507Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-10T13:18:49.315Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux"
              ],
              "product": "SMA1000",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.4.3-03245 (platform-hotfix) and earlier versions."
                },
                {
                  "status": "affected",
                  "version": "12.5.0-02283 (platform-hotfix) and earlier versions."
                }
              ]
            }
          ],
          "datePublic": "2026-04-09T05:11:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Improper neutralization of special elements used in an SQL command (\u201cSQL Injection\u201d) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator."
                }
              ],
              "value": "Improper neutralization of special elements used in an SQL command (\u201cSQL Injection\u201d) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 Improper neutralization of special elements used in an SQL command (\u0027SQL injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-09T14:22:21.018Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0003",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-4112",
        "datePublished": "2026-04-09T14:22:21.018Z",
        "dateReserved": "2026-03-13T11:57:18.440Z",
        "dateUpdated": "2026-05-10T13:18:49.315Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3470 (GCVE-0-2026-3470)

    Vulnerability from cvelistv5 – Published: 2026-03-31 20:19 – Updated: 2026-03-31 20:34
    VLAI
    Summary
    A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper input validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 3.8,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3470",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:34:11.598748Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:34:15.574Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database."
                }
              ],
              "value": "A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:19:38.338Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3470",
        "datePublished": "2026-03-31T20:19:38.338Z",
        "dateReserved": "2026-03-03T10:00:16.245Z",
        "dateUpdated": "2026-03-31T20:34:15.574Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3469 (GCVE-0-2026-3469)

    Vulnerability from cvelistv5 – Published: 2026-03-31 20:18 – Updated: 2026-03-31 20:34
    VLAI
    Summary
    A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-20 - Improper input validation
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "LOW",
                  "baseScore": 2.7,
                  "baseSeverity": "LOW",
                  "confidentialityImpact": "NONE",
                  "integrityImpact": "NONE",
                  "privilegesRequired": "HIGH",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3469",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:34:36.717764Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:34:53.148Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive."
                }
              ],
              "value": "A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:18:32.521Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3469",
        "datePublished": "2026-03-31T20:18:32.521Z",
        "dateReserved": "2026-03-03T09:59:59.495Z",
        "dateUpdated": "2026-03-31T20:34:53.148Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-3468 (GCVE-0-2026-3468)

    Vulnerability from cvelistv5 – Published: 2026-03-31 20:17 – Updated: 2026-03-31 20:35
    VLAI
    Summary
    A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
    Assigner
    References
    Impacted products
    Vendor Product Version
    SonicWall Email Security Affected: 10.0.34.8215 and earlier versions
    Affected: 10.0.34.8223 and earlier versions
    Create a notification for this product.
    Date Public
    2026-03-31 06:00
    Credits
    Brian Mariani of DigitalCanion SA - www.digitalcanion.com
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "NONE",
                  "baseScore": 4.8,
                  "baseSeverity": "MEDIUM",
                  "confidentialityImpact": "LOW",
                  "integrityImpact": "LOW",
                  "privilegesRequired": "HIGH",
                  "scope": "CHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-3468",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T20:35:08.592056Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T20:35:38.252Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "platforms": [
                "Linux",
                "Windows"
              ],
              "product": "Email Security",
              "vendor": "SonicWall",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.34.8215 and earlier versions"
                },
                {
                  "status": "affected",
                  "version": "10.0.34.8223 and earlier versions"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Brian Mariani of DigitalCanion SA - www.digitalcanion.com"
            }
          ],
          "datePublic": "2026-03-31T06:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code."
                }
              ],
              "value": "A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T20:17:11.236Z",
            "orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
            "shortName": "sonicwall"
          },
          "references": [
            {
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
            }
          ],
          "source": {
            "advisory": "SNWLID-2026-0002",
            "discovery": "EXTERNAL"
          },
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315",
        "assignerShortName": "sonicwall",
        "cveId": "CVE-2026-3468",
        "datePublished": "2026-03-31T20:17:11.236Z",
        "dateReserved": "2026-03-03T09:59:57.366Z",
        "dateUpdated": "2026-03-31T20:35:38.252Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    VAR-200202-0006

    Vulnerability from variot - Updated: 2026-04-10 23:59

    Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor. This and other SNMP-related candidates will be updated when more accurate information is available. Multiple vendor SNMPv1 Trap handling implementations contain vulnerabilities that may allow unauthorized privileged access, denial-of-service conditions, or unstable behavior . If your site uses SNMP in any capacity, the CERT/CC encourages you to read the information provided below. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ SNMP Protocol is status and performance information MIB (Management Information Base) Protocol used to exchange Management side SNMP Managers such as managed routers, switches and printers SNMP Communicates with management network devices called agents. Because of its wide acceptance in the market, SNMP Has become the standard for SNMP protocol version1 Is SNMPv1 Is the most widely implemented. this SNMPv1 Sent from the agent to the manager in the implementation of SNMP Trap message and sent from the manager to the agent SNMP Decrypt the request message / There are problems in interpreting. If this problem is used by an attacker, the following actions may be executed. Many other programs that you implement may also be affected because of a protocol problem. On the target host SNMP If the service is running, an attacker could execute arbitrary code ・ If a buffer overflow attack is feasible and a very long trap message SNMP If the host on which the service is running receives, the application may go into a denial of service state The effects described above vary from application to application. For details, refer to each product.Please refer to the “Overview” for the impact of this vulnerability. Windows 95 is prone to a denial-of-service vulnerability. MPE/iX is an Internet-ready operating system for the HP e3000 class servers. It is possible to crash the service by transmitting to it a maliciously constructed SNMPv1 request PDU. It was previously known as UCD-SNMP. They typically notify the manager that some event has occured or otherwise provide information about the status of the agent. Multiple vulnerabilities have been discovered in a number of SNMP implementations. The vulnerabilities are known to exist in the process of decoding and interpreting SNMP trap messages. Among the possible consequences are denial of service and allowing attackers to compromise target systems. These depend on the individual vulnerabilities in each affected product. HP has confirmed that large traps will cause OpenView Network Node Manager to crash. This may be due to an exploitable buffer overflow condition

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "3com",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "adtran",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "american power conversion",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "aprisma",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "bea",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "bmc",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cnt",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "comtek services",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cscare",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cacheflow",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "carrier access",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "compaq computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "computer associates",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "concord",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "dart",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "dell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "digital",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "entrada",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "equinox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "fluke",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "general datacomm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hirschmann",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "hitachi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "iplanet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "itouch",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "infovista",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "inktomi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "innerdive",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ipswitch",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "karlnet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lantronix",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "larscom incorporated",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lotus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mg soft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "marconi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "mercury interactive",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "metrobility optical",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "micromuse",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "monfox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "multinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "net snmp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "network harmoni",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nbase xyplex",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netscout",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netsilicon",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "netscape",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "network appliance",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "openwave",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "optical access",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "oracle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "perle",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "powerware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "radware",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "redback",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "riverstone",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "snmp research",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sniffer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sonus",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "symantec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "the sco group sco unix",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "tivoli",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "toshiba",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "unisphere",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "vertical",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "vina",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "world wide packets",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "xerox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "e security",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "net com",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "ibm",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "ibm",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "snmp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "snmp",
            "version": "*"
          },
          {
            "_id": null,
            "model": "windows 98se",
            "scope": null,
            "trust": 0.9,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "microsoft",
            "version": "95"
          },
          {
            "_id": null,
            "model": "windows server",
            "scope": "eq",
            "trust": 0.9,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nudesign team",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "outback resource group",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "veritas",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bintec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "interniche",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ncipher corp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "netscreen",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nokia",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "2.6 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "2.6 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "7.0 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "7.0 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "8 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "8 (x86)"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "10.24"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "windows 2000",
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "95"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "98"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "98 scd"
          },
          {
            "_id": null,
            "model": "windows 9x",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "me"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (server)"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (terminal_srv)"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "4.0 (workstation)"
          },
          {
            "_id": null,
            "model": "windows xp",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "microsoft",
            "version": "sp3"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "windows xp gold",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "microsoft",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows nt",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "hp",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "net snmp",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "snmp",
            "scope": null,
            "trust": 0.6,
            "vendor": "snmp",
            "version": null
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "sunatm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "net snmp",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "ucd-snmp",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "net snmp",
            "version": "4.2.3"
          },
          {
            "_id": null,
            "model": "solaris 8 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris 8 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris 7.0 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "solaris 2.6 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.5"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.4"
          },
          {
            "_id": null,
            "model": "enterprise server ssp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "100003.3"
          },
          {
            "_id": null,
            "model": "research mid-level manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "research enterpol",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "research dr-web manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "snmp",
            "version": "15.3"
          },
          {
            "_id": null,
            "model": "brocade",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sgi",
            "version": "2.6.0"
          },
          {
            "_id": null,
            "model": "networks aos",
            "scope": null,
            "trust": 0.3,
            "vendor": "redback",
            "version": null
          },
          {
            "_id": null,
            "model": "realplayer intranet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "realnetworks",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "software tcpware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "process",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "software multinet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "process",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "oracle",
            "version": "1.6.5"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows xp professional",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows xp home",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "windows nt workstation sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt terminal server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp6a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows nt enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "98"
          },
          {
            "_id": null,
            "model": "windows terminal services sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows terminal services sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows terminal services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows datacenter server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "domino snmp agents solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1x86"
          },
          {
            "_id": null,
            "model": "domino snmp agents solaris sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "domino snmp agents hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lotus",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "lrs",
            "scope": null,
            "trust": 0.3,
            "vendor": "lantronix",
            "version": null
          },
          {
            "_id": null,
            "model": "junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "solutions router ip console",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "innerdive",
            "version": "3.3.0.406"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.2"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "4.3.1"
          },
          {
            "_id": null,
            "model": "secure os software for linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "procurve switch 8000m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4108gl-bundle",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4108gl",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 4000m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2525"
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2524"
          },
          {
            "_id": null,
            "model": "procurve switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2512"
          },
          {
            "_id": null,
            "model": "procurve switch 2424m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 2400m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "procurve switch 1600m",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ov/sam",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.10"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "openview network node manager nt 4.x/windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.22000"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.211.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.210.x"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.111.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.110.x"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openview network node manager nt 4.x/windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.02000"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.011.x"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.010.20"
          },
          {
            "_id": null,
            "model": "openview network node manager windows nt",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.0.23.51/4.0"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.01"
          },
          {
            "_id": null,
            "model": "openview network node manager solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "openview network node manager hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.11"
          },
          {
            "_id": null,
            "model": "openview extensible snmp agent",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.22.x"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.211.x"
          },
          {
            "_id": null,
            "model": "openview emanate snmp agent hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "14.210.20"
          },
          {
            "_id": null,
            "model": "openview distributed management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "openview distributed management",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.03"
          },
          {
            "_id": null,
            "model": "mc/serviceguard",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.20.00"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.32"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.00"
          },
          {
            "_id": null,
            "model": "ito/vpo/ovo unix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.04"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.24"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.20"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.10"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "ems a.03.20",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ems a.03.10",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "ems a.03.00",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "services nmserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "comtek",
            "version": "3.4"
          },
          {
            "_id": null,
            "model": "associates unicenter",
            "scope": null,
            "trust": 0.3,
            "vendor": "computer",
            "version": null
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "unixware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "7"
          },
          {
            "_id": null,
            "model": "openunix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "openserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "5.0.6"
          },
          {
            "_id": null,
            "model": "openserver",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "caldera",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "cacheos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cacheflow",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "cacheos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cacheflow",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "web nms msp edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "web nms",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "snmp utilities",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "snmp api",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "mediation server",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "management builder",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "fault management toolkit",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "configuration management toolkit",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "cli api",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "agent toolkit java/jmx edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "agent toolkit c edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "adventnet",
            "version": null
          },
          {
            "_id": null,
            "model": "webcache",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "webcache",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "1000"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "4900"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "4400"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "3300"
          },
          {
            "_id": null,
            "model": "switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "1100"
          },
          {
            "_id": null,
            "model": "ps hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "50"
          },
          {
            "_id": null,
            "model": "ps hub",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "3com",
            "version": "40"
          },
          {
            "_id": null,
            "model": "dual speed hub",
            "scope": null,
            "trust": 0.3,
            "vendor": "3com",
            "version": null
          },
          {
            "_id": null,
            "model": "brocade .0d",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "sgi",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "solutions router ip console",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "innerdive",
            "version": "3.3.0.407"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.21.00"
          },
          {
            "_id": null,
            "model": "jetdirect",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "hp",
            "version": "x.08.32"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:ibm:aix",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:hp-ux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:vvos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_2000",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows-9x",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_nt",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:microsoft:windows_xp",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:redhat:linux",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Discovered by the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2002-0012",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2002-0012",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2002-0012",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#107186",
                "trust": 0.8,
                "value": "69.26"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#854306",
                "trust": 0.8,
                "value": "42.64"
              },
              {
                "author": "NVD",
                "id": "CVE-2002-0012",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200202-007",
                "trust": 0.6,
                "value": "CRITICAL"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite.  NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one or more for each vendor.  This and other SNMP-related candidates will be updated when more accurate information is available. Multiple vendor SNMPv1 Trap handling implementations contain vulnerabilities that may allow unauthorized privileged access, denial-of-service conditions, or unstable behavior . If your site uses SNMP in any capacity, the CERT/CC encourages you to read the information provided below. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ SNMP Protocol is status and performance information MIB (Management Information Base) Protocol used to exchange Management side SNMP Managers such as managed routers, switches and printers SNMP Communicates with management network devices called agents. Because of its wide acceptance in the market, SNMP Has become the standard for SNMP protocol version1 Is SNMPv1 Is the most widely implemented. this SNMPv1 Sent from the agent to the manager in the implementation of SNMP Trap message and sent from the manager to the agent SNMP Decrypt the request message / There are problems in interpreting. If this problem is used by an attacker, the following actions may be executed. Many other programs that you implement may also be affected because of a protocol problem. On the target host SNMP If the service is running, an attacker could execute arbitrary code \u30fb If a buffer overflow attack is feasible and a very long trap message SNMP If the host on which the service is running receives, the application may go into a denial of service state The effects described above vary from application to application. For details, refer to each product.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Windows 95 is prone to a denial-of-service vulnerability. MPE/iX is an Internet-ready operating system for the HP e3000 class servers.  It is possible to crash the service by transmitting to it a maliciously constructed SNMPv1 request PDU.  It was previously known as UCD-SNMP.  They typically notify the manager that some event has occured or otherwise provide information about the status of the agent. \nMultiple vulnerabilities have been discovered in a number of SNMP implementations.  The vulnerabilities are known to exist in the process of decoding and interpreting SNMP trap messages. \nAmong the possible consequences are denial of service and allowing attackers to compromise target systems.  These depend on the individual vulnerabilities in each affected product. \nHP has confirmed that large traps will cause OpenView Network Node Manager to crash.  This may be due to an exploitable buffer overflow condition",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          },
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 4.68
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2002-0012",
            "trust": 3.9
          },
          {
            "db": "CERT/CC",
            "id": "VU#107186",
            "trust": 3.2
          },
          {
            "db": "BID",
            "id": "4088",
            "trust": 2.2
          },
          {
            "db": "BID",
            "id": "4732",
            "trust": 1.9
          },
          {
            "db": "BID",
            "id": "4089",
            "trust": 1.9
          },
          {
            "db": "BID",
            "id": "4132",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306",
            "trust": 1.4
          },
          {
            "db": "BID",
            "id": "5043",
            "trust": 1.3
          },
          {
            "db": "XF",
            "id": "8177",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "89608",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "89661",
            "trust": 0.3
          },
          {
            "db": "BID",
            "id": "4203",
            "trust": 0.3
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "id": "VAR-200202-0006",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.489583335
      },
      "last_update_date": "2026-04-10T23:59:45.929000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "HPSBUX00184",
            "trust": 0.8,
            "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00964944"
          },
          {
            "title": "MS02-006",
            "trust": 0.8,
            "url": "http://www.microsoft.com/technet/security/bulletin/ms02-006.mspx"
          },
          {
            "title": "RHSA-2001:163",
            "trust": 0.8,
            "url": "http://rhn.redhat.com/errata/RHSA-2001-163.html"
          },
          {
            "title": "#00215",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-22-00215-1"
          },
          {
            "title": "#00215",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-22-00215-3"
          },
          {
            "title": "IBM Information for VU#107186",
            "trust": 0.8,
            "url": "http://www.kb.cert.org/vuls/id/IAFY-55KRCV"
          },
          {
            "title": "MS02-006",
            "trust": 0.8,
            "url": "http://www.microsoft.com/japan/technet/security/Bulletin/ms02-006.mspx"
          },
          {
            "title": "RHSA-2001:163",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/RHSA/RHSA-2001-163J.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-264",
            "trust": 1.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.0,
            "url": "http://www.cert.org/advisories/ca-2002-03.html"
          },
          {
            "trust": 2.4,
            "url": "http://www.kb.cert.org/vuls/id/107186"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/"
          },
          {
            "trust": 1.6,
            "url": "http://www.cert.org/tech_tips/denial_of_service.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc3000.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1212.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1213.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1215.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc1270.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2570.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2571.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2572.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2573.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2574.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2575.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.ietf.org/rfc/rfc2576.txt"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/4088"
          },
          {
            "trust": 1.6,
            "url": "http://online.securityfocus.com/bid/4132"
          },
          {
            "trust": 1.6,
            "url": "http://online.securityfocus.com/bid/4732"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/4089"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c06/snmpv1/index.html"
          },
          {
            "trust": 1.4,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2002-0012"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/advisories/4211"
          },
          {
            "trust": 1.0,
            "url": "http://www.redhat.com/support/errata/rhsa-2001-163.html"
          },
          {
            "trust": 1.0,
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20020201-01-a"
          },
          {
            "trust": 1.0,
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-006"
          },
          {
            "trust": 1.0,
            "url": "http://www.iss.net/security_center/alerts/advise110.php"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a1048"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a161"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a298"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/bid/5043"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a144"
          },
          {
            "trust": 0.8,
            "url": "http://www.ciac.org/ciac/bulletins/m-042.shtml"
          },
          {
            "trust": 0.8,
            "url": "http://www.ipa.go.jp/security/ciadr/20020213snmp.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/wr/2002/wr020701.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/wr/2002/wr020901.txt"
          },
          {
            "trust": 0.8,
            "url": "http://www.jpcert.or.jp/at/2002/at020001.txt"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnca-2002-03"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2002-0012"
          },
          {
            "trust": 0.8,
            "url": "http://xforce.iss.net/xforce/xfdb/8177"
          },
          {
            "trust": 0.6,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2002-0013"
          },
          {
            "trust": 0.6,
            "url": "http://www.microsoft.com/technet/security/bulletin/ms02-006.asp"
          },
          {
            "trust": 0.6,
            "url": "http://www.kb.cert.org/vuls/id/854306"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/bid/4088"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/bid/4089"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f44605"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f42769"
          },
          {
            "trust": 0.3,
            "url": "http://online.securityfocus.com/news/474"
          },
          {
            "trust": 0.3,
            "url": "http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms02-006.asp"
          },
          {
            "trust": 0.3,
            "url": "http://otn.oracle.com/deploy/security/pdf/snmp_2002_alert.pdf"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306"
          },
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033"
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2002-01-16T00:00:00",
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "date": "2002-02-12T00:00:00",
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "date": "2002-06-18T00:00:00",
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "date": "2002-05-13T00:00:00",
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "date": "2002-02-27T00:00:00",
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "date": "2002-02-12T00:00:00",
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "date": "2002-02-13T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "date": "2002-02-13T05:00:00",
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2007-11-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#107186",
            "ident": null
          },
          {
            "date": "2007-11-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#854306",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89608",
            "ident": null
          },
          {
            "date": "2002-03-08T00:00:00",
            "db": "BID",
            "id": "89661",
            "ident": null
          },
          {
            "date": "2009-07-11T13:56:00",
            "db": "BID",
            "id": "5043",
            "ident": null
          },
          {
            "date": "2002-05-13T00:00:00",
            "db": "BID",
            "id": "4732",
            "ident": null
          },
          {
            "date": "2009-07-11T10:56:00",
            "db": "BID",
            "id": "4203",
            "ident": null
          },
          {
            "date": "2009-07-11T10:56:00",
            "db": "BID",
            "id": "4088",
            "ident": null
          },
          {
            "date": "2005-10-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200202-007",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2002-000033",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2002-0012",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          },
          {
            "db": "BID",
            "id": "5043"
          },
          {
            "db": "BID",
            "id": "4732"
          },
          {
            "db": "BID",
            "id": "4203"
          },
          {
            "db": "BID",
            "id": "4088"
          }
        ],
        "trust": 1.8
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in SNMPv1 trap handling",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#107186"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "Input Validation Error",
        "sources": [
          {
            "db": "BID",
            "id": "89608"
          },
          {
            "db": "BID",
            "id": "89661"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202112-1782

    Vulnerability from variot - Updated: 2026-04-10 23:35

    Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0, 2.12.3, and 2.3.1. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Apache Log4j. Authentication is not required to exploit this vulnerability.The specific flaw exists within the StrSubstitutor class. The issue results from the lack of proper validation of user-supplied data, which can result in a resource exhaustion condition. An attacker can leverage this vulnerability to create a denial-of-service condition on the process. Log4j is an open source project of Apache. By using Log4j, the destination of log information transmission can be controlled to be console, file, GUI component, even socket server, NT event recorder, etc. Apache Log4j2 has a denial of service vulnerability. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: Red Hat Data Grid 8.2.3 security update Advisory ID: RHSA-2022:0205-01 Product: Red Hat JBoss Data Grid Advisory URL: https://access.redhat.com/errata/RHSA-2022:0205 Issue date: 2022-01-20 CVE Names: CVE-2021-44832 CVE-2021-45046 CVE-2021-45105 =====================================================================

    1. Summary:

    An update for Red Hat Data Grid is now available.

    Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Description:

    Red Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. It increases application response times and allows for dramatically improving performance while providing availability, reliability, and elastic scale.

    Data Grid 8.2.3 replaces Data Grid 8.2.2 and includes bug fixes and enhancements. Find out more about Data Grid 8.2.3 in the Release Notes [3].

    Security Fix(es):

    • log4j-core: remote code execution via JDBC Appender (CVE-2021-44832)

    • log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228) (CVE-2021-45046)

    • log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern (CVE-2021-45105)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    1. Solution:

    To install this update, do the following:

    1. Download the Data Grid 8.2.3 server patch from the customer portal[²].
    2. Back up your existing Data Grid installation. You should back up databases, configuration files, and so on.
    3. Install the Data Grid 8.2.3 server patch. Refer to the 8.2.3 Release Notes[³] for patching instructions.
    4. Restart Data Grid to ensure the changes take effect.

    5. Bugs fixed (https://bugzilla.redhat.com/):

    2032580 - CVE-2021-45046 log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228) 2034067 - CVE-2021-45105 log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern 2035951 - CVE-2021-44832 log4j-core: remote code execution via JDBC Appender

    1. References:

    https://access.redhat.com/security/cve/CVE-2021-44832 https://access.redhat.com/security/cve/CVE-2021-45046 https://access.redhat.com/security/cve/CVE-2021-45105 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=data.grid&version=8.2 https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYemZbtzjgjWX9erEAQgkThAAhlH9r6fZ08ZbIvy7t5FNceA93qd12PsL bJEZ9axgCc1hrxm5hK2W6x55a2tKQ0ieoFlkF87qZ5FSsEmOWfvCa5Jsr04bGkhI QBiyZvX+de8ZAUcbiXwgsb3LwfY5DAOoLZVZj7tWsxXcl9CG/MGqI452b5jB4oWa 5TXa8YHSz9/vQHtJGmjyuZYJGfH63XvLUu6qHEgCHKhXEQg5p9YrfjbdZWk77mSk N+dqHpXJFo2G+UURxBy615ebIgxA1dUR6pdbCfm/fbUAxnxWPubjNLLGShCUNBP9 /WgSMiv5GT48yhpK0IdTpPmQUAQW3fkgEd58vytgDuQf/7NhsbNFlsj3hugnAmY9 B/Jtwri/dCaOy0EDlDTc22OX7uDXaoSd9t5kjFAiZMOhxRE0hXawGfCxdGq/rgV6 EblcKQ3zW/3lsTj5KdI+0M0kNA6y1i0KP+Iujs12WLzWDANcpyvpuNu5qIMoM16Y iy4QLJkWFcH99toKO6/bEFgINq3C84sDEQNUpgwga+ct5mxsZycn3vSl9QcuoWQD FX9lwXBaxGuvBb/K3pwXfJuRQOFn2tDpwqN0PnyG/4+QLHunSPuQ8vcVx+oG9a2K LpiYxMQawsJiOjEyNUdRt7DDBpU/mVO+pf7lCY/4F5S+xOJ6E6LkJ213aSGaYPBd QiLGYFSmmLk= =y5SE -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Description:

    Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency.

    The References section of this erratum contains a download link (you must log in to download the update). Description:

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

    This release of Red Hat JBoss Enterprise Application Platform 7.4.4 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.3 and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.4 Release Notes for information about the most significant bug fixes and enhancements included in this release. Solution:

    Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    1. JIRA issues fixed (https://issues.jboss.org/):

    JBEAP-22105 - (7.4.z) Upgrade from com.io7m.xom:xom 1.2.10 to xom:xom 1.3.7 JBEAP-22385 - (7.4.z) Upgrade ASM from 7.1 to 9.1 JBEAP-22731 - (7.4.z) Upgrade Artemis from 2.16.0.redhat-00032 to 2.16.0.redhat-00034 JBEAP-22738 - (7.4.z) Upgrade jbossws-cxf from 5.4.2.Final to 5.4.4.Final(Fix UsernameTokenElytronTestCase on SE 17) JBEAP-22819 - [GSS] (7.4.z) HAL-1762 - Aliases are removed from the credential store when passwords are updated from the admin console JBEAP-22839 - GSS Upgrade yasson from 1.0.9.redhat-00001 to 1.0.10.redhat-00001 JBEAP-22864 - (7.4.z) Upgrade HAL from 3.3.8.Final-redhat-00001 to 3.3.9.Final-redhat-00001 JBEAP-22900 - Tracker bug for the EAP 7.4.4 release for RHEL-8 JBEAP-22904 - (7.4.z) Upgrade Hibernate ORM from 5.3.24.Final-redhat-00001 to 5.3.25.Final-redhat-00002 JBEAP-22911 - (7.4.z) Upgrade OpenSSL from 2.1.3.Final-redhat-00001 to 2.2.0.Final-redhat-00001 JBEAP-22912 - (7.4.z) Upgrade OpenSSL Natives from 2.1.0.SP01-redhat-00001 to 2.2.0.Final-redhat-00001 JBEAP-22913 - (7.4.z) Upgrade WildFly Core from 15.0.6.Final-redhat-00003 to 15.0.7.Final-redhat-00001 JBEAP-22935 - (7.4.z) Upgrade jboss-vfs from 3.2.15.Final-redhat-00001 to 3.2.16.Final-redhat-00001 JBEAP-22945 - (7.4.z) Upgrade org.apache.logging.log4j from 2.14.0.redhat-00002 to 2.17.1.redhat-00001 JBEAP-22973 - (7.4.z) Upgrade Elytron from 1.15.9.Final-redhat-00001 to 1.15.11.Final-redhat-00002 JBEAP-23038 - (7.4.z) Upgrade galleon-plugins from 5.1.4.Final to 5.2.6.Final JBEAP-23040 - (7.4.z) Upgrade galleon-plugins in wildfly-core-eap from 5.1.4.Final to 5.2.6.Final JBEAP-23045 - (7.4.z) Upgrade Undertow from 2.2.13.SP2-redhat-00001 to 2.2.16.Final-redhat-0001 JBEAP-23101 - (7.4.z) Upgrade Infinispan from 11.0.12.Final to 11.0.15.Final JBEAP-23105 - (7.4.z) Upgrade Narayana from 5.11.3.Final-redhat-00001 to 5.11.4.Final-redhat-00001 JBEAP-23143 - (7.4.z) Upgrade from org.eclipse.jdt.core.compiler:ecj:4.6.1 to org.eclipse.jdt:ecj:3.26 JBEAP-23177 - (7.4.z) Upgrade XNIO from 3.8.5.SP1-redhat-00001 to 3.8.6.Final-redhat-00001 JBEAP-23323 - GSS WFLY-16112 - Batch JobOperatorService should look for only active job names to stop during suspend JBEAP-23373 - (7.4.z) Upgrade OpenSSL from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002 JBEAP-23374 - (7.4.z) Upgrade WildFly Core from 15.0.7.Final-redhat-00001 to 15.0.8.Final-redhat-00001 JBEAP-23375 - (7.4.z) Upgrade OpenSSL Natives from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002

    1. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    2. Description:

    Red Hat Single Sign-On 7.5 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied. The purpose of this text-only errata is to inform you about the security issues fixed in this release. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512


    Debian Security Advisory DSA-5024-1 security@debian.org https://www.debian.org/security/ Markus Koschany December 18, 2021 https://www.debian.org/security/faq


    Package : apache-log4j2 CVE ID : CVE-2021-45105 Debian Bug : 1001891

    It was found that Apache Log4j2, a Logging Framework for Java, did not protect from uncontrolled recursion from self-referential lookups.

    For the oldstable distribution (buster), this problem has been fixed in version 2.17.0-1~deb10u1.

    For the stable distribution (bullseye), this problem has been fixed in version 2.17.0-1~deb11u1.

    We recommend that you upgrade your apache-log4j2 packages.

    For the detailed security status of apache-log4j2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/apache-log4j2

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmG+Ro1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeQVuBAArOperYABsLeaPcs3DgNxHcDDUNGCcvo5fsBtkh+MDvHMspqOb8VqLShx BtzPJGE0UTdBrfAqWeuMCbV1LdBYfwRUlrUyZiQXBiEx5BI5vDB4vaDUtAomwC6o vnbJwDlvlpoSwbURcls/Z0Hs15gwHX2D/lSa+j+NSxaNCkEOqvjr8dbpnHMSIbwz f0hSWQm4jydadUHP/zXSwN+LeZrJs+uP1tIdajtZjr6VoPkV48EDxCctaVttn27q 9DrGM9RjKGyCCKB/WrWToRbv/Mke20AJ4SOWoDdy1u/m2wcgW3pv1cap7J3RRjYO K5V5qacdJDo9FWoRkb1ftXlanyVe5DyI+j/9un+uZLSlOkeTha+hP+Tj2P/sx/Z4 xbpmPRGJ+O/BuxoPXUJNSTkh7vLu0CJkCfzi3Gj24c22jkBV3POJ7iZsFvNbJHAi 3i6VBc7e6tcqdiIhZqj/+odu2rCqeYqMbvhLL/slnQQVU4YMn3F1FtPWEpfAmQzP YCg2vLei5rTt3dYjA5aBluJPEPXO5rA5nZa3xq5hbzAJMl/m1yU9K6v73mCk9gnK yFHoaD+Ls97tPCMiO/56kIQecLv5s7GuuwLQlC8rm9TgXzl/m6rqst7a93IcsnV9 P+f2RZsciOyXo1N4zhakNkZ4dkmRZCfm9xCfeqAKUQgqVPXhBtE= =Wkr6 -----END PGP SIGNATURE-----

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "retail order broker",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3"
          },
          {
            "_id": null,
            "model": "e-business suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "insurance insbridge rating and underwriting",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.2.0"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.5"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.8.0"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "retail order broker",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.1"
          },
          {
            "_id": null,
            "model": "banking enterprise default management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.12.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core network repository function",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.15.1"
          },
          {
            "_id": null,
            "model": "web application firewall",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "3.1.0"
          },
          {
            "_id": null,
            "model": "webcenter sites",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.12.3"
          },
          {
            "_id": null,
            "model": "communications interactive session recorder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "email security",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "10.0.12"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.8"
          },
          {
            "_id": null,
            "model": "communications diameter signaling router",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.5.1.0"
          },
          {
            "_id": null,
            "model": "hyperion infrastructure technology",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3.7"
          },
          {
            "_id": null,
            "model": "agile engineering data management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.2.1.0"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "health sciences empirica signal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.2.0.0"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.1"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12"
          },
          {
            "_id": null,
            "model": "retail order management system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.5"
          },
          {
            "_id": null,
            "model": "insurance insbridge rating and underwriting",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.6.1.0"
          },
          {
            "_id": null,
            "model": "communications service broker",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "banking treasury management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.5"
          },
          {
            "_id": null,
            "model": "sql developer",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.4.2"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.8"
          },
          {
            "_id": null,
            "model": "utilities framework",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.3.0.6.0"
          },
          {
            "_id": null,
            "model": "management cloud engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.5.0"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.8.13"
          },
          {
            "_id": null,
            "model": "retail data extractor for merchandising",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.2"
          },
          {
            "_id": null,
            "model": "retail data extractor for merchandising",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.2"
          },
          {
            "_id": null,
            "model": "communications cloud native core console",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.9.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.13.0"
          },
          {
            "_id": null,
            "model": "instantis enterprisetrack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.3"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.12.0.0"
          },
          {
            "_id": null,
            "model": "healthcare foundation",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.3.0.4"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3"
          },
          {
            "_id": null,
            "model": "banking platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.6.2"
          },
          {
            "_id": null,
            "model": "communications user data repository",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "communications unified inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.3.5"
          },
          {
            "_id": null,
            "model": "financial services model management and governance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.1.1.0.0"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.0.0"
          },
          {
            "_id": null,
            "model": "insurance insbridge rating and underwriting",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "communications services gatekeeper",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa32-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "health sciences empirica signal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.1.0.6"
          },
          {
            "_id": null,
            "model": "payment interface",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.3"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.0"
          },
          {
            "_id": null,
            "model": "communications element manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "agile plm mcad connector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.6"
          },
          {
            "_id": null,
            "model": "retail invoice matching",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "health sciences inform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.0.0.0"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.12.0"
          },
          {
            "_id": null,
            "model": "enterprise manager for peoplesoft",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.4.1.1"
          },
          {
            "_id": null,
            "model": "retail predictive application server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.46"
          },
          {
            "_id": null,
            "model": "communications cloud native core unified data repository",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.15.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.3.1"
          },
          {
            "_id": null,
            "model": "insurance data gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "communications ip service activator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.4.0"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12.7"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.0.1"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.1"
          },
          {
            "_id": null,
            "model": "retail merchandising system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.0"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.14"
          },
          {
            "_id": null,
            "model": "communications diameter signaling router",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.3.0.0"
          },
          {
            "_id": null,
            "model": "communications evolved communications application server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12.0"
          },
          {
            "_id": null,
            "model": "retail price management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.2"
          },
          {
            "_id": null,
            "model": "retail price management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core service communication proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.15.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core security edge protection proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.7.0"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.5"
          },
          {
            "_id": null,
            "model": "communications pricing design center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.0.4"
          },
          {
            "_id": null,
            "model": "siebel ui framework",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.12"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.0.0"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.83.3"
          },
          {
            "_id": null,
            "model": "payment interface",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.1"
          },
          {
            "_id": null,
            "model": "retail merchandising system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "communications convergent charging controller",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.1.0.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "weblogic server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "retail point-of-service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "health sciences information manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.16.0"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12.18.0"
          },
          {
            "_id": null,
            "model": "healthcare translational research",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12.0.0"
          },
          {
            "_id": null,
            "model": "utilities framework",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.3.0.1.0"
          },
          {
            "_id": null,
            "model": "utilities framework",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.4.0.2.0"
          },
          {
            "_id": null,
            "model": "webcenter portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "managed file transfer",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.58"
          },
          {
            "_id": null,
            "model": "autovue for agile product lifecycle management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.0.2"
          },
          {
            "_id": null,
            "model": "communications cloud native core network function cloud native environment",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.10.0"
          },
          {
            "_id": null,
            "model": "hyperion planning",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "banking platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.7.1"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.0.2"
          },
          {
            "_id": null,
            "model": "business intelligence",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.5.0.0.0"
          },
          {
            "_id": null,
            "model": "data integrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.1"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.3.0"
          },
          {
            "_id": null,
            "model": "communications network charging and control",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.0.1.0.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core policy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.15.0"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.59"
          },
          {
            "_id": null,
            "model": "communications session report manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.0"
          },
          {
            "_id": null,
            "model": "enterprise manager for peoplesoft",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.5.1.1"
          },
          {
            "_id": null,
            "model": "communications webrtc session controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12.0"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12.12.0"
          },
          {
            "_id": null,
            "model": "financial services analytical applications infrastructure",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.7"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "identity manager connector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.1.0"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.1"
          },
          {
            "_id": null,
            "model": "insurance insbridge rating and underwriting",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.6.0.0"
          },
          {
            "_id": null,
            "model": "identity management suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.2"
          },
          {
            "_id": null,
            "model": "hyperion profitability and cost management",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.1"
          },
          {
            "_id": null,
            "model": "communications webrtc session controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.2.0.0"
          },
          {
            "_id": null,
            "model": "retail predictive application server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.115"
          },
          {
            "_id": null,
            "model": "retail price management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.0"
          },
          {
            "_id": null,
            "model": "retail predictive application server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3.240"
          },
          {
            "_id": null,
            "model": "instantis enterprisetrack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.1"
          },
          {
            "_id": null,
            "model": "banking deposits and lines of credit servicing",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.12.0"
          },
          {
            "_id": null,
            "model": "communications pricing design center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.0.5"
          },
          {
            "_id": null,
            "model": "retail price management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.0.4"
          },
          {
            "_id": null,
            "model": "banking payments",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.5"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.12.0"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.1"
          },
          {
            "_id": null,
            "model": "utilities framework",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.4.0.3.0"
          },
          {
            "_id": null,
            "model": "retail customer insights",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.2"
          },
          {
            "_id": null,
            "model": "communications session route manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "banking enterprise default management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.7.1"
          },
          {
            "_id": null,
            "model": "health sciences information manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "webcenter sites",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "health sciences inform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.2.1.1"
          },
          {
            "_id": null,
            "model": "jdeveloper",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "utilities framework",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.4.0.0.0"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.2"
          },
          {
            "_id": null,
            "model": "retail order broker",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.0"
          },
          {
            "_id": null,
            "model": "hospitality token proxy service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.2"
          },
          {
            "_id": null,
            "model": "retail price management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3.0"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.12"
          },
          {
            "_id": null,
            "model": "instantis enterprisetrack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.2"
          },
          {
            "_id": null,
            "model": "healthcare master person index",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "communications asap",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.0.1"
          },
          {
            "_id": null,
            "model": "communications convergence",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.0.3.0"
          },
          {
            "_id": null,
            "model": "agile plm",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.3.6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "banking party management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "communications convergent charging controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.0.1.0.0"
          },
          {
            "_id": null,
            "model": "communications network charging and control",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.4.0.0"
          },
          {
            "_id": null,
            "model": "communications unified inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.4.1"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa42-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "hyperion bi\\+",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core network repository function",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.15.0"
          },
          {
            "_id": null,
            "model": "retail integration bus",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1.0"
          },
          {
            "_id": null,
            "model": "health sciences inform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.3.2.1"
          },
          {
            "_id": null,
            "model": "communications billing and revenue management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.0.4"
          },
          {
            "_id": null,
            "model": "communications eagle element management system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "46.6"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "primavera p6 enterprise project portfolio management",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12.0.0"
          },
          {
            "_id": null,
            "model": "communications convergent charging controller",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.4.0.0"
          },
          {
            "_id": null,
            "model": "banking trade finance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.5"
          },
          {
            "_id": null,
            "model": "healthcare foundation",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.3.0.1"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.3.2"
          },
          {
            "_id": null,
            "model": "web application firewall",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "retail central office",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa12-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "communications network charging and control",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.1.0.0"
          },
          {
            "_id": null,
            "model": "network security manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "retail customer insights",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.2"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1.0"
          },
          {
            "_id": null,
            "model": "retail back office",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "healthcare translational research",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.0.4.13"
          },
          {
            "_id": null,
            "model": "flexcube universal banking",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.1.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "hospitality suite8",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.13.0"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.12.11"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1"
          },
          {
            "_id": null,
            "model": "communications convergence",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "3.0.2.2.0"
          },
          {
            "_id": null,
            "model": "retail invoice matching",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3"
          },
          {
            "_id": null,
            "model": "webcenter portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "retail service backbone",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.0"
          },
          {
            "_id": null,
            "model": "banking loans servicing",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.12.0"
          },
          {
            "_id": null,
            "model": "hospitality suite8",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.14.0"
          },
          {
            "_id": null,
            "model": "communications cloud native core network slice selection function",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "1.8.0"
          },
          {
            "_id": null,
            "model": "communications eagle ftp table base retrieval",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "financial services analytical applications infrastructure",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.1.1"
          },
          {
            "_id": null,
            "model": "weblogic server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "communications performance intelligence center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "10.4.0.3"
          },
          {
            "_id": null,
            "model": "enterprise manager base platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.4.0.0"
          },
          {
            "_id": null,
            "model": "hyperion data relationship management",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "financial services model management and governance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.8.0.0"
          },
          {
            "_id": null,
            "model": "healthcare data repository",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.1.1"
          },
          {
            "_id": null,
            "model": "mysql enterprise monitor",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.29"
          },
          {
            "_id": null,
            "model": "identity management suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.4.0"
          },
          {
            "_id": null,
            "model": "retail store inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "15.0.3.3"
          },
          {
            "_id": null,
            "model": "retail eftlink",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "16.0.3"
          },
          {
            "_id": null,
            "model": "primavera gateway",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12.12"
          },
          {
            "_id": null,
            "model": "retail returns management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "communications billing and revenue management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.0.0.5"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa52-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "banking platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "2.12.0"
          },
          {
            "_id": null,
            "model": "communications messaging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "communications unified inventory management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.4.2"
          },
          {
            "_id": null,
            "model": "managed file transfer",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "weblogic server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "14.1.1.0.0"
          },
          {
            "_id": null,
            "model": "financial services model management and governance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.1.0.0.0"
          },
          {
            "_id": null,
            "model": "communications interactive session recorder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12"
          },
          {
            "_id": null,
            "model": "data integrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.2.1.3.0"
          },
          {
            "_id": null,
            "model": "enterprise manager ops center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.4.0.0"
          },
          {
            "_id": null,
            "model": "taleo platform",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "22.1"
          },
          {
            "_id": null,
            "model": "communications network integrity",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "7.3.6"
          },
          {
            "_id": null,
            "model": "retail financial integration",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.0.1"
          },
          {
            "_id": null,
            "model": "enterprise manager base platform",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.5.0.0"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa22-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "hyperion tax provision",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11.2.8.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": null,
            "trust": 0.7,
            "vendor": "apache",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "165648"
          },
          {
            "db": "PACKETSTORM",
            "id": "165649"
          },
          {
            "db": "PACKETSTORM",
            "id": "166676"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "166798"
          },
          {
            "db": "PACKETSTORM",
            "id": "166793"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2021-45105",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-45105",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.0,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-408743",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "id": "CVE-2021-45105",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "ZDI",
                "availabilityImpact": "LOW",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2021-45105",
                "impactScore": 1.4,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 0.7,
                "userInteraction": "NONE",
                "vectorString": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2021-45105",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "ZDI",
                "id": "CVE-2021-45105",
                "trust": 0.7,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-408743",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue was fixed in Log4j 2.17.0, 2.12.3, and 2.3.1. This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Apache Log4j. Authentication is not required to exploit this vulnerability.The specific flaw exists within the StrSubstitutor class. The issue results from the lack of proper validation of user-supplied data, which can result in a resource exhaustion condition. An attacker can leverage this vulnerability to create a denial-of-service condition on the process. Log4j is an open source project of Apache. By using Log4j, the destination of log information transmission can be controlled to be console, file, GUI component, even socket server, NT event recorder, etc. Apache Log4j2 has a denial of service vulnerability. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: Red Hat Data Grid 8.2.3 security update\nAdvisory ID:       RHSA-2022:0205-01\nProduct:           Red Hat JBoss Data Grid\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2022:0205\nIssue date:        2022-01-20\nCVE Names:         CVE-2021-44832 CVE-2021-45046 CVE-2021-45105 \n=====================================================================\n\n1. Summary:\n\nAn update for Red Hat Data Grid is now available. \n \nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Description:\n\nRed Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. \nIt increases application response times and allows for dramatically\nimproving performance while providing availability, reliability, and\nelastic scale. \n \nData Grid 8.2.3 replaces Data Grid 8.2.2 and includes bug fixes and\nenhancements. Find out more about Data Grid 8.2.3 in the Release Notes [3]. \n\nSecurity Fix(es):\n\n* log4j-core: remote code execution via JDBC Appender (CVE-2021-44832)\n\n* log4j-core: DoS in log4j 2.x with thread context message pattern and\ncontext lookup pattern (incomplete fix for CVE-2021-44228) (CVE-2021-45046)\n\n* log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data\ncontains a recursive lookup and context lookup pattern (CVE-2021-45105)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\n3. Solution:\n\nTo install this update, do the following:\n \n1. Download the Data Grid 8.2.3 server patch from the customer portal[\u00b2]. \n2. Back up your existing Data Grid installation. You should back up\ndatabases, configuration files, and so on. \n3. Install the Data Grid 8.2.3 server patch. Refer to the 8.2.3 Release\nNotes[\u00b3] for patching instructions. \n4. Restart Data Grid to ensure the changes take effect. \n\n4. Bugs fixed (https://bugzilla.redhat.com/):\n\n2032580 - CVE-2021-45046 log4j-core: DoS in log4j 2.x with thread context message pattern and context lookup pattern (incomplete fix for CVE-2021-44228)\n2034067 - CVE-2021-45105 log4j-core: DoS in log4j 2.x with Thread Context Map (MDC) input data contains a recursive lookup and context lookup pattern\n2035951 - CVE-2021-44832 log4j-core: remote code execution via JDBC Appender\n\n5. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-44832\nhttps://access.redhat.com/security/cve/CVE-2021-45046\nhttps://access.redhat.com/security/cve/CVE-2021-45105\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches\u0026product=data.grid\u0026version=8.2\nhttps://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index\n\n6. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nQiLGYFSmmLk=\n=y5SE\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. Description:\n\nRed Hat AMQ Streams, based on the Apache Kafka project, offers a\ndistributed backbone that allows microservices and other applications to\nshare data with extremely high throughput and extremely low latency. \n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Description:\n\nRed Hat JBoss Enterprise Application Platform 7 is a platform for Java\napplications based on the WildFly application runtime. \n\nThis release of Red Hat JBoss Enterprise Application Platform 7.4.4 serves\nas a replacement for Red Hat JBoss Enterprise Application Platform 7.4.3\nand includes bug fixes and enhancements. See the Red Hat JBoss Enterprise\nApplication Platform 7.4.4 Release Notes for information about the most\nsignificant bug fixes and enhancements included in this release. Solution:\n\nBefore applying this update, back up your existing Red Hat JBoss Enterprise\nApplication Platform installation and deployed applications. \n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. JIRA issues fixed (https://issues.jboss.org/):\n\nJBEAP-22105 - (7.4.z) Upgrade from com.io7m.xom:xom 1.2.10 to xom:xom 1.3.7\nJBEAP-22385 - (7.4.z) Upgrade ASM from 7.1 to 9.1\nJBEAP-22731 - (7.4.z) Upgrade Artemis from 2.16.0.redhat-00032 to 2.16.0.redhat-00034\nJBEAP-22738 - (7.4.z) Upgrade jbossws-cxf from 5.4.2.Final to 5.4.4.Final(Fix UsernameTokenElytronTestCase on SE 17)\nJBEAP-22819 - [GSS] (7.4.z) HAL-1762 - Aliases are removed from the credential store when passwords are updated from the admin console\nJBEAP-22839 - [GSS](7.4.z) Upgrade yasson from 1.0.9.redhat-00001 to 1.0.10.redhat-00001\nJBEAP-22864 - (7.4.z) Upgrade HAL from 3.3.8.Final-redhat-00001 to 3.3.9.Final-redhat-00001\nJBEAP-22900 - Tracker bug for the EAP 7.4.4 release for RHEL-8\nJBEAP-22904 - (7.4.z) Upgrade Hibernate ORM from 5.3.24.Final-redhat-00001 to 5.3.25.Final-redhat-00002\nJBEAP-22911 - (7.4.z) Upgrade OpenSSL from 2.1.3.Final-redhat-00001 to 2.2.0.Final-redhat-00001\nJBEAP-22912 - (7.4.z) Upgrade OpenSSL Natives from 2.1.0.SP01-redhat-00001 to 2.2.0.Final-redhat-00001\nJBEAP-22913 - (7.4.z) Upgrade WildFly Core from 15.0.6.Final-redhat-00003 to 15.0.7.Final-redhat-00001\nJBEAP-22935 - (7.4.z) Upgrade jboss-vfs from 3.2.15.Final-redhat-00001 to 3.2.16.Final-redhat-00001\nJBEAP-22945 - (7.4.z) Upgrade org.apache.logging.log4j from 2.14.0.redhat-00002 to 2.17.1.redhat-00001\nJBEAP-22973 - (7.4.z) Upgrade Elytron from 1.15.9.Final-redhat-00001 to 1.15.11.Final-redhat-00002\nJBEAP-23038 - (7.4.z) Upgrade galleon-plugins from 5.1.4.Final to 5.2.6.Final\nJBEAP-23040 - (7.4.z) Upgrade galleon-plugins in wildfly-core-eap from 5.1.4.Final to 5.2.6.Final\nJBEAP-23045 - (7.4.z) Upgrade Undertow from 2.2.13.SP2-redhat-00001 to 2.2.16.Final-redhat-0001\nJBEAP-23101 - (7.4.z) Upgrade Infinispan from 11.0.12.Final to 11.0.15.Final\nJBEAP-23105 - (7.4.z) Upgrade Narayana from 5.11.3.Final-redhat-00001 to 5.11.4.Final-redhat-00001\nJBEAP-23143 - (7.4.z) Upgrade from org.eclipse.jdt.core.compiler:ecj:4.6.1 to org.eclipse.jdt:ecj:3.26\nJBEAP-23177 - (7.4.z) Upgrade XNIO from 3.8.5.SP1-redhat-00001 to 3.8.6.Final-redhat-00001\nJBEAP-23323 - [GSS](7.4.z) WFLY-16112 - Batch JobOperatorService should look for only active job names to stop during suspend\nJBEAP-23373 - (7.4.z) Upgrade OpenSSL from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002\nJBEAP-23374 - (7.4.z) Upgrade WildFly Core from 15.0.7.Final-redhat-00001 to 15.0.8.Final-redhat-00001\nJBEAP-23375 - (7.4.z) Upgrade OpenSSL Natives from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002\n\n7.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n8. Description:\n\nRed Hat Single Sign-On 7.5 is a standalone server, based on the Keycloak\nproject, that provides authentication and standards-based single sign-on\ncapabilities for web and mobile applications. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. The purpose of this text-only\nerrata is to inform you about the security issues fixed in this release. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA512\n\n- -------------------------------------------------------------------------\nDebian Security Advisory DSA-5024-1                   security@debian.org\nhttps://www.debian.org/security/                          Markus Koschany\nDecember 18, 2021                     https://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage        : apache-log4j2\nCVE ID         : CVE-2021-45105\nDebian Bug     : 1001891\n\nIt was found that Apache Log4j2, a Logging Framework for Java, did not protect\nfrom uncontrolled recursion from self-referential lookups. \n\nFor the oldstable distribution (buster), this problem has been fixed\nin version 2.17.0-1~deb10u1. \n\nFor the stable distribution (bullseye), this problem has been fixed in\nversion 2.17.0-1~deb11u1. \n\nWe recommend that you upgrade your apache-log4j2 packages. \n\nFor the detailed security status of apache-log4j2 please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/apache-log4j2\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\nP+f2RZsciOyXo1N4zhakNkZ4dkmRZCfm9xCfeqAKUQgqVPXhBtE=\n=Wkr6\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "165648"
          },
          {
            "db": "PACKETSTORM",
            "id": "165649"
          },
          {
            "db": "PACKETSTORM",
            "id": "166676"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "166798"
          },
          {
            "db": "PACKETSTORM",
            "id": "166793"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          },
          {
            "db": "PACKETSTORM",
            "id": "169176"
          }
        ],
        "trust": 2.52
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-45105",
            "trust": 2.8
          },
          {
            "db": "ZDI",
            "id": "ZDI-21-1541",
            "trust": 1.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#930724",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-501673",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-479842",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/19/1",
            "trust": 1.1
          },
          {
            "db": "ZDI_CAN",
            "id": "ZDI-CAN-16160",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "165649",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165636",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165650",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165648",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165645",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165516",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165637",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165503",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165373",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165499",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165552",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165497",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165494",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165632",
            "trust": 0.1
          },
          {
            "db": "CNVD",
            "id": "CNVD-2021-101661",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166676",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166677",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166798",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166793",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "169176",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "165648"
          },
          {
            "db": "PACKETSTORM",
            "id": "165649"
          },
          {
            "db": "PACKETSTORM",
            "id": "166676"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "166798"
          },
          {
            "db": "PACKETSTORM",
            "id": "166793"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          },
          {
            "db": "PACKETSTORM",
            "id": "169176"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          }
        ]
      },
      "id": "VAR-202112-1782",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T23:35:45.033000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Apache has issued an update to correct this vulnerability.",
            "trust": 0.7,
            "url": "https://logging.apache.org/log4j/2.x/security.html"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-674",
            "trust": 1.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.8,
            "url": "https://logging.apache.org/log4j/2.x/security.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.kb.cert.org/vuls/id/930724"
          },
          {
            "trust": 1.1,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-apache-log4j-qruknebd"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-501673.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2021-0032"
          },
          {
            "trust": 1.1,
            "url": "https://security.netapp.com/advisory/ntap-20211218-0001/"
          },
          {
            "trust": 1.1,
            "url": "https://www.debian.org/security/2021/dsa-5024"
          },
          {
            "trust": 1.1,
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.zerodayinitiative.com/advisories/zdi-21-1541/"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/19/1"
          },
          {
            "trust": 1.0,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45105"
          },
          {
            "trust": 0.9,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.9,
            "url": "https://access.redhat.com/security/cve/cve-2021-45105"
          },
          {
            "trust": 0.9,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.9,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/cve/cve-2021-45046"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/cve/cve-2021-44832"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45046"
          },
          {
            "trust": 0.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44832"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/updates/classification/#low"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.4,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q1"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=distributions\u0026product=red.hat.integration\u0026version"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23307"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23302"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23305"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-4104"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23302"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23305"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23307"
          },
          {
            "trust": 0.2,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4104"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=securitypatches\u0026product=appplatform\u0026version=7.4"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/vulnerabilities/rhsb-2021-009"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/solutions/6577421"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=securitypatches\u0026product=data.grid\u0026version=8.2"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0205"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=distributions\u0026product=jboss.amq.streams\u0026version=1.6.6"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-38153"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0219"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-38153"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0222"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1297"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1296"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_single_sign-on/7.5/html/release_notes/index"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1469"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?product=core.service.rhsso\u0026downloadtype=patches\u0026version=7.5"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1462"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0223"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/apache-log4j2"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          }
        ],
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "165648"
          },
          {
            "db": "PACKETSTORM",
            "id": "165649"
          },
          {
            "db": "PACKETSTORM",
            "id": "166676"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "166798"
          },
          {
            "db": "PACKETSTORM",
            "id": "166793"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          },
          {
            "db": "PACKETSTORM",
            "id": "169176"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-408743",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165636",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165645",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165648",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165649",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166676",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166677",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166798",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166793",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165650",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "169176",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45105",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-12-19T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-1541",
            "ident": null
          },
          {
            "date": "2021-12-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-408743",
            "ident": null
          },
          {
            "date": "2022-01-20T17:49:52",
            "db": "PACKETSTORM",
            "id": "165636",
            "ident": null
          },
          {
            "date": "2022-01-20T18:11:03",
            "db": "PACKETSTORM",
            "id": "165645",
            "ident": null
          },
          {
            "date": "2022-01-21T15:28:58",
            "db": "PACKETSTORM",
            "id": "165648",
            "ident": null
          },
          {
            "date": "2022-01-21T15:29:08",
            "db": "PACKETSTORM",
            "id": "165649",
            "ident": null
          },
          {
            "date": "2022-04-11T17:14:49",
            "db": "PACKETSTORM",
            "id": "166676",
            "ident": null
          },
          {
            "date": "2022-04-11T17:15:55",
            "db": "PACKETSTORM",
            "id": "166677",
            "ident": null
          },
          {
            "date": "2022-04-21T15:09:01",
            "db": "PACKETSTORM",
            "id": "166798",
            "ident": null
          },
          {
            "date": "2022-04-21T15:08:12",
            "db": "PACKETSTORM",
            "id": "166793",
            "ident": null
          },
          {
            "date": "2022-01-21T15:29:54",
            "db": "PACKETSTORM",
            "id": "165650",
            "ident": null
          },
          {
            "date": "2021-12-28T20:12:00",
            "db": "PACKETSTORM",
            "id": "169176",
            "ident": null
          },
          {
            "date": "2021-12-18T12:15:07.433000",
            "db": "NVD",
            "id": "CVE-2021-45105",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-12-19T00:00:00",
            "db": "ZDI",
            "id": "ZDI-21-1541",
            "ident": null
          },
          {
            "date": "2022-10-06T00:00:00",
            "db": "VULHUB",
            "id": "VHN-408743",
            "ident": null
          },
          {
            "date": "2024-11-21T06:31:58.170000",
            "db": "NVD",
            "id": "CVE-2021-45105",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "166676"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          }
        ],
        "trust": 0.2
      },
      "title": {
        "_id": null,
        "data": "Apache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability",
        "sources": [
          {
            "db": "ZDI",
            "id": "ZDI-21-1541"
          }
        ],
        "trust": 0.7
      },
      "type": {
        "_id": null,
        "data": "code execution",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "165649"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          }
        ],
        "trust": 0.4
      }
    }

    VAR-202103-1464

    Vulnerability from variot - Updated: 2026-04-10 22:31

    An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j). OpenSSL is an open source general encryption library of the Openssl team that can implement the Secure Sockets Layer (SSLv2/v3) and Transport Layer Security (TLSv1) protocols. The product supports a variety of encryption algorithms, including symmetric ciphers, hash algorithms, secure hash algorithms, etc. On March 25, 2021, the OpenSSL Project released a security advisory, OpenSSL Security Advisory [25 March 2021], that disclosed two vulnerabilities. Exploitation of these vulnerabilities could allow an malicious user to use a valid non-certificate authority (CA) certificate to act as a CA and sign a certificate for an arbitrary organization, user or device, or to cause a denial of service (DoS) condition. This advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd.

    Bug fix:

    • RHACM 2.0.10 images (BZ #1940452)

    • Bugs fixed (https://bugzilla.redhat.com/):

    1940452 - RHACM 2.0.10 images 1944286 - CVE-2021-23358 nodejs-underscore: Arbitrary code execution via the template function

    1. Solution:

    Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.

    The References section of this erratum contains a download link for the update. You must be logged in to download the update. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: OpenShift Container Platform 4.10.3 security update Advisory ID: RHSA-2022:0056-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2022:0056 Issue date: 2022-03-10 CVE Names: CVE-2014-3577 CVE-2016-10228 CVE-2017-14502 CVE-2018-20843 CVE-2018-1000858 CVE-2019-8625 CVE-2019-8710 CVE-2019-8720 CVE-2019-8743 CVE-2019-8764 CVE-2019-8766 CVE-2019-8769 CVE-2019-8771 CVE-2019-8782 CVE-2019-8783 CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 CVE-2019-8823 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9169 CVE-2019-13050 CVE-2019-13627 CVE-2019-14889 CVE-2019-15903 CVE-2019-19906 CVE-2019-20454 CVE-2019-20807 CVE-2019-25013 CVE-2020-1730 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 CVE-2020-3885 CVE-2020-3894 CVE-2020-3895 CVE-2020-3897 CVE-2020-3899 CVE-2020-3900 CVE-2020-3901 CVE-2020-3902 CVE-2020-8927 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 CVE-2020-9952 CVE-2020-10018 CVE-2020-11793 CVE-2020-13434 CVE-2020-14391 CVE-2020-15358 CVE-2020-15503 CVE-2020-25660 CVE-2020-25677 CVE-2020-27618 CVE-2020-27781 CVE-2020-29361 CVE-2020-29362 CVE-2020-29363 CVE-2021-3121 CVE-2021-3326 CVE-2021-3449 CVE-2021-3450 CVE-2021-3516 CVE-2021-3517 CVE-2021-3518 CVE-2021-3520 CVE-2021-3521 CVE-2021-3537 CVE-2021-3541 CVE-2021-3733 CVE-2021-3749 CVE-2021-20305 CVE-2021-21684 CVE-2021-22946 CVE-2021-22947 CVE-2021-25215 CVE-2021-27218 CVE-2021-30666 CVE-2021-30761 CVE-2021-30762 CVE-2021-33928 CVE-2021-33929 CVE-2021-33930 CVE-2021-33938 CVE-2021-36222 CVE-2021-37750 CVE-2021-39226 CVE-2021-41190 CVE-2021-43813 CVE-2021-44716 CVE-2021-44717 CVE-2022-0532 CVE-2022-21673 CVE-2022-24407 =====================================================================

    1. Summary:

    Red Hat OpenShift Container Platform release 4.10.3 is now available with updates to packages and images that fix several bugs and add enhancements.

    Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Description:

    Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

    This advisory contains the container images for Red Hat OpenShift Container Platform 4.10.3. See the following advisory for the RPM packages for this release:

    https://access.redhat.com/errata/RHSA-2022:0055

    Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:

    https://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html

    Security Fix(es):

    • gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation (CVE-2021-3121)
    • grafana: Snapshot authentication bypass (CVE-2021-39226)
    • golang: net/http: limit growth of header canonicalization cache (CVE-2021-44716)
    • nodejs-axios: Regular expression denial of service in trim function (CVE-2021-3749)
    • golang: syscall: don't close fd 0 on ForkExec error (CVE-2021-44717)
    • grafana: Forward OAuth Identity Token can allow users to access some data sources (CVE-2022-21673)
    • grafana: directory traversal vulnerability (CVE-2021-43813)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    You may download the oc tool and use it to inspect release image metadata as follows:

    (For x86_64 architecture)

    $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.10.3-x86_64

    The image digest is sha256:7ffe4cd612be27e355a640e5eec5cd8f923c1400d969fd590f806cffdaabcc56

    (For s390x architecture)

    $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.10.3-s390x

    The image digest is sha256:4cf21a9399da1ce8427246f251ae5dedacfc8c746d2345f9cfe039ed9eda3e69

    (For ppc64le architecture)

    $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.10.3-ppc64le

    The image digest is sha256:4ee571da1edf59dfee4473aa4604aba63c224bf8e6bcf57d048305babbbde93c

    All OpenShift Container Platform 4.10 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html

    1. Solution:

    For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for moderate instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

    https://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html

    Details on how to access this content are available at https://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1808240 - Always return metrics value for pods under the user's namespace 1815189 - feature flagged UI does not always become available after operator installation 1825034 - e2e: Mock CSI tests fail on IBM ROKS clusters 1826225 - edge terminated h2 (gRPC) connections need a haproxy template change to work correctly 1860774 - csr for vSphere egress nodes were not approved automatically during cert renewal 1878106 - token inactivity timeout is not shortened after oauthclient/oauth config values are lowered 1878925 - 'oc adm upgrade --to ...' rejects versions which occur only in history, while the cluster-version operator supports history fallback 1880738 - origin e2e test deletes original worker 1882983 - oVirt csi driver should refuse to provision RWX and ROX PV 1886450 - Keepalived router id check not documented for RHV/VMware IPI 1889488 - The metrics endpoint for the Scheduler is not protected by RBAC 1894431 - Router pods fail to boot if the SSL certificate applied is missing an empty line at the bottom 1896474 - Path based routing is broken for some combinations 1897431 - CIDR support for additional network attachment with the bridge CNI plug-in 1903408 - NodePort externalTrafficPolicy does not work for ovn-kubernetes 1907433 - Excessive logging in image operator 1909906 - The router fails with PANIC error when stats port already in use 1911173 - [MSTR-998] Many charts' legend names show {{}} instead of words 1914053 - pods assigned with Multus whereabouts IP get stuck in ContainerCreating state after node rebooting. 1916169 - a reboot while MCO is applying changes leaves the node in undesirable state and MCP looks fine (UPDATED=true) 1917893 - [ovirt] install fails: due to terraform error "Cannot attach Virtual Disk: Disk is locked" on vm resource 1921627 - GCP UPI installation failed due to exceeding gcp limitation of instance group name 1921650 - CVE-2021-3121 gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation 1926522 - oc adm catalog does not clean temporary files 1927478 - Default CatalogSources deployed by marketplace do not have toleration for tainted nodes. 1928141 - kube-storage-version-migrator constantly reporting type "Upgradeable" status Unknown 1928285 - [LSO][OCS][arbiter] OCP Console shows no results while in fact underlying setup of LSO localvolumeset and it's storageclass is not yet finished, confusing users 1931594 - [sig-cli] oc --request-timeout works as expected fails frequently on s390x 1933847 - Prometheus goes unavailable (both instances down) during 4.8 upgrade 1937085 - RHV UPI inventory playbook missing guarantee_memory 1937196 - [aws ebs csi driver] events for block volume expansion may cause confusion 1938236 - vsphere-problem-detector does not support overriding log levels via storage CR 1939401 - missed labels for CMO/openshift-state-metric/telemeter-client/thanos-querier pods 1939435 - Setting an IPv6 address in noProxy field causes error in openshift installer 1939552 - [sig-api-machinery] CustomResourcePublishOpenAPI [Privileged:ClusterAdmin] works for CRD preserving unknown fields in an embedded object [Conformance] [Suite:openshift/conformance/parallel/minimal] [Suite:k8s] 1942913 - ThanosSidecarUnhealthy isn't resilient to WAL replays. 1943363 - [ovn] CNO should gracefully terminate ovn-northd 1945274 - ostree-finalize-staged.service failed while upgrading a rhcos node to 4.6.17 1948080 - authentication should not set Available=False APIServices_Error with 503s 1949262 - Prometheus Statefulsets should have 2 replicas and hard affinity set 1949672 - [GCP] Update 4.8 UPI template to match ignition version: 3.2.0 1950827 - [LSO] localvolumediscoveryresult name is not friendly to customer 1952576 - csv_succeeded metric not present in olm-operator for all successful CSVs 1953264 - "remote error: tls: bad certificate" logs in prometheus-operator container 1955300 - Machine config operator reports unavailable for 23m during upgrade 1955489 - Alertmanager Statefulsets should have 2 replicas and hard affinity set 1955490 - Thanos ruler Statefulsets should have 2 replicas and hard affinity set 1955544 - [IPI][OSP] densed master-only installation with 0 workers fails due to missing worker security group on masters 1956496 - Needs SR-IOV Docs Upstream 1956739 - Permission for authorized_keys for core user changes from core user to root when changed the pull secret 1956776 - [vSphere] Installer should do pre-check to ensure user-provided network name is valid 1956964 - upload a boot-source to OpenShift virtualization using the console 1957547 - [RFE]VM name is not auto filled in dev console 1958349 - ovn-controller doesn't release the memory after cluster-density run 1959352 - [scale] failed to get pod annotation: timed out waiting for annotations 1960378 - icsp allows mirroring of registry root - install-config imageContentSources does not 1960674 - Broken test: [sig-imageregistry][Serial][Suite:openshift/registry/serial] Image signature workflow can push a signed image to openshift registry and verify it [Suite:openshift/conformance/serial] 1961317 - storage ClusterOperator does not declare ClusterRoleBindings in relatedObjects 1961391 - String updates 1961509 - DHCP daemon pod should have CPU and memory requests set but not limits 1962066 - Edit machine/machineset specs not working 1962206 - openshift-multus/dhcp-daemon set should meet platform requirements for update strategy that have maxUnavailable update of 10 or 33 percent 1963053 - oc whoami --show-console should show the web console URL, not the server api URL 1964112 - route SimpleAllocationPlugin: host name validation errors: spec.host: Invalid value: ... must be no more than 63 characters 1964327 - Support containers with name:tag@digest 1964789 - Send keys and disconnect does not work for VNC console 1965368 - ClusterQuotaAdmission received non-meta object - message constantly reported in OpenShift Container Platform 4.7 1966445 - Unmasking a service doesn't work if it masked using MCO 1966477 - Use GA version in KAS/OAS/OauthAS to avoid: "audit.k8s.io/v1beta1" is deprecated and will be removed in a future release, use "audit.k8s.io/v1" instead 1966521 - kube-proxy's userspace implementation consumes excessive CPU 1968364 - [Azure] when using ssh type ed25519 bootstrap fails to come up 1970021 - nmstate does not persist its configuration due to overlay systemd-connections-merged mount 1970218 - MCO writes incorrect file contents if compression field is specified 1970331 - [sig-auth][Feature:SCC][Early] should not have pod creation failures during install [Suite:openshift/conformance/parallel] 1970805 - Cannot create build when docker image url contains dir structure 1972033 - [azure] PV region node affinity is failure-domain.beta.kubernetes.io instead of topology.kubernetes.io 1972827 - image registry does not remain available during upgrade 1972962 - Should set the minimum value for the --max-icsp-size flag of oc adm catalog mirror 1973447 - ovn-dbchecker peak memory spikes to ~500MiB during cluster-density run 1975826 - ovn-kubernetes host directed traffic cannot be offloaded as CT zone 64000 is not established 1976301 - [ci] e2e-azure-upi is permafailing 1976399 - During the upgrade from OpenShift 4.5 to OpenShift 4.6 the election timers for the OVN north and south databases did not change. 1976674 - CCO didn't set Upgradeable to False when cco mode is configured to Manual on azure platform 1976894 - Unidling a StatefulSet does not work as expected 1977319 - [Hive] Remove stale cruft installed by CVO in earlier releases 1977414 - Build Config timed out waiting for condition 400: Bad Request 1977929 - [RFE] Display Network Attachment Definitions from openshift-multus namespace during OCS deployment via UI using Multus 1978528 - systemd-coredump started and failed intermittently for unknown reasons 1978581 - machine-config-operator: remove runlevel from mco namespace 1979562 - Cluster operators: don't show messages when neither progressing, degraded or unavailable 1979962 - AWS SDN Network Stress tests have not passed in 4.9 release-openshift-origin-installer-e2e-aws-sdn-network-stress-4.9 1979966 - OCP builds always fail when run on RHEL7 nodes 1981396 - Deleting pool inside pool page the pool stays in Ready phase in the heading 1981549 - Machine-config daemon does not recover from broken Proxy configuration 1981867 - [sig-cli] oc explain should contain proper fields description for special types [Suite:openshift/conformance/parallel] 1981941 - Terraform upgrade required in openshift-installer to resolve multiple issues 1982063 - 'Control Plane' is not translated in Simplified Chinese language in Home->Overview page 1982498 - Default registry credential path should be adjusted to use containers/auth.json for oc commands 1982662 - Workloads - DaemonSets - Add storage: i18n misses 1982726 - kube-apiserver audit logs show a lot of 404 errors for DELETE "/secrets/encryption-config" on single node clusters 1983758 - upgrades are failing on disruptive tests 1983964 - Need Device plugin configuration for the NIC "needVhostNet" & "isRdma" 1984592 - global pull secret not working in OCP4.7.4+ for additional private registries 1985073 - new-in-4.8 ExtremelyHighIndividualControlPlaneCPU fires on some GCP update jobs 1985486 - Cluster Proxy not used during installation on OSP with Kuryr 1985724 - VM Details Page missing translations 1985838 - [OVN] CNO exportNetworkFlows does not clear collectors when deleted 1985933 - Downstream image registry recommendation 1985965 - oVirt CSI driver does not report volume stats 1986216 - [scale] SNO: Slow Pod recovery due to "timed out waiting for OVS port binding" 1986237 - "MachineNotYetDeleted" in Pending state , alert not fired 1986239 - crictl create fails with "PID namespace requested, but sandbox infra container invalid" 1986302 - console continues to fetch prometheus alert and silences for normal user 1986314 - Current MTV installation for KubeVirt import flow creates unusable Forklift UI 1986338 - error creating list of resources in Import YAML 1986502 - yaml multi file dnd duplicates previous dragged files 1986819 - fix string typos for hot-plug disks 1987044 - [OCPV48] Shutoff VM is being shown as "Starting" in WebUI when using spec.runStrategy Manual/RerunOnFailure 1987136 - Declare operatorframework.io/arch. labels for all operators 1987257 - Go-http-client user-agent being used for oc adm mirror requests 1987263 - fsSpaceFillingUpWarningThreshold not aligned to Kubernetes Garbage Collection Threshold 1987445 - MetalLB integration: All gateway routers in the cluster answer ARP requests for LoadBalancer services IP 1988406 - SSH key dropped when selecting "Customize virtual machine" in UI 1988440 - Network operator changes ovnkube-config too early causing ovnkube-master pods to crashloop during cluster upgrade 1988483 - Azure drop ICMP need to frag FRAG when using OVN: openshift-apiserver becomes False after env runs some time due to communication between one master to pods on another master fails with "Unable to connect to the server" 1988879 - Virtual media based deployment fails on Dell servers due to pending Lifecycle Controller jobs 1989438 - expected replicas is wrong 1989502 - Developer Catalog is disappearing after short time 1989843 - 'More' and 'Show Less' functions are not translated on several page 1990014 - oc debug does not work for Windows pods 1990190 - e2e testing failed with basic manifest: reason/ExternalProvisioning waiting for a volume to be created 1990193 - 'more' and 'Show Less' is not being translated on Home -> Search page 1990255 - Partial or all of the Nodes/StorageClasses don't appear back on UI after text is removed from search bar 1990489 - etcdHighNumberOfFailedGRPCRequests fires only on metal env in CI 1990506 - Missing udev rules in initramfs for /dev/disk/by-id/scsi- symlinks 1990556 - get-resources.sh doesn't honor the no_proxy settings even with no_proxy var 1990625 - Ironic agent registers with SLAAC address with privacy-stable 1990635 - CVO does not recognize the channel change if desired version and channel changed at the same time 1991067 - github.com can not be resolved inside pods where cluster is running on openstack. 1991573 - Enable typescript strictNullCheck on network-policies files 1991641 - Baremetal Cluster Operator still Available After Delete Provisioning 1991770 - The logLevel and operatorLogLevel values do not work with Cloud Credential Operator 1991819 - Misspelled word "ocurred" in oc inspect cmd 1991942 - Alignment and spacing fixes 1992414 - Two rootdisks show on storage step if 'This is a CD-ROM boot source' is checked 1992453 - The configMap failed to save on VM environment tab 1992466 - The button 'Save' and 'Reload' are not translated on vm environment tab 1992475 - The button 'Open console in New Window' and 'Disconnect' are not translated on vm console tab 1992509 - Could not customize boot source due to source PVC not found 1992541 - all the alert rules' annotations "summary" and "description" should comply with the OpenShift alerting guidelines 1992580 - storageProfile should stay with the same value by check/uncheck the apply button 1992592 - list-type missing in oauth.config.openshift.io for identityProviders breaking Server Side Apply 1992777 - [IBMCLOUD] Default "ibm_iam_authorization_policy" is not working as expected in all scenarios 1993364 - cluster destruction fails to remove router in BYON with Kuryr as primary network (even after BZ 1940159 got fixed) 1993376 - periodic-ci-openshift-release-master-ci-4.6-upgrade-from-stable-4.5-e2e-azure-upgrade is permfailing 1994094 - Some hardcodes are detected at the code level in OpenShift console components 1994142 - Missing required cloud config fields for IBM Cloud 1994733 - MetalLB: IP address is not assigned to service if there is duplicate IP address in two address pools 1995021 - resolv.conf and corefile sync slows down/stops after keepalived container restart 1995335 - [SCALE] ovnkube CNI: remove ovs flows check 1995493 - Add Secret to workload button and Actions button are not aligned on secret details page 1995531 - Create RDO-based Ironic image to be promoted to OKD 1995545 - Project drop-down amalgamates inside main screen while creating storage system for odf-operator 1995887 - [OVN]After reboot egress node, lr-policy-list was not correct, some duplicate records or missed internal IPs 1995924 - CMO should report Upgradeable: false when HA workload is incorrectly spread 1996023 - kubernetes.io/hostname values are larger than filter when create localvolumeset from webconsole 1996108 - Allow backwards compatibility of shared gateway mode to inject host-based routes into OVN 1996624 - 100% of the cco-metrics/cco-metrics targets in openshift-cloud-credential-operator namespace are down 1996630 - Fail to delete the first Authorized SSH Key input box on Advanced page 1996647 - Provide more useful degraded message in auth operator on DNS errors 1996736 - Large number of 501 lr-policies in INCI2 env 1996886 - timedout waiting for flows during pod creation and ovn-controller pegged on worker nodes 1996916 - Special Resource Operator(SRO) - Fail to deploy simple-kmod on GCP 1996928 - Enable default operator indexes on ARM 1997028 - prometheus-operator update removes env var support for thanos-sidecar 1997059 - Failed to create cluster in AWS us-east-1 region due to a local zone is used 1997226 - Ingresscontroller reconcilations failing but not shown in operator logs or status of ingresscontroller. 1997245 - "Subscription already exists in openshift-storage namespace" error message is seen while installing odf-operator via UI 1997269 - Have to refresh console to install kube-descheduler 1997478 - Storage operator is not available after reboot cluster instances 1997509 - flake: [sig-cli] oc builds new-build [Skipped:Disconnected] [Suite:openshift/conformance/parallel] 1997967 - storageClass is not reserved from default wizard to customize wizard 1998035 - openstack IPI CI: custom var-lib-etcd.mount (ramdisk) unit is racing due to incomplete After/Before order 1998038 - [e2e][automation] add tests for UI for VM disk hot-plug 1998087 - Fix CephHealthCheck wrapping contents and add data-tests for HealthItem and SecondaryStatus 1998174 - Create storageclass gp3-csi after install ocp cluster on aws 1998183 - "r: Bad Gateway" info is improper 1998235 - Firefox warning: Cookie “csrf-token” will be soon rejected 1998377 - Filesystem table head is not full displayed in disk tab 1998378 - Virtual Machine is 'Not available' in Home -> Overview -> Cluster inventory 1998519 - Add fstype when create localvolumeset instance on web console 1998951 - Keepalived conf ingress peer on in Dual stack cluster contains both IPv6 and IPv4 addresses 1999076 - [UI] Page Not Found error when clicking on Storage link provided in Overview page 1999079 - creating pods before sriovnetworknodepolicy sync up succeed will cause node unschedulable 1999091 - Console update toast notification can appear multiple times 1999133 - removing and recreating static pod manifest leaves pod in error state 1999246 - .indexignore is not ingore when oc command load dc configuration 1999250 - ArgoCD in GitOps operator can't manage namespaces 1999255 - ovnkube-node always crashes out the first time it starts 1999261 - ovnkube-node log spam (and security token leak?) 1999309 - While installing odf-operator via UI, web console update pop-up navigates to OperatorHub -> Operator Installation page 1999314 - console-operator is slow to mark Degraded as False once console starts working 1999425 - kube-apiserver with "[SHOULD NOT HAPPEN] failed to update managedFields" err="failed to convert new object (machine.openshift.io/v1beta1, Kind=MachineHealthCheck) 1999556 - "master" pool should be updated before the CVO reports available at the new version occurred 1999578 - AWS EFS CSI tests are constantly failing 1999603 - Memory Manager allows Guaranteed QoS Pod with hugepages requested is exactly equal to the left over Hugepages 1999619 - cloudinit is malformatted if a user sets a password during VM creation flow 1999621 - Empty ssh_authorized_keys entry is added to VM's cloudinit if created from a customize flow 1999649 - MetalLB: Only one type of IP address can be assigned to service on dual stack cluster from a address pool that have both IPv4 and IPv6 addresses defined 1999668 - openshift-install destroy cluster panic's when given invalid credentials to cloud provider (Azure Stack Hub) 1999734 - IBM Cloud CIS Instance CRN missing in infrastructure manifest/resource 1999771 - revert "force cert rotation every couple days for development" in 4.10 1999784 - CVE-2021-3749 nodejs-axios: Regular expression denial of service in trim function 1999796 - Openshift Console Helm tab is not showing helm releases in a namespace when there is high number of deployments in the same namespace. 1999836 - Admin web-console inconsistent status summary of sparse ClusterOperator conditions 1999903 - Click "This is a CD-ROM boot source" ticking "Use template size PVC" on pvc upload form 1999983 - No way to clear upload error from template boot source 2000081 - [IPI baremetal] The metal3 pod failed to restart when switching from Disabled to Managed provisioning without specifying provisioningInterface parameter 2000096 - Git URL is not re-validated on edit build-config form reload 2000216 - Successfully imported ImageStreams are not resolved in DeploymentConfig 2000236 - Confusing usage message from dynkeepalived CLI 2000268 - Mark cluster unupgradable if vcenter, esxi versions or HW versions are unsupported 2000430 - bump cluster-api-provider-ovirt version in installer 2000450 - 4.10: Enable static PV multi-az test 2000490 - All critical alerts shipped by CMO should have links to a runbook 2000521 - Kube-apiserver CO degraded due to failed conditional check (ConfigObservationDegraded) 2000573 - Incorrect StorageCluster CR created and ODF cluster getting installed with 2 Zone OCP cluster 2000628 - ibm-flashsystem-storage-storagesystem got created without any warning even when the attempt was cancelled 2000651 - ImageStreamTag alias results in wrong tag and invalid link in Web Console 2000754 - IPerf2 tests should be lower 2000846 - Structure logs in the entire codebase of Local Storage Operator 2000872 - [tracker] container is not able to list on some directories within the nfs after upgrade to 4.7.24 2000877 - OCP ignores STOPSIGNAL in Dockerfile and sends SIGTERM 2000938 - CVO does not respect changes to a Deployment strategy 2000963 - 'Inline-volume (default fs)] volumes should store data' tests are failing on OKD with updated selinux-policy 2001008 - [MachineSets] CloneMode defaults to linkedClone, but I don't have snapshot and should be fullClone 2001240 - Remove response headers for downloads of binaries from OpenShift WebConsole 2001295 - Remove openshift:kubevirt-machine-controllers decleration from machine-api 2001317 - OCP Platform Quota Check - Inaccurate MissingQuota error 2001337 - Details Card in ODF Dashboard mentions OCS 2001339 - fix text content hotplug 2001413 - [e2e][automation] add/delete nic and disk to template 2001441 - Test: oc adm must-gather runs successfully for audit logs - fail due to startup log 2001442 - Empty termination.log file for the kube-apiserver has too permissive mode 2001479 - IBM Cloud DNS unable to create/update records 2001566 - Enable alerts for prometheus operator in UWM 2001575 - Clicking on the perspective switcher shows a white page with loader 2001577 - Quick search placeholder is not displayed properly when the search string is removed 2001578 - [e2e][automation] add tests for vm dashboard tab 2001605 - PVs remain in Released state for a long time after the claim is deleted 2001617 - BucketClass Creation is restricted on 1st page but enabled using side navigation options 2001620 - Cluster becomes degraded if it can't talk to Manila 2001760 - While creating 'Backing Store', 'Bucket Class', 'Namespace Store' user is navigated to 'Installed Operators' page after clicking on ODF 2001761 - Unable to apply cluster operator storage for SNO on GCP platform. 2001765 - Some error message in the log of diskmaker-manager caused confusion 2001784 - show loading page before final results instead of showing a transient message No log files exist 2001804 - Reload feature on Environment section in Build Config form does not work properly 2001810 - cluster admin unable to view BuildConfigs in all namespaces 2001817 - Failed to load RoleBindings list that will lead to ‘Role name’ is not able to be selected on Create RoleBinding page as well 2001823 - OCM controller must update operator status 2001825 - [SNO]ingress/authentication clusteroperator degraded when enable ccm from start 2001835 - Could not select image tag version when create app from dev console 2001855 - Add capacity is disabled for ocs-storagecluster 2001856 - Repeating event: MissingVersion no image found for operand pod 2001959 - Side nav list borders don't extend to edges of container 2002007 - Layout issue on "Something went wrong" page 2002010 - ovn-kube may never attempt to retry a pod creation 2002012 - Cannot change volume mode when cloning a VM from a template 2002027 - Two instances of Dotnet helm chart show as one in topology 2002075 - opm render does not automatically pulling in the image(s) used in the deployments 2002121 - [OVN] upgrades failed for IPI OSP16 OVN IPSec cluster 2002125 - Network policy details page heading should be updated to Network Policy details 2002133 - [e2e][automation] add support/virtualization and improve deleteResource 2002134 - [e2e][automation] add test to verify vm details tab 2002215 - Multipath day1 not working on s390x 2002238 - Image stream tag is not persisted when switching from yaml to form editor 2002262 - [vSphere] Incorrect user agent in vCenter sessions list 2002266 - SinkBinding create form doesn't allow to use subject name, instead of label selector 2002276 - OLM fails to upgrade operators immediately 2002300 - Altering the Schedule Profile configurations doesn't affect the placement of the pods 2002354 - Missing DU configuration "Done" status reporting during ZTP flow 2002362 - Dynamic Plugin - ConsoleRemotePlugin for webpack doesn't use commonjs 2002368 - samples should not go degraded when image allowedRegistries blocks imagestream creation 2002372 - Pod creation failed due to mismatched pod IP address in CNI and OVN 2002397 - Resources search is inconsistent 2002434 - CRI-O leaks some children PIDs 2002443 - Getting undefined error on create local volume set page 2002461 - DNS operator performs spurious updates in response to API's defaulting of service's internalTrafficPolicy 2002504 - When the openshift-cluster-storage-operator is degraded because of "VSphereProblemDetectorController_SyncError", the insights operator is not sending the logs from all pods. 2002559 - User preference for topology list view does not follow when a new namespace is created 2002567 - Upstream SR-IOV worker doc has broken links 2002588 - Change text to be sentence case to align with PF 2002657 - ovn-kube egress IP monitoring is using a random port over the node network 2002713 - CNO: OVN logs should have millisecond resolution 2002748 - [ICNI2] 'ErrorAddingLogicalPort' failed to handle external GW check: timeout waiting for namespace event 2002759 - Custom profile should not allow not including at least one required HTTP2 ciphersuite 2002763 - Two storage systems getting created with external mode RHCS 2002808 - KCM does not use web identity credentials 2002834 - Cluster-version operator does not remove unrecognized volume mounts 2002896 - Incorrect result return when user filter data by name on search page 2002950 - Why spec.containers.command is not created with "oc create deploymentconfig --image= -- " 2003096 - [e2e][automation] check bootsource URL is displaying on review step 2003113 - OpenShift Baremetal IPI installer uses first three defined nodes under hosts in install-config for master nodes instead of filtering the hosts with the master role 2003120 - CI: Uncaught error with ResizeObserver on operand details page 2003145 - Duplicate operand tab titles causes "two children with the same key" warning 2003164 - OLM, fatal error: concurrent map writes 2003178 - [FLAKE][knative] The UI doesn't show updated traffic distribution after accepting the form 2003193 - Kubelet/crio leaks netns and veth ports in the host 2003195 - OVN CNI should ensure host veths are removed 2003204 - Jenkins all new container images (openshift4/ose-jenkins) not supporting '-e JENKINS_PASSWORD=password' ENV which was working for old container images 2003206 - Namespace stuck terminating: Failed to delete all resource types, 1 remaining: unexpected items still remain in namespace 2003239 - "[sig-builds][Feature:Builds][Slow] can use private repositories as build input" tests fail outside of CI 2003244 - Revert libovsdb client code 2003251 - Patternfly components with list element has list item bullet when they should not. 2003252 - "[sig-builds][Feature:Builds][Slow] starting a build using CLI start-build test context override environment BUILD_LOGLEVEL in buildconfig" tests do not work as expected outside of CI 2003269 - Rejected pods should be filtered from admission regression 2003357 - QE- Removing the epic tags for gherkin tags related to 4.9 Release 2003426 - [e2e][automation] add test for vm details bootorder 2003496 - [e2e][automation] add test for vm resources requirment settings 2003641 - All metal ipi jobs are failing in 4.10 2003651 - ODF4.9+LSO4.8 installation via UI, StorageCluster move to error state 2003655 - [IPI ON-PREM] Keepalived chk_default_ingress track script failed even though default router pod runs on node 2003683 - Samples operator is panicking in CI 2003711 - [UI] Empty file ceph-external-cluster-details-exporter.py downloaded from external cluster "Connection Details" page 2003715 - Error on creating local volume set after selection of the volume mode 2003743 - Remove workaround keeping /boot RW for kdump support 2003775 - etcd pod on CrashLoopBackOff after master replacement procedure 2003788 - CSR reconciler report error constantly when BYOH CSR approved by other Approver 2003792 - Monitoring metrics query graph flyover panel is useless 2003808 - Add Sprint 207 translations 2003845 - Project admin cannot access image vulnerabilities view 2003859 - sdn emits events with garbage messages 2003896 - (release-4.10) ApiRequestCounts conditional gatherer 2004009 - 4.10: Fix multi-az zone scheduling e2e for 5 control plane replicas 2004051 - CMO can report as being Degraded while node-exporter is deployed on all nodes 2004059 - [e2e][automation] fix current tests for downstream 2004060 - Trying to use basic spring boot sample causes crash on Firefox 2004101 - [UI] When creating storageSystem deployment type dropdown under advanced setting doesn't close after selection 2004127 - [flake] openshift-controller-manager event reason/SuccessfulDelete occurs too frequently 2004203 - build config's created prior to 4.8 with image change triggers can result in trigger storm in OCM/openshift-apiserver 2004313 - [RHOCP 4.9.0-rc.0] Failing to deploy Azure cluster from the macOS installer - ignition_bootstrap.ign: no such file or directory 2004449 - Boot option recovery menu prevents image boot 2004451 - The backup filename displayed in the RecentBackup message is incorrect 2004459 - QE - Modified the AddFlow gherkin scripts and automation scripts 2004508 - TuneD issues with the recent ConfigParser changes. 2004510 - openshift-gitops operator hooks gets unauthorized (401) errors during jobs executions 2004542 - [osp][octavia lb] cannot create LoadBalancer type svcs 2004578 - Monitoring and node labels missing for an external storage platform 2004585 - prometheus-k8s-0 cpu usage keeps increasing for the first 3 days 2004596 - [4.10] Bootimage bump tracker 2004597 - Duplicate ramdisk log containers running 2004600 - Duplicate ramdisk log containers running 2004609 - output of "crictl inspectp" is not complete 2004625 - BMC credentials could be logged if they change 2004632 - When LE takes a large amount of time, multiple whereabouts are seen 2004721 - ptp/worker custom threshold doesn't change ptp events threshold 2004736 - [knative] Create button on new Broker form is inactive despite form being filled 2004796 - [e2e][automation] add test for vm scheduling policy 2004814 - (release-4.10) OCM controller - change type of the etc-pki-entitlement secret to opaque 2004870 - [External Mode] Insufficient spacing along y-axis in RGW Latency Performance Card 2004901 - [e2e][automation] improve kubevirt devconsole tests 2004962 - Console frontend job consuming too much CPU in CI 2005014 - state of ODF StorageSystem is misreported during installation or uninstallation 2005052 - Adding a MachineSet selector matchLabel causes orphaned Machines 2005179 - pods status filter is not taking effect 2005182 - sync list of deprecated apis about to be removed 2005282 - Storage cluster name is given as title in StorageSystem details page 2005355 - setuptools 58 makes Kuryr CI fail 2005407 - ClusterNotUpgradeable Alert should be set to Severity Info 2005415 - PTP operator with sidecar api configured throws bind: address already in use 2005507 - SNO spoke cluster failing to reach coreos.live.rootfs_url is missing url in console 2005554 - The switch status of the button "Show default project" is not revealed correctly in code 2005581 - 4.8.12 to 4.9 upgrade hung due to cluster-version-operator pod CrashLoopBackOff: error creating clients: invalid configuration: no configuration has been provided, try setting KUBERNETES_MASTER environment variable 2005761 - QE - Implementing crw-basic feature file 2005783 - Fix accessibility issues in the "Internal" and "Internal - Attached Mode" Installation Flow 2005811 - vSphere Problem Detector operator - ServerFaultCode: InvalidProperty 2005854 - SSH NodePort service is created for each VM 2005901 - KS, KCM and KA going Degraded during master nodes upgrade 2005902 - Current UI flow for MCG only deployment is confusing and doesn't reciprocate any message to the end-user 2005926 - PTP operator NodeOutOfPTPSync rule is using max offset from the master instead of openshift_ptp_clock_state metrics 2005971 - Change telemeter to report the Application Services product usage metrics 2005997 - SELinux domain container_logreader_t does not have a policy to follow sym links for log files 2006025 - Description to use an existing StorageClass while creating StorageSystem needs to be re-phrased 2006060 - ocs-storagecluster-storagesystem details are missing on UI for MCG Only and MCG only in LSO mode deployment types 2006101 - Power off fails for drivers that don't support Soft power off 2006243 - Metal IPI upgrade jobs are running out of disk space 2006291 - bootstrapProvisioningIP set incorrectly when provisioningNetworkCIDR doesn't use the 0th address 2006308 - Backing Store YAML tab on click displays a blank screen on UI 2006325 - Multicast is broken across nodes 2006329 - Console only allows Web Terminal Operator to be installed in OpenShift Operators 2006364 - IBM Cloud: Set resourceGroupId for resourceGroups, not simply resource 2006561 - [sig-instrumentation] Prometheus when installed on the cluster shouldn't have failing rules evaluation [Skipped:Disconnected] [Suite:openshift/conformance/parallel] 2006690 - OS boot failure "x64 Exception Type 06 - Invalid Opcode Exception" 2006714 - add retry for etcd errors in kube-apiserver 2006767 - KubePodCrashLooping may not fire 2006803 - Set CoreDNS cache entries for forwarded zones 2006861 - Add Sprint 207 part 2 translations 2006945 - race condition can cause crashlooping bootstrap kube-apiserver in cluster-bootstrap 2006947 - e2e-aws-proxy for 4.10 is permafailing with samples operator errors 2006975 - clusteroperator/etcd status condition should not change reasons frequently due to EtcdEndpointsDegraded 2007085 - Intermittent failure mounting /run/media/iso when booting live ISO from USB stick 2007136 - Creation of BackingStore, BucketClass, NamespaceStore fails 2007271 - CI Integration for Knative test cases 2007289 - kubevirt tests are failing in CI 2007322 - Devfile/Dockerfile import does not work for unsupported git host 2007328 - Updated patternfly to v4.125.3 and pf.quickstarts to v1.2.3. 2007379 - Events are not generated for master offset for ordinary clock 2007443 - [ICNI 2.0] Loadbalancer pods do not establish BFD sessions with all workers that host pods for the routed namespace 2007455 - cluster-etcd-operator: render command should fail if machineCidr contains reserved address 2007495 - Large label value for the metric kubelet_started_pods_errors_total with label message when there is a error 2007522 - No new local-storage-operator-metadata-container is build for 4.10 2007551 - No new ose-aws-efs-csi-driver-operator-bundle-container is build for 4.10 2007580 - Azure cilium installs are failing e2e tests 2007581 - Too many haproxy processes in default-router pod causing high load average after upgrade from v4.8.3 to v4.8.10 2007677 - Regression: core container io performance metrics are missing for pod, qos, and system slices on nodes 2007692 - 4.9 "old-rhcos" jobs are permafailing with storage test failures 2007710 - ci/prow/e2e-agnostic-cmd job is failing on prow 2007757 - must-gather extracts imagestreams in the "openshift" namespace, but not Templates 2007802 - AWS machine actuator get stuck if machine is completely missing 2008096 - TestAWSFinalizerDeleteS3Bucket sometimes fails to teardown operator 2008119 - The serviceAccountIssuer field on Authentication CR is reseted to “” when installation process 2008151 - Topology breaks on clicking in empty state 2008185 - Console operator go.mod should use go 1.16.version 2008201 - openstack-az job is failing on haproxy idle test 2008207 - vsphere CSI driver doesn't set resource limits 2008223 - gather_audit_logs: fix oc command line to get the current audit profile 2008235 - The Save button in the Edit DC form remains disabled 2008256 - Update Internationalization README with scope info 2008321 - Add correct documentation link for MON_DISK_LOW 2008462 - Disable PodSecurity feature gate for 4.10 2008490 - Backing store details page does not contain all the kebab actions. 2008521 - gcp-hostname service should correct invalid search entries in resolv.conf 2008532 - CreateContainerConfigError:: failed to prepare subPath for volumeMount 2008539 - Registry doesn't fall back to secondary ImageContentSourcePolicy Mirror 2008540 - HighlyAvailableWorkloadIncorrectlySpread always fires on upgrade on cluster with two workers 2008599 - Azure Stack UPI does not have Internal Load Balancer 2008612 - Plugin asset proxy does not pass through browser cache headers 2008712 - VPA webhook timeout prevents all pods from starting 2008733 - kube-scheduler: exposed /debug/pprof port 2008911 - Prometheus repeatedly scaling prometheus-operator replica set 2008926 - [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources [Serial] [Suite:openshift/conformance/serial] 2008987 - OpenShift SDN Hosted Egress IP's are not being scheduled to nodes after upgrade to 4.8.12 2009055 - Instances of OCS to be replaced with ODF on UI 2009078 - NetworkPodsCrashLooping alerts in upgrade CI jobs 2009083 - opm blocks pruning of existing bundles during add 2009111 - [IPI-on-GCP] 'Install a cluster with nested virtualization enabled' failed due to unable to launch compute instances 2009131 - [e2e][automation] add more test about vmi 2009148 - [e2e][automation] test vm nic presets and options 2009233 - ACM policy object generated by PolicyGen conflicting with OLM Operator 2009253 - [BM] [IPI] [DualStack] apiVIP and ingressVIP should be of the same primary IP family 2009298 - Service created for VM SSH access is not owned by the VM and thus is not deleted if the VM is deleted 2009384 - UI changes to support BindableKinds CRD changes 2009404 - ovnkube-node pod enters CrashLoopBackOff after OVN_IMAGE is swapped 2009424 - Deployment upgrade is failing availability check 2009454 - Change web terminal subscription permissions from get to list 2009465 - container-selinux should come from rhel8-appstream 2009514 - Bump OVS to 2.16-15 2009555 - Supermicro X11 system not booting from vMedia with AI 2009623 - Console: Observe > Metrics page: Table pagination menu shows bullet points 2009664 - Git Import: Edit of knative service doesn't work as expected for git import flow 2009699 - Failure to validate flavor RAM 2009754 - Footer is not sticky anymore in import forms 2009785 - CRI-O's version file should be pinned by MCO 2009791 - Installer: ibmcloud ignores install-config values 2009823 - [sig-arch] events should not repeat pathologically - reason/VSphereOlderVersionDetected Marking cluster un-upgradeable because one or more VMs are on hardware version vmx-13 2009840 - cannot build extensions on aarch64 because of unavailability of rhel-8-advanced-virt repo 2009859 - Large number of sessions created by vmware-vsphere-csi-driver-operator during e2e tests 2009873 - Stale Logical Router Policies and Annotations for a given node 2009879 - There should be test-suite coverage to ensure admin-acks work as expected 2009888 - SRO package name collision between official and community version 2010073 - uninstalling and then reinstalling sriov-network-operator is not working 2010174 - 2 PVs get created unexpectedly with different paths that actually refer to the same device on the node. 2010181 - Environment variables not getting reset on reload on deployment edit form 2010310 - [sig-instrumentation][Late] OpenShift alerting rules should have description and summary annotations [Skipped:Disconnected] [Suite:openshift/conformance/parallel] 2010341 - OpenShift Alerting Rules Style-Guide Compliance 2010342 - Local console builds can have out of memory errors 2010345 - OpenShift Alerting Rules Style-Guide Compliance 2010348 - Reverts PIE build mode for K8S components 2010352 - OpenShift Alerting Rules Style-Guide Compliance 2010354 - OpenShift Alerting Rules Style-Guide Compliance 2010359 - OpenShift Alerting Rules Style-Guide Compliance 2010368 - OpenShift Alerting Rules Style-Guide Compliance 2010376 - OpenShift Alerting Rules Style-Guide Compliance 2010662 - Cluster is unhealthy after image-registry-operator tests 2010663 - OpenShift Alerting Rules Style-Guide Compliance (ovn-kubernetes subcomponent) 2010665 - Bootkube tries to use oc after cluster bootstrap is done and there is no API 2010698 - [BM] [IPI] [Dual Stack] Installer must ensure ipv6 short forms too if clusterprovisioning IP is specified as ipv6 address 2010719 - etcdHighNumberOfFailedGRPCRequests runbook is missing 2010864 - Failure building EFS operator 2010910 - ptp worker events unable to identify interface for multiple interfaces 2010911 - RenderOperatingSystem() returns wrong OS version on OCP 4.7.24 2010921 - Azure Stack Hub does not handle additionalTrustBundle 2010931 - SRO CSV uses non default category "Drivers and plugins" 2010946 - concurrent CRD from ovirt-csi-driver-operator gets reconciled by CVO after deployment, changing CR as well. 2011038 - optional operator conditions are confusing 2011063 - CVE-2021-39226 grafana: Snapshot authentication bypass 2011171 - diskmaker-manager constantly redeployed by LSO when creating LV's 2011293 - Build pod are not pulling images if we are not explicitly giving the registry name with the image 2011368 - Tooltip in pipeline visualization shows misleading data 2011386 - [sig-arch] Check if alerts are firing during or after upgrade success --- alert KubePodNotReady fired for 60 seconds with labels 2011411 - Managed Service's Cluster overview page contains link to missing Storage dashboards 2011443 - Cypress tests assuming Admin Perspective could fail on shared/reference cluster 2011513 - Kubelet rejects pods that use resources that should be freed by completed pods 2011668 - Machine stuck in deleting phase in VMware "reconciler failed to Delete machine" 2011693 - (release-4.10) "insightsclient_request_recvreport_total" metric is always incremented 2011698 - After upgrading cluster to 4.8 the kube-state-metrics service doesn't export namespace labels anymore 2011733 - Repository README points to broken documentarion link 2011753 - Ironic resumes clean before raid configuration job is actually completed 2011809 - The nodes page in the openshift console doesn't work. You just get a blank page 2011822 - Obfuscation doesn't work at clusters with OVN 2011882 - SRO helm charts not synced with templates 2011893 - Validation: BMC driver ipmi is not supported for secure UEFI boot 2011896 - [4.10] ClusterVersion Upgradeable=False MultipleReasons should include all messages 2011903 - vsphere-problem-detector: session leak 2011927 - OLM should allow users to specify a proxy for GRPC connections 2011956 - [tracker] Kubelet rejects pods that use resources that should be freed by completed pods 2011960 - [tracker] Storage operator is not available after reboot cluster instances 2011971 - ICNI2 pods are stuck in ContainerCreating state 2011972 - Ingress operator not creating wildcard route for hypershift clusters 2011977 - SRO bundle references non-existent image 2012069 - Refactoring Status controller 2012177 - [OCP 4.9 + OCS 4.8.3] Overview tab is missing under Storage after successful deployment on UI 2012228 - ibmcloud: credentialsrequests invalid for machine-api-operator: resource-group 2012233 - [IBMCLOUD] IPI: "Exceeded limit of remote rules per security group (the limit is 5 remote rules per security group)" 2012235 - [IBMCLOUD] IPI: IBM cloud provider requires ResourceGroupName in cloudproviderconfig 2012317 - Dynamic Plugins: ListPageCreateDropdown items cut off 2012407 - [e2e][automation] improve vm tab console tests 2012426 - ThanosSidecarBucketOperationsFailed/ThanosSidecarUnhealthy alerts don't have namespace label 2012562 - migration condition is not detected in list view 2012770 - when using expression metric openshift_apps_deploymentconfigs_last_failed_rollout_time namespace label is re-written 2012780 - The port 50936 used by haproxy is occupied by kube-apiserver 2012838 - Setting the default maximum container root partition size for Overlay with CRI-O stop working 2012902 - Neutron Ports assigned to Completed Pods are not reused Edit 2012915 - kube_persistentvolumeclaim_labels and kube_persistentvolume_labels are missing in OCP 4.8 monitoring stack 2012971 - Disable operands deletes 2013034 - Cannot install to openshift-nmstate namespace 2013127 - OperatorHub links could not be opened in a new tabs (sharing and open a deep link works fine) 2013199 - post reboot of node SRIOV policy taking huge time 2013203 - UI breaks when trying to create block pool before storage cluster/system creation 2013222 - Full breakage for nightly payload promotion 2013273 - Nil pointer exception when phc2sys options are missing 2013321 - TuneD: high CPU utilization of the TuneD daemon. 2013416 - Multiple assets emit different content to the same filename 2013431 - Application selector dropdown has incorrect font-size and positioning 2013528 - mapi_current_pending_csr is always set to 1 on OpenShift Container Platform 4.8 2013545 - Service binding created outside topology is not visible 2013599 - Scorecard support storage is not included in ocp4.9 2013632 - Correction/Changes in Quick Start Guides for ODF 4.9 (Install ODF guide) 2013646 - fsync controller will show false positive if gaps in metrics are observed. 2013710 - ZTP Operator subscriptions for 4.9 release branch should point to 4.9 by default 2013751 - Service details page is showing wrong in-cluster hostname 2013787 - There are two tittle 'Network Attachment Definition Details' on NAD details page 2013871 - Resource table headings are not aligned with their column data 2013895 - Cannot enable accelerated network via MachineSets on Azure 2013920 - "--collector.filesystem.ignored-mount-points is DEPRECATED and will be removed in 2.0.0, use --collector.filesystem.mount-points-exclude" 2013930 - Create Buttons enabled for Bucket Class, Backingstore and Namespace Store in the absence of Storagesystem(or MCG) 2013969 - oVIrt CSI driver fails on creating PVCs on hosted engine storage domain 2013990 - Observe dashboard crashs on reload when perspective has changed (in another tab) 2013996 - Project detail page: Action "Delete Project" does nothing for the default project 2014071 - Payload imagestream new tags not properly updated during cluster upgrade 2014153 - SRIOV exclusive pooling 2014202 - [OCP-4.8.10] OVN-Kubernetes: service IP is not responding when egressIP set to the namespace 2014238 - AWS console test is failing on importing duplicate YAML definitions 2014245 - Several aria-labels, external links, and labels aren't internationalized 2014248 - Several files aren't internationalized 2014352 - Could not filter out machine by using node name on machines page 2014464 - Unexpected spacing/padding below navigation groups in developer perspective 2014471 - Helm Release notes tab is not automatically open after installing a chart for other languages 2014486 - Integration Tests: OLM single namespace operator tests failing 2014488 - Custom operator cannot change orders of condition tables 2014497 - Regex slows down different forms and creates too much recursion errors in the log 2014538 - Kuryr controller crash looping on self._get_vip_port(loadbalancer).id 'NoneType' object has no attribute 'id' 2014614 - Metrics scraping requests should be assigned to exempt priority level 2014710 - TestIngressStatus test is broken on Azure 2014954 - The prometheus-k8s-{0,1} pods are CrashLoopBackoff repeatedly 2014995 - oc adm must-gather cannot gather audit logs with 'None' audit profile 2015115 - [RFE] PCI passthrough 2015133 - [IBMCLOUD] ServiceID API key credentials seems to be insufficient for ccoctl '--resource-group-name' parameter 2015154 - Support ports defined networks and primarySubnet 2015274 - Yarn dev fails after updates to dynamic plugin JSON schema logic 2015337 - 4.9.0 GA MetalLB operator image references need to be adjusted to match production 2015386 - Possibility to add labels to the built-in OCP alerts 2015395 - Table head on Affinity Rules modal is not fully expanded 2015416 - CI implementation for Topology plugin 2015418 - Project Filesystem query returns No datapoints found 2015420 - No vm resource in project view's inventory 2015422 - No conflict checking on snapshot name 2015472 - Form and YAML view switch button should have distinguishable status 2015481 - [4.10] sriov-network-operator daemon pods are failing to start 2015493 - Cloud Controller Manager Operator does not respect 'additionalTrustBundle' setting 2015496 - Storage - PersistentVolumes : Claim colum value 'No Claim' in English 2015498 - [UI] Add capacity when not applicable (for MCG only deployment and External mode cluster) fails to pass any info. to user and tries to just load a blank screen on 'Add Capacity' button click 2015506 - Home - Search - Resources - APIRequestCount : hard to select an item from ellipsis menu 2015515 - Kubelet checks all providers even if one is configured: NoCredentialProviders: no valid providers in chain. 2015535 - Administration - ResourceQuotas - ResourceQuota details: Inside Pie chart 'x% used' is in English 2015549 - Observe - Metrics: Column heading and pagination text is in English 2015557 - Workloads - DeploymentConfigs : Error message is in English 2015568 - Compute - Nodes : CPU column's values are in English 2015635 - Storage operator fails causing installation to fail on ASH 2015660 - "Finishing boot source customization" screen should not use term "patched" 2015793 - [hypershift] The collect-profiles job's pods should run on the control-plane node 2015806 - Metrics view in Deployment reports "Forbidden" when not cluster-admin 2015819 - Conmon sandbox processes run on non-reserved CPUs with workload partitioning 2015837 - OS_CLOUD overwrites install-config's platform.openstack.cloud 2015950 - update from 4.7.22 to 4.8.11 is failing due to large amount of secrets to watch 2015952 - RH CodeReady Workspaces Operator in e2e testing will soon fail 2016004 - [RFE] RHCOS: help determining whether a user-provided image was already booted (Ignition provisioning already performed) 2016008 - [4.10] Bootimage bump tracker 2016052 - No e2e CI presubmit configured for release component azure-file-csi-driver 2016053 - No e2e CI presubmit configured for release component azure-file-csi-driver-operator 2016054 - No e2e CI presubmit configured for release component cluster-autoscaler 2016055 - No e2e CI presubmit configured for release component console 2016058 - openshift-sync does not synchronise in "ose-jenkins:v4.8" 2016064 - No e2e CI presubmit configured for release component ibm-cloud-controller-manager 2016065 - No e2e CI presubmit configured for release component ibmcloud-machine-controllers 2016175 - Pods get stuck in ContainerCreating state when attaching volumes fails on SNO clusters. 2016179 - Add Sprint 208 translations 2016228 - Collect Profiles pprof secret is hardcoded to openshift-operator-lifecycle-manager 2016235 - should update to 7.5.11 for grafana resources version label 2016296 - Openshift virtualization : Create Windows Server 2019 VM using template : Fails 2016334 - shiftstack: SRIOV nic reported as not supported 2016352 - Some pods start before CA resources are present 2016367 - Empty task box is getting created for a pipeline without finally task 2016435 - Duplicate AlertmanagerClusterFailedToSendAlerts alerts 2016438 - Feature flag gating is missing in few extensions contributed via knative plugin 2016442 - OCPonRHV: pvc should be in Bound state and without error when choosing default sc 2016446 - [OVN-Kubernetes] Egress Networkpolicy is failing Intermittently for statefulsets 2016453 - Complete i18n for GaugeChart defaults 2016479 - iface-id-ver is not getting updated for existing lsp 2016925 - Dashboards with All filter, change to a specific value and change back to All, data will disappear 2016951 - dynamic actions list is not disabling "open console" for stopped vms 2016955 - m5.large instance type for bootstrap node is hardcoded causing deployments to fail if instance type is not available 2016988 - NTO does not set io_timeout and max_retries for AWS Nitro instances 2017016 - [REF] Virtualization menu 2017036 - [sig-network-edge][Feature:Idling] Unidling should handle many TCP connections fails in periodic-ci-openshift-release-master-ci-4.9-e2e-openstack-ovn 2017050 - Dynamic Plugins: Shared modules loaded multiple times, breaking use of PatternFly 2017130 - t is not a function error navigating to details page 2017141 - Project dropdown has a dynamic inline width added which can cause min-width issue 2017244 - ovirt csi operator static files creation is in the wrong order 2017276 - [4.10] Volume mounts not created with the correct security context 2017327 - When run opm index prune failed with error removing operator package cic-operator FOREIGN KEY constraint failed. 2017427 - NTO does not restart TuneD daemon when profile application is taking too long 2017535 - Broken Argo CD link image on GitOps Details Page 2017547 - Siteconfig application sync fails with The AgentClusterInstall is invalid: spec.provisionRequirements.controlPlaneAgents: Required value when updating images references 2017564 - On-prem prepender dispatcher script overwrites DNS search settings 2017565 - CCMO does not handle additionalTrustBundle on Azure Stack 2017566 - MetalLB: Web Console -Create Address pool form shows address pool name twice 2017606 - [e2e][automation] add test to verify send key for VNC console 2017650 - [OVN]EgressFirewall cannot be applied correctly if cluster has windows nodes 2017656 - VM IP address is "undefined" under VM details -> ssh field 2017663 - SSH password authentication is disabled when public key is not supplied 2017680 - [gcp] Couldn’t enable support for instances with GPUs on GCP 2017732 - [KMS] Prevent creation of encryption enabled storageclass without KMS connection set 2017752 - (release-4.10) obfuscate identity provider attributes in collected authentication.operator.openshift.io resource 2017756 - overlaySize setting on containerruntimeconfig is ignored due to cri-o defaults 2017761 - [e2e][automation] dummy bug for 4.9 test dependency 2017872 - Add Sprint 209 translations 2017874 - The installer is incorrectly checking the quota for X instances instead of G and VT instances 2017879 - Add Chinese translation for "alternate" 2017882 - multus: add handling of pod UIDs passed from runtime 2017909 - [ICNI 2.0] ovnkube-masters stop processing add/del events for pods 2018042 - HorizontalPodAutoscaler CPU averageValue did not show up in HPA metrics GUI 2018093 - Managed cluster should ensure control plane pods do not run in best-effort QoS 2018094 - the tooltip length is limited 2018152 - CNI pod is not restarted when It cannot start servers due to ports being used 2018208 - e2e-metal-ipi-ovn-ipv6 are failing 75% of the time 2018234 - user settings are saved in local storage instead of on cluster 2018264 - Delete Export button doesn't work in topology sidebar (general issue with unknown CSV?) 2018272 - Deployment managed by link and topology sidebar links to invalid resource page (at least for Exports) 2018275 - Topology graph doesn't show context menu for Export CSV 2018279 - Edit and Delete confirmation modals for managed resource should close when the managed resource is clicked 2018380 - Migrate docs links to access.redhat.com 2018413 - Error: context deadline exceeded, OCP 4.8.9 2018428 - PVC is deleted along with VM even with "Delete Disks" unchecked 2018445 - [e2e][automation] enhance tests for downstream 2018446 - [e2e][automation] move tests to different level 2018449 - [e2e][automation] add test about create/delete network attachment definition 2018490 - [4.10] Image provisioning fails with file name too long 2018495 - Fix typo in internationalization README 2018542 - Kernel upgrade does not reconcile DaemonSet 2018880 - Get 'No datapoints found.' when query metrics about alert rule KubeCPUQuotaOvercommit and KubeMemoryQuotaOvercommit 2018884 - QE - Adapt crw-basic feature file to OCP 4.9/4.10 changes 2018935 - go.sum not updated, that ART extracts version string from, WAS: Missing backport from 4.9 for Kube bump PR#950 2018965 - e2e-metal-ipi-upgrade is permafailing in 4.10 2018985 - The rootdisk size is 15Gi of windows VM in customize wizard 2019001 - AWS: Operator degraded (CredentialsFailing): 1 of 6 credentials requests are failing to sync. 2019096 - Update SRO leader election timeout to support SNO 2019129 - SRO in operator hub points to wrong repo for README 2019181 - Performance profile does not apply 2019198 - ptp offset metrics are not named according to the log output 2019219 - [IBMCLOUD]: cloud-provider-ibm missing IAM permissions in CCCMO CredentialRequest 2019284 - Stop action should not in the action list while VMI is not running 2019346 - zombie processes accumulation and Argument list too long 2019360 - [RFE] Virtualization Overview page 2019452 - Logger object in LSO appends to existing logger recursively 2019591 - Operator install modal body that scrolls has incorrect padding causing shadow position to be incorrect 2019634 - Pause and migration is enabled in action list for a user who has view only permission 2019636 - Actions in VM tabs should be disabled when user has view only permission 2019639 - "Take snapshot" should be disabled while VM image is still been importing 2019645 - Create button is not removed on "Virtual Machines" page for view only user 2019646 - Permission error should pop-up immediately while clicking "Create VM" button on template page for view only user 2019647 - "Remove favorite" and "Create new Template" should be disabled in template action list for view only user 2019717 - cant delete VM with un-owned pvc attached 2019722 - The shared-resource-csi-driver-node pod runs as “BestEffort” qosClass 2019739 - The shared-resource-csi-driver-node uses imagePullPolicy as "Always" 2019744 - [RFE] Suggest users to download newest RHEL 8 version 2019809 - [OVN][Upgrade] After upgrade to 4.7.34 ovnkube-master pods are in CrashLoopBackOff/ContainerCreating and other multiple issues at OVS/OVN level 2019827 - Display issue with top-level menu items running demo plugin 2019832 - 4.10 Nightlies blocked: Failed to upgrade authentication, operator was degraded 2019886 - Kuryr unable to finish ports recovery upon controller restart 2019948 - [RFE] Restructring Virtualization links 2019972 - The Nodes section doesn't display the csr of the nodes that are trying to join the cluster 2019977 - Installer doesn't validate region causing binary to hang with a 60 minute timeout 2019986 - Dynamic demo plugin fails to build 2019992 - instance:node_memory_utilisation:ratio metric is incorrect 2020001 - Update dockerfile for demo dynamic plugin to reflect dir change 2020003 - MCD does not regard "dangling" symlinks as a files, attempts to write through them on next backup, resulting in "not writing through dangling symlink" error and degradation. 2020107 - cluster-version-operator: remove runlevel from CVO namespace 2020153 - Creation of Windows high performance VM fails 2020216 - installer: Azure storage container blob where is stored bootstrap.ign file shouldn't be public 2020250 - Replacing deprecated ioutil 2020257 - Dynamic plugin with multiple webpack compilation passes may fail to build 2020275 - ClusterOperators link in console returns blank page during upgrades 2020377 - permissions error while using tcpdump option with must-gather 2020489 - coredns_dns metrics don't include the custom zone metrics data due to CoreDNS prometheus plugin is not defined 2020498 - "Show PromQL" button is disabled 2020625 - [AUTH-52] User fails to login from web console with keycloak OpenID IDP after enable group membership sync feature 2020638 - [4.7] CI conformance test failures related to CustomResourcePublishOpenAPI 2020664 - DOWN subports are not cleaned up 2020904 - When trying to create a connection from the Developer view between VMs, it fails 2021016 - 'Prometheus Stats' of dashboard 'Prometheus Overview' miss data on console compared with Grafana 2021017 - 404 page not found error on knative eventing page 2021031 - QE - Fix the topology CI scripts 2021048 - [RFE] Added MAC Spoof check 2021053 - Metallb operator presented as community operator 2021067 - Extensive number of requests from storage version operator in cluster 2021081 - Missing PolicyGenTemplate for configuring Local Storage Operator LocalVolumes 2021135 - [azure-file-csi-driver] "make unit-test" returns non-zero code, but tests pass 2021141 - Cluster should allow a fast rollout of kube-apiserver is failing on single node 2021151 - Sometimes the DU node does not get the performance profile configuration applied and MachineConfigPool stays stuck in Updating 2021152 - imagePullPolicy is "Always" for ptp operator images 2021191 - Project admins should be able to list available network attachment defintions 2021205 - Invalid URL in git import form causes validation to not happen on URL change 2021322 - cluster-api-provider-azure should populate purchase plan information 2021337 - Dynamic Plugins: ResourceLink doesn't render when passed a groupVersionKind 2021364 - Installer requires invalid AWS permission s3:GetBucketReplication 2021400 - Bump documentationBaseURL to 4.10 2021405 - [e2e][automation] VM creation wizard Cloud Init editor 2021433 - "[sig-builds][Feature:Builds][pullsearch] docker build where the registry is not specified" test fail permanently on disconnected 2021466 - [e2e][automation] Windows guest tool mount 2021544 - OCP 4.6.44 - Ingress VIP assigned as secondary IP in ovs-if-br-ex and added to resolv.conf as nameserver 2021551 - Build is not recognizing the USER group from an s2i image 2021607 - Unable to run openshift-install with a vcenter hostname that begins with a numeric character 2021629 - api request counts for current hour are incorrect 2021632 - [UI] Clicking on odf-operator breadcrumb from StorageCluster details page displays empty page 2021693 - Modals assigned modal-lg class are no longer the correct width 2021724 - Observe > Dashboards: Graph lines are not visible when obscured by other lines 2021731 - CCO occasionally down, reporting networksecurity.googleapis.com API as disabled 2021936 - Kubelet version in RPMs should be using Dockerfile label instead of git tags 2022050 - [BM][IPI] Failed during bootstrap - unable to read client-key /var/lib/kubelet/pki/kubelet-client-current.pem 2022053 - dpdk application with vhost-net is not able to start 2022114 - Console logging every proxy request 2022144 - 1 of 3 ovnkube-master pods stuck in clbo after ipi bm deployment - dualstack (Intermittent) 2022251 - wait interval in case of a failed upload due to 403 is unnecessarily long 2022399 - MON_DISK_LOW troubleshooting guide link when clicked, gives 404 error . 2022447 - ServiceAccount in manifests conflicts with OLM 2022502 - Patternfly tables with a checkbox column are not displaying correctly because of conflicting css rules. 2022509 - getOverrideForManifest does not check manifest.GVK.Group 2022536 - WebScale: duplicate ecmp next hop error caused by multiple of the same gateway IPs in ovnkube cache 2022612 - no namespace field for "Kubernetes / Compute Resources / Namespace (Pods)" admin console dashboard 2022627 - Machine object not picking up external FIP added to an openstack vm 2022646 - configure-ovs.sh failure - Error: unknown connection 'WARN:' 2022707 - Observe / monitoring dashboard shows forbidden errors on Dev Sandbox 2022801 - Add Sprint 210 translations 2022811 - Fix kubelet log rotation file handle leak 2022812 - [SCALE] ovn-kube service controller executes unnecessary load balancer operations 2022824 - Large number of sessions created by vmware-vsphere-csi-driver-operator during e2e tests 2022880 - Pipeline renders with minor visual artifact with certain task dependencies 2022886 - Incorrect URL in operator description 2023042 - CRI-O filters custom runtime allowed annotation when both custom workload and custom runtime sections specified under the config 2023060 - [e2e][automation] Windows VM with CDROM migration 2023077 - [e2e][automation] Home Overview Virtualization status 2023090 - [e2e][automation] Examples of Import URL for VM templates 2023102 - [e2e][automation] Cloudinit disk of VM from custom template 2023216 - ACL for a deleted egressfirewall still present on node join switch 2023228 - Remove Tech preview badge on Trigger components 1.6 OSP on OCP 4.9 2023238 - [sig-devex][Feature:ImageEcosystem][python][Slow] hot deploy for openshift python image Django example should work with hot deploy 2023342 - SCC admission should take ephemeralContainers into account 2023356 - Devfiles can't be loaded in Safari on macOS (403 - Forbidden) 2023434 - Update Azure Machine Spec API to accept Marketplace Images 2023500 - Latency experienced while waiting for volumes to attach to node 2023522 - can't remove package from index: database is locked 2023560 - "Network Attachment Definitions" has no project field on the top in the list view 2023592 - [e2e][automation] add mac spoof check for nad 2023604 - ACL violation when deleting a provisioning-configuration resource 2023607 - console returns blank page when normal user without any projects visit Installed Operators page 2023638 - Downgrade support level for extended control plane integration to Dev Preview 2023657 - inconsistent behaviours of adding ssh key on rhel node between 4.9 and 4.10 2023675 - Changing CNV Namespace 2023779 - Fix Patch 104847 in 4.9 2023781 - initial hardware devices is not loading in wizard 2023832 - CCO updates lastTransitionTime for non-Status changes 2023839 - Bump recommended FCOS to 34.20211031.3.0 2023865 - Console css overrides prevent dynamic plug-in PatternFly tables from displaying correctly 2023950 - make test-e2e-operator on kubernetes-nmstate results in failure to pull image from "registry:5000" repository 2023985 - [4.10] OVN idle service cannot be accessed after upgrade from 4.8 2024055 - External DNS added extra prefix for the TXT record 2024108 - Occasionally node remains in SchedulingDisabled state even after update has been completed sucessfully 2024190 - e2e-metal UPI is permafailing with inability to find rhcos.json 2024199 - 400 Bad Request error for some queries for the non admin user 2024220 - Cluster monitoring checkbox flickers when installing Operator in all-namespace mode 2024262 - Sample catalog is not displayed when one API call to the backend fails 2024309 - cluster-etcd-operator: defrag controller needs to provide proper observability 2024316 - modal about support displays wrong annotation 2024328 - [oVirt / RHV] PV disks are lost when machine deleted while node is disconnected 2024399 - Extra space is in the translated text of "Add/Remove alternate service" on Create Route page 2024448 - When ssh_authorized_keys is empty in form view it should not appear in yaml view 2024493 - Observe > Alerting > Alerting rules page throws error trying to destructure undefined 2024515 - test-blocker: Ceph-storage-plugin tests failing 2024535 - hotplug disk missing OwnerReference 2024537 - WINDOWS_IMAGE_LINK does not refer to windows cloud image 2024547 - Detail page is breaking for namespace store , backing store and bucket class. 2024551 - KMS resources not getting created for IBM FlashSystem storage 2024586 - Special Resource Operator(SRO) - Empty image in BuildConfig when using RT kernel 2024613 - pod-identity-webhook starts without tls 2024617 - vSphere CSI tests constantly failing with Rollout of the monitoring stack failed and is degraded 2024665 - Bindable services are not shown on topology 2024731 - linuxptp container: unnecessary checking of interfaces 2024750 - i18n some remaining OLM items 2024804 - gcp-pd-csi-driver does not use trusted-ca-bundle when cluster proxy configured 2024826 - [RHOS/IPI] Masters are not joining a clusters when installing on OpenStack 2024841 - test Keycloak with latest tag 2024859 - Not able to deploy an existing image from private image registry using developer console 2024880 - Egress IP breaks when network policies are applied 2024900 - Operator upgrade kube-apiserver 2024932 - console throws "Unauthorized" error after logging out 2024933 - openshift-sync plugin does not sync existing secrets/configMaps on start up 2025093 - Installer does not honour diskformat specified in storage policy and defaults to zeroedthick 2025230 - ClusterAutoscalerUnschedulablePods should not be a warning 2025266 - CreateResource route has exact prop which need to be removed 2025301 - [e2e][automation] VM actions availability in different VM states 2025304 - overwrite storage section of the DV spec instead of the pvc section 2025431 - [RFE]Provide specific windows source link 2025458 - [IPI-AWS] cluster-baremetal-operator pod in a crashloop state after patching from 4.7.21 to 4.7.36 2025464 - [aws] openshift-install gather bootstrap collects logs for bootstrap and only one master node 2025467 - [OVN-K][ETP=local] Host to service backed by ovn pods doesn't work for ExternalTrafficPolicy=local 2025481 - Update VM Snapshots UI 2025488 - [DOCS] Update the doc for nmstate operator installation 2025592 - ODC 4.9 supports invalid devfiles only 2025765 - It should not try to load from storageProfile after unchecking"Apply optimized StorageProfile settings" 2025767 - VMs orphaned during machineset scaleup 2025770 - [e2e] non-priv seems looking for v2v-vmware configMap in ns "kubevirt-hyperconverged" while using customize wizard 2025788 - [IPI on azure]Pre-check on IPI Azure, should check VM Size’s vCPUsAvailable instead of vCPUs for the sku. 2025821 - Make "Network Attachment Definitions" available to regular user 2025823 - The console nav bar ignores plugin separator in existing sections 2025830 - CentOS capitalizaion is wrong 2025837 - Warn users that the RHEL URL expire 2025884 - External CCM deploys openstack-cloud-controller-manager from quay.io/openshift/origin- 2025903 - [UI] RoleBindings tab doesn't show correct rolebindings 2026104 - [sig-imageregistry][Feature:ImageAppend] Image append should create images by appending them [Skipped:Disconnected] [Suite:openshift/conformance/parallel] 2026178 - OpenShift Alerting Rules Style-Guide Compliance 2026209 - Updation of task is getting failed (tekton hub integration) 2026223 - Internal error occurred: failed calling webhook "ptpconfigvalidationwebhook.openshift.io" 2026321 - [UPI on Azure] Shall we remove allowedValue about VMSize in ARM templates 2026343 - [upgrade from 4.5 to 4.6] .status.connectionState.address of catsrc community-operators is not correct 2026352 - Kube-Scheduler revision-pruner fail during install of new cluster 2026374 - aws-pod-identity-webhook go.mod version out of sync with build environment 2026383 - Error when rendering custom Grafana dashboard through ConfigMap 2026387 - node tuning operator metrics endpoint serving old certificates after certificate rotation 2026396 - Cachito Issues: sriov-network-operator Image build failure 2026488 - openshift-controller-manager - delete event is repeating pathologically 2026489 - ThanosRuleRuleEvaluationLatencyHigh alerts when a big quantity of alerts defined. 2026560 - Cluster-version operator does not remove unrecognized volume mounts 2026699 - fixed a bug with missing metadata 2026813 - add Mellanox CX-6 Lx DeviceID 101f NIC support in SR-IOV Operator 2026898 - Description/details are missing for Local Storage Operator 2027132 - Use the specific icon for Fedora and CentOS template 2027238 - "Node Exporter / USE Method / Cluster" CPU utilization graph shows incorrect legend 2027272 - KubeMemoryOvercommit alert should be human readable 2027281 - [Azure] External-DNS cannot find the private DNS zone in the resource group 2027288 - Devfile samples can't be loaded after fixing it on Safari (redirect caching issue) 2027299 - The status of checkbox component is not revealed correctly in code 2027311 - K8s watch hooks do not work when fetching core resources 2027342 - Alert ClusterVersionOperatorDown is firing on OpenShift Container Platform after ca certificate rotation 2027363 - The azure-file-csi-driver and azure-file-csi-driver-operator don't use the downstream images 2027387 - [IBMCLOUD] Terraform ibmcloud-provider buffers entirely the qcow2 image causing spikes of 5GB of RAM during installation 2027498 - [IBMCloud] SG Name character length limitation 2027501 - [4.10] Bootimage bump tracker 2027524 - Delete Application doesn't delete Channels or Brokers 2027563 - e2e/add-flow-ci.feature fix accessibility violations 2027585 - CVO crashes when changing spec.upstream to a cincinnati graph which includes invalid conditional edges 2027629 - Gather ValidatingWebhookConfiguration and MutatingWebhookConfiguration resource definitions 2027685 - openshift-cluster-csi-drivers pods crashing on PSI 2027745 - default samplesRegistry prevents the creation of imagestreams when registrySources.allowedRegistries is enforced 2027824 - ovnkube-master CrashLoopBackoff: panic: Expected slice or struct but got string 2027917 - No settings in hostfirmwaresettings and schema objects for masters 2027927 - sandbox creation fails due to obsolete option in /etc/containers/storage.conf 2027982 - nncp stucked at ConfigurationProgressing 2028019 - Max pending serving CSRs allowed in cluster machine approver is not right for UPI clusters 2028024 - After deleting a SpecialResource, the node is still tagged although the driver is removed 2028030 - Panic detected in cluster-image-registry-operator pod 2028042 - Desktop viewer for Windows VM shows "no Service for the RDP (Remote Desktop Protocol) can be found" 2028054 - Cloud controller manager operator can't get leader lease when upgrading from 4.8 up to 4.9 2028106 - [RFE] Use dynamic plugin actions for kubevirt plugin 2028141 - Console tests doesn't pass on Node.js 15 and 16 2028160 - Remove i18nKey in network-policy-peer-selectors.tsx 2028162 - Add Sprint 210 translations 2028170 - Remove leading and trailing whitespace 2028174 - Add Sprint 210 part 2 translations 2028187 - Console build doesn't pass on Node.js 16 because node-sass doesn't support it 2028217 - Cluster-version operator does not default Deployment replicas to one 2028240 - Multiple CatalogSources causing higher CPU use than necessary 2028268 - Password parameters are listed in FirmwareSchema in spite that cannot and shouldn't be set in HostFirmwareSettings 2028325 - disableDrain should be set automatically on SNO 2028484 - AWS EBS CSI driver's livenessprobe does not respect operator's loglevel 2028531 - Missing netFilter to the list of parameters when platform is OpenStack 2028610 - Installer doesn't retry on GCP rate limiting 2028685 - LSO repeatedly reports errors while diskmaker-discovery pod is starting 2028695 - destroy cluster does not prune bootstrap instance profile 2028731 - The containerruntimeconfig controller has wrong assumption regarding the number of containerruntimeconfigs 2028802 - CRI-O panic due to invalid memory address or nil pointer dereference 2028816 - VLAN IDs not released on failures 2028881 - Override not working for the PerformanceProfile template 2028885 - Console should show an error context if it logs an error object 2028949 - Masthead dropdown item hover text color is incorrect 2028963 - Whereabouts should reconcile stranded IP addresses 2029034 - enabling ExternalCloudProvider leads to inoperative cluster 2029178 - Create VM with wizard - page is not displayed 2029181 - Missing CR from PGT 2029273 - wizard is not able to use if project field is "All Projects" 2029369 - Cypress tests github rate limit errors 2029371 - patch pipeline--worker nodes unexpectedly reboot during scale out 2029394 - missing empty text for hardware devices at wizard review 2029414 - Alibaba Disk snapshots with XFS filesystem cannot be used 2029416 - Alibaba Disk CSI driver does not use credentials provided by CCO / ccoctl 2029521 - EFS CSI driver cannot delete volumes under load 2029570 - Azure Stack Hub: CSI Driver does not use user-ca-bundle 2029579 - Clicking on an Application which has a Helm Release in it causes an error 2029644 - New resource FirmwareSchema - reset_required exists for Dell machines and doesn't for HPE 2029645 - Sync upstream 1.15.0 downstream 2029671 - VM action "pause" and "clone" should be disabled while VM disk is still being importing 2029742 - [ovn] Stale lr-policy-list and snat rules left for egressip 2029750 - cvo keep restart due to it fail to get feature gate value during the initial start stage 2029785 - CVO panic when an edge is included in both edges and conditionaledges 2029843 - Downstream ztp-site-generate-rhel8 4.10 container image missing content(/home/ztp) 2030003 - HFS CRD: Attempt to set Integer parameter to not-numeric string value - no error 2030029 - [4.10][goroutine]Namespace stuck terminating: Failed to delete all resource types, 1 remaining: unexpected items still remain in namespace 2030228 - Fix StorageSpec resources field to use correct API 2030229 - Mirroring status card reflect wrong data 2030240 - Hide overview page for non-privileged user 2030305 - Export App job do not completes 2030347 - kube-state-metrics exposes metrics about resource annotations 2030364 - Shared resource CSI driver monitoring is not setup correctly 2030488 - Numerous Azure CI jobs are Failing with Partially Rendered machinesets 2030534 - Node selector/tolerations rules are evaluated too early 2030539 - Prometheus is not highly available 2030556 - Don't display Description or Message fields for alerting rules if those annotations are missing 2030568 - Operator installation fails to parse operatorframework.io/initialization-resource annotation 2030574 - console service uses older "service.alpha.openshift.io" for the service serving certificates. 2030677 - BOND CNI: There is no option to configure MTU on a Bond interface 2030692 - NPE in PipelineJobListener.upsertWorkflowJob 2030801 - CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache 2030806 - CVE-2021-44717 golang: syscall: don't close fd 0 on ForkExec error 2030847 - PerformanceProfile API version should be v2 2030961 - Customizing the OAuth server URL does not apply to upgraded cluster 2031006 - Application name input field is not autofocused when user selects "Create application" 2031012 - Services of type loadbalancer do not work if the traffic reaches the node from an interface different from br-ex 2031040 - Error screen when open topology sidebar for a Serverless / knative service which couldn't be started 2031049 - [vsphere upi] pod machine-config-operator cannot be started due to panic issue 2031057 - Topology sidebar for Knative services shows a small pod ring with "0 undefined" as tooltip 2031060 - Failing CSR Unit test due to expired test certificate 2031085 - ovs-vswitchd running more threads than expected 2031141 - Some pods not able to reach k8s api svc IP 198.223.0.1 2031228 - CVE-2021-43813 grafana: directory traversal vulnerability 2031502 - [RFE] New common templates crash the ui 2031685 - Duplicated forward upstreams should be removed from the dns operator 2031699 - The displayed ipv6 address of a dns upstream should be case sensitive 2031797 - [RFE] Order and text of Boot source type input are wrong 2031826 - CI tests needed to confirm driver-toolkit image contents 2031831 - OCP Console - Global CSS overrides affecting dynamic plugins 2031839 - Starting from Go 1.17 invalid certificates will render a cluster dysfunctional 2031858 - GCP beta-level Role (was: CCO occasionally down, reporting networksecurity.googleapis.com API as disabled) 2031875 - [RFE]: Provide online documentation for the SRO CRD (via oc explain) 2031926 - [ipv6dualstack] After SVC conversion from single stack only to RequireDualStack, cannot curl NodePort from the node itself 2032006 - openshift-gitops-application-controller-0 failed to schedule with sufficient node allocatable resource 2032111 - arm64 cluster, create project and deploy the example deployment, pod is CrashLoopBackOff due to the image is built on linux+amd64 2032141 - open the alertrule link in new tab, got empty page 2032179 - [PROXY] external dns pod cannot reach to cloud API in the cluster behind a proxy 2032296 - Cannot create machine with ephemeral disk on Azure 2032407 - UI will show the default openshift template wizard for HANA template 2032415 - Templates page - remove "support level" badge and add "support level" column which should not be hard coded 2032421 - [RFE] UI integration with automatic updated images 2032516 - Not able to import git repo with .devfile.yaml 2032521 - openshift-installer intermittent failure on AWS with "Error: Provider produced inconsistent result after apply" when creating the aws_vpc_dhcp_options_association resource 2032547 - hardware devices table have filter when table is empty 2032565 - Deploying compressed files with a MachineConfig resource degrades the MachineConfigPool 2032566 - Cluster-ingress-router does not support Azure Stack 2032573 - Adopting enforces deploy_kernel/ramdisk which does not work with deploy_iso 2032589 - DeploymentConfigs ignore resolve-names annotation 2032732 - Fix styling conflicts due to recent console-wide CSS changes 2032831 - Knative Services and Revisions are not shown when Service has no ownerReference 2032851 - Networking is "not available" in Virtualization Overview 2032926 - Machine API components should use K8s 1.23 dependencies 2032994 - AddressPool IP is not allocated to service external IP wtih aggregationLength 24 2032998 - Can not achieve 250 pods/node with OVNKubernetes in a multiple worker node cluster 2033013 - Project dropdown in user preferences page is broken 2033044 - Unable to change import strategy if devfile is invalid 2033098 - Conjunction in ProgressiveListFooter.tsx is not translatable 2033111 - IBM VPC operator library bump removed global CLI args 2033138 - "No model registered for Templates" shows on customize wizard 2033215 - Flaky CI: crud/other-routes.spec.ts fails sometimes with an cypress ace/a11y AssertionError: 1 accessibility violation was detected 2033239 - [IPI on Alibabacloud] 'openshift-install' gets the wrong region (‘cn-hangzhou’) selected 2033257 - unable to use configmap for helm charts 2033271 - [IPI on Alibabacloud] destroying cluster succeeded, but the resource group deletion wasn’t triggered 2033290 - Product builds for console are failing 2033382 - MAPO is missing machine annotations 2033391 - csi-driver-shared-resource-operator sets unused CVO-manifest annotations 2033403 - Devfile catalog does not show provider information 2033404 - Cloud event schema is missing source type and resource field is using wrong value 2033407 - Secure route data is not pre-filled in edit flow form 2033422 - CNO not allowing LGW conversion from SGW in runtime 2033434 - Offer darwin/arm64 oc in clidownloads 2033489 - CCM operator failing on baremetal platform 2033518 - [aws-efs-csi-driver]Should not accept invalid FSType in sc for AWS EFS driver 2033524 - [IPI on Alibabacloud] interactive installer cannot list existing base domains 2033536 - [IPI on Alibabacloud] bootstrap complains invalid value for alibabaCloud.resourceGroupID when updating "cluster-infrastructure-02-config.yml" status, which leads to bootstrap failed and all master nodes NotReady 2033538 - Gather Cost Management Metrics Custom Resource 2033579 - SRO cannot update the special-resource-lifecycle ConfigMap if the data field is undefined 2033587 - Flaky CI test project-dashboard.scenario.ts: Resource Quotas Card was not found on project detail page 2033634 - list-style-type: disc is applied to the modal dropdowns 2033720 - Update samples in 4.10 2033728 - Bump OVS to 2.16.0-33 2033729 - remove runtime request timeout restriction for azure 2033745 - Cluster-version operator makes upstream update service / Cincinnati requests more frequently than intended 2033749 - Azure Stack Terraform fails without Local Provider 2033750 - Local volume should pull multi-arch image for kube-rbac-proxy 2033751 - Bump kubernetes to 1.23 2033752 - make verify fails due to missing yaml-patch 2033784 - set kube-apiserver degraded=true if webhook matches a virtual resource 2034004 - [e2e][automation] add tests for VM snapshot improvements 2034068 - [e2e][automation] Enhance tests for 4.10 downstream 2034087 - [OVN] EgressIP was assigned to the node which is not egress node anymore 2034097 - [OVN] After edit EgressIP object, the status is not correct 2034102 - [OVN] Recreate the deleted EgressIP object got InvalidEgressIP warning 2034129 - blank page returned when clicking 'Get started' button 2034144 - [OVN AWS] ovn-kube egress IP monitoring cannot detect the failure on ovn-k8s-mp0 2034153 - CNO does not verify MTU migration for OpenShiftSDN 2034155 - [OVN-K] [Multiple External Gateways] Per pod SNAT is disabled 2034170 - Use function.knative.dev for Knative Functions related labels 2034190 - unable to add new VirtIO disks to VMs 2034192 - Prometheus fails to insert reporting metrics when the sample limit is met 2034243 - regular user cant load template list 2034245 - installing a cluster on aws, gcp always fails with "Error: Incompatible provider version" 2034248 - GPU/Host device modal is too small 2034257 - regular user Create VM missing permissions alert 2034285 - [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources [Serial] [Suite:openshift/conformance/serial] 2034287 - do not block upgrades if we can't create storageclass in 4.10 in vsphere 2034300 - Du validator policy is NonCompliant after DU configuration completed 2034319 - Negation constraint is not validating packages 2034322 - CNO doesn't pick up settings required when ExternalControlPlane topology 2034350 - The CNO should implement the Whereabouts IP reconciliation cron job 2034362 - update description of disk interface 2034398 - The Whereabouts IPPools CRD should include the podref field 2034409 - Default CatalogSources should be pointing to 4.10 index images 2034410 - Metallb BGP, BFD: prometheus is not scraping the frr metrics 2034413 - cloud-network-config-controller fails to init with secret "cloud-credentials" not found in manual credential mode 2034460 - Summary: cloud-network-config-controller does not account for different environment 2034474 - Template's boot source is "Unknown source" before and after set enableCommonBootImageImport to true 2034477 - [OVN] Multiple EgressIP objects configured, EgressIPs weren't working properly 2034493 - Change cluster version operator log level 2034513 - [OVN] After update one EgressIP in EgressIP object, one internal IP lost from lr-policy-list 2034527 - IPI deployment fails 'timeout reached while inspecting the node' when provisioning network ipv6 2034528 - [IBM VPC] volumeBindingMode should be WaitForFirstConsumer 2034534 - Update ose-machine-api-provider-openstack images to be consistent with ART 2034537 - Update team 2034559 - KubeAPIErrorBudgetBurn firing outside recommended latency thresholds 2034563 - [Azure] create machine with wrong ephemeralStorageLocation value success 2034577 - Current OVN gateway mode should be reflected on node annotation as well 2034621 - context menu not popping up for application group 2034622 - Allow volume expansion by default in vsphere CSI storageclass 4.10 2034624 - Warn about unsupported CSI driver in vsphere operator 2034647 - missing volumes list in snapshot modal 2034648 - Rebase openshift-controller-manager to 1.23 2034650 - Rebase openshift/builder to 1.23 2034705 - vSphere: storage e2e tests logging configuration data 2034743 - EgressIP: assigning the same egress IP to a second EgressIP object after a ovnkube-master restart does not fail. 2034766 - Special Resource Operator(SRO) - no cert-manager pod created in dual stack environment 2034785 - ptpconfig with summary_interval cannot be applied 2034823 - RHEL9 should be starred in template list 2034838 - An external router can inject routes if no service is added 2034839 - Jenkins sync plugin does not synchronize ConfigMap having label role=jenkins-agent 2034879 - Lifecycle hook's name and owner shouldn't be allowed to be empty 2034881 - Cloud providers components should use K8s 1.23 dependencies 2034884 - ART cannot build the image because it tries to download controller-gen 2034889 - oc adm prune deployments does not work 2034898 - Regression in recently added Events feature 2034957 - update openshift-apiserver to kube 1.23.1 2035015 - ClusterLogForwarding CR remains stuck remediating forever 2035093 - openshift-cloud-network-config-controller never runs on Hypershift cluster 2035141 - [RFE] Show GPU/Host devices in template's details tab 2035146 - "kubevirt-plugin~PVC cannot be empty" shows on add-disk modal while adding existing PVC 2035167 - [cloud-network-config-controller] unable to deleted cloudprivateipconfig when deleting 2035199 - IPv6 support in mtu-migration-dispatcher.yaml 2035239 - e2e-metal-ipi-virtualmedia tests are permanently failing 2035250 - Peering with ebgp peer over multi-hops doesn't work 2035264 - [RFE] Provide a proper message for nonpriv user who not able to add PCI devices 2035315 - invalid test cases for AWS passthrough mode 2035318 - Upgrade management workflow needs to allow custom upgrade graph path for disconnected env 2035321 - Add Sprint 211 translations 2035326 - [ExternalCloudProvider] installation with additional network on workers fails 2035328 - Ccoctl does not ignore credentials request manifest marked for deletion 2035333 - Kuryr orphans ports on 504 errors from Neutron 2035348 - Fix two grammar issues in kubevirt-plugin.json strings 2035393 - oc set data --dry-run=server makes persistent changes to configmaps and secrets 2035409 - OLM E2E test depends on operator package that's no longer published 2035439 - SDN Automatic assignment EgressIP on GCP returned node IP adress not egressIP address 2035453 - [IPI on Alibabacloud] 2 worker machines stuck in Failed phase due to connection to 'ecs-cn-hangzhou.aliyuncs.com' timeout, although the specified region is 'us-east-1' 2035454 - [IPI on Alibabacloud] the OSS bucket created during installation for image registry is not deleted after destroying the cluster 2035467 - UI: Queried metrics can't be ordered on Oberve->Metrics page 2035494 - [SDN Migration]ovnkube-node pods CrashLoopBackOff after sdn migrated to ovn for RHEL workers 2035515 - [IBMCLOUD] allowVolumeExpansion should be true in storage class 2035602 - [e2e][automation] add tests for Virtualization Overview page cards 2035703 - Roles -> RoleBindings tab doesn't show RoleBindings correctly 2035704 - RoleBindings list page filter doesn't apply 2035705 - Azure 'Destroy cluster' get stuck when the cluster resource group is already not existing. 2035757 - [IPI on Alibabacloud] one master node turned NotReady which leads to installation failed 2035772 - AccessMode and VolumeMode is not reserved for customize wizard 2035847 - Two dashes in the Cronjob / Job pod name 2035859 - the output of opm render doesn't contain olm.constraint which is defined in dependencies.yaml 2035882 - [BIOS setting values] Create events for all invalid settings in spec 2035903 - One redundant capi-operator credential requests in “oc adm extract --credentials-requests” 2035910 - [UI] Manual approval options are missing after ODF 4.10 installation starts when Manual Update approval is chosen 2035927 - Cannot enable HighNodeUtilization scheduler profile 2035933 - volume mode and access mode are empty in customize wizard review tab 2035969 - "ip a " shows "Error: Peer netns reference is invalid" after create test pods 2035986 - Some pods under kube-scheduler/kube-controller-manager are using the deprecated annotation 2036006 - [BIOS setting values] Attempt to set Integer parameter results in preparation error 2036029 - New added cloud-network-config operator doesn’t supported aws sts format credential 2036096 - [azure-file-csi-driver] there are no e2e tests for NFS backend 2036113 - cluster scaling new nodes ovs-configuration fails on all new nodes 2036567 - [csi-driver-nfs] Upstream merge: Bump k8s libraries to 1.23 2036569 - [cloud-provider-openstack] Upstream merge: Bump k8s libraries to 1.23 2036577 - OCP 4.10 nightly builds from 4.10.0-0.nightly-s390x-2021-12-18-034912 to 4.10.0-0.nightly-s390x-2022-01-11-233015 fail to upgrade from OCP 4.9.11 and 4.9.12 for network type OVNKubernetes for zVM hypervisor environments 2036622 - sdn-controller crashes when restarted while a previous egress IP assignment exists 2036717 - Valid AlertmanagerConfig custom resource with valid a mute time interval definition is rejected 2036826 - oc adm prune deployments can prune the RC/RS 2036827 - The ccoctl still accepts CredentialsRequests without ServiceAccounts on GCP platform 2036861 - kube-apiserver is degraded while enable multitenant 2036937 - Command line tools page shows wrong download ODO link 2036940 - oc registry login fails if the file is empty or stdout 2036951 - [cluster-csi-snapshot-controller-operator] proxy settings is being injected in container 2036989 - Route URL copy to clipboard button wraps to a separate line by itself 2036990 - ZTP "DU Done inform policy" never becomes compliant on multi-node clusters 2036993 - Machine API components should use Go lang version 1.17 2037036 - The tuned profile goes into degraded status and ksm.service is displayed in the log. 2037061 - aws and gcp CredentialsRequest manifests missing ServiceAccountNames list for cluster-api 2037073 - Alertmanager container fails to start because of startup probe never being successful 2037075 - Builds do not support CSI volumes 2037167 - Some log level in ibm-vpc-block-csi-controller are hard code 2037168 - IBM-specific Deployment manifest for package-server-manager should be excluded on non-IBM cluster-profiles 2037182 - PingSource badge color is not matched with knativeEventing color 2037203 - "Running VMs" card is too small in Virtualization Overview 2037209 - [IPI on Alibabacloud] worker nodes are put in the default resource group unexpectedly 2037237 - Add "This is a CD-ROM boot source" to customize wizard 2037241 - default TTL for noobaa cache buckets should be 0 2037246 - Cannot customize auto-update boot source 2037276 - [IBMCLOUD] vpc-node-label-updater may fail to label nodes appropriately 2037288 - Remove stale image reference 2037331 - Ensure the ccoctl behaviors are similar between aws and gcp on the existing resources 2037483 - Rbacs for Pods within the CBO should be more restrictive 2037484 - Bump dependencies to k8s 1.23 2037554 - Mismatched wave number error message should include the wave numbers that are in conflict 2037622 - [4.10-Alibaba CSI driver][Restore size for volumesnapshot/volumesnapshotcontent is showing as 0 in Snapshot feature for Alibaba platform] 2037635 - impossible to configure custom certs for default console route in ingress config 2037637 - configure custom certificate for default console route doesn't take effect for OCP >= 4.8 2037638 - Builds do not support CSI volumes as volume sources 2037664 - text formatting issue in Installed Operators list table 2037680 - [IPI on Alibabacloud] sometimes operator 'cloud-controller-manager' tells empty VERSION, due to conflicts on listening tcp :8080 2037689 - [IPI on Alibabacloud] sometimes operator 'cloud-controller-manager' tells empty VERSION, due to conflicts on listening tcp :8080 2037801 - Serverless installation is failing on CI jobs for e2e tests 2037813 - Metal Day 1 Networking - networkConfig Field Only Accepts String Format 2037856 - use lease for leader election 2037891 - 403 Forbidden error shows for all the graphs in each grafana dashboard after upgrade from 4.9 to 4.10 2037903 - Alibaba Cloud: delete-ram-user requires the credentials-requests 2037904 - upgrade operator deployment failed due to memory limit too low for manager container 2038021 - [4.10-Alibaba CSI driver][Default volumesnapshot class is not added/present after successful cluster installation] 2038034 - non-privileged user cannot see auto-update boot source 2038053 - Bump dependencies to k8s 1.23 2038088 - Remove ipa-downloader references 2038160 - The default project missed the annotation : openshift.io/node-selector: "" 2038166 - Starting from Go 1.17 invalid certificates will render a cluster non-functional 2038196 - must-gather is missing collecting some metal3 resources 2038240 - Error when configuring a file using permissions bigger than decimal 511 (octal 0777) 2038253 - Validator Policies are long lived 2038272 - Failures to build a PreprovisioningImage are not reported 2038384 - Azure Default Instance Types are Incorrect 2038389 - Failing test: [sig-arch] events should not repeat pathologically 2038412 - Import page calls the git file list unnecessarily twice from GitHub/GitLab/Bitbucket 2038465 - Upgrade chromedriver to 90.x to support Mac M1 chips 2038481 - kube-controller-manager-guard and openshift-kube-scheduler-guard pods being deleted and restarted on a cordoned node when drained 2038596 - Auto egressIP for OVN cluster on GCP: After egressIP object is deleted, egressIP still takes effect 2038663 - update kubevirt-plugin OWNERS 2038691 - [AUTH-8] Panic on user login when the user belongs to a group in the IdP side and the group already exists via "oc adm groups new" 2038705 - Update ptp reviewers 2038761 - Open Observe->Targets page, wait for a while, page become blank 2038768 - All the filters on the Observe->Targets page can't work 2038772 - Some monitors failed to display on Observe->Targets page 2038793 - [SDN EgressIP] After reboot egress node, the egressip was lost from egress node 2038827 - should add user containers in /etc/subuid and /etc/subgid to support run pods in user namespaces 2038832 - New templates for centos stream8 are missing registry suggestions in create vm wizard 2038840 - [SDN EgressIP]cloud-network-config-controller pod was CrashLoopBackOff after some operation 2038864 - E2E tests fail because multi-hop-net was not created 2038879 - All Builds are getting listed in DeploymentConfig under workloads on OpenShift Console 2038934 - CSI driver operators should use the trusted CA bundle when cluster proxy is configured 2038968 - Move feature gates from a carry patch to openshift/api 2039056 - Layout issue with breadcrumbs on API explorer page 2039057 - Kind column is not wide enough in API explorer page 2039064 - Bulk Import e2e test flaking at a high rate 2039065 - Diagnose and fix Bulk Import e2e test that was previously disabled 2039085 - Cloud credential operator configuration failing to apply in hypershift/ROKS clusters 2039099 - [OVN EgressIP GCP] After reboot egress node, egressip that was previously assigned got lost 2039109 - [FJ OCP4.10 Bug]: startironic.sh failed to pull the image of image-customization container when behind a proxy 2039119 - CVO hotloops on Service openshift-monitoring/cluster-monitoring-operator 2039170 - [upgrade]Error shown on registry operator "missing the cloud-provider-config configmap" after upgrade 2039227 - Improve image customization server parameter passing during installation 2039241 - Improve image customization server parameter passing during installation 2039244 - Helm Release revision history page crashes the UI 2039294 - SDN controller metrics cannot be consumed correctly by prometheus 2039311 - oc Does Not Describe Build CSI Volumes 2039315 - Helm release list page should only fetch secrets for deployed charts 2039321 - SDN controller metrics are not being consumed by prometheus 2039330 - Create NMState button doesn't work in OperatorHub web console 2039339 - cluster-ingress-operator should report Unupgradeable if user has modified the aws resources annotations 2039345 - CNO does not verify the minimum MTU value for IPv6/dual-stack clusters. 2039359 - oc adm prune deployments can't prune the RS where the associated Deployment no longer exists 2039382 - gather_metallb_logs does not have execution permission 2039406 - logout from rest session after vsphere operator sync is finished 2039408 - Add GCP region northamerica-northeast2 to allowed regions 2039414 - Cannot see the weights increased for NodeAffinity, InterPodAffinity, TaintandToleration 2039425 - No need to set KlusterletAddonConfig CR applicationManager->enabled: true in RAN ztp deployment 2039491 - oc - git:// protocol used in unit tests 2039516 - Bump OVN to ovn21.12-21.12.0-25 2039529 - Project Dashboard Resource Quotas Card empty state test flaking at a high rate 2039534 - Diagnose and fix Project Dashboard Resource Quotas Card test that was previously disabled 2039541 - Resolv-prepender script duplicating entries 2039586 - [e2e] update centos8 to centos stream8 2039618 - VM created from SAP HANA template leads to 404 page if leave one network parameter empty 2039619 - [AWS] In tree provisioner storageclass aws disk type should contain 'gp3' and csi provisioner storageclass default aws disk type should be 'gp3' 2039670 - Create PDBs for control plane components 2039678 - Page goes blank when create image pull secret 2039689 - [IPI on Alibabacloud] Pay-by-specification NAT is no longer supported 2039743 - React missing key warning when open operator hub detail page (and maybe others as well) 2039756 - React missing key warning when open KnativeServing details 2039770 - Observe dashboard doesn't react on time-range changes after browser reload when perspective is changed in another tab 2039776 - Observe dashboard shows nothing if the URL links to an non existing dashboard 2039781 - [GSS] OBC is not visible by admin of a Project on Console 2039798 - Contextual binding with Operator backed service creates visual connector instead of Service binding connector 2039868 - Insights Advisor widget is not in the disabled state when the Insights Operator is disabled 2039880 - Log level too low for control plane metrics 2039919 - Add E2E test for router compression feature 2039981 - ZTP for standard clusters installs stalld on master nodes 2040132 - Flag --port has been deprecated, This flag has no effect now and will be removed in v1.24. You can use --secure-port instead 2040136 - external-dns-operator pod keeps restarting and reports error: timed out waiting for cache to be synced 2040143 - [IPI on Alibabacloud] suggest to remove region "cn-nanjing" or provide better error message 2040150 - Update ConfigMap keys for IBM HPCS 2040160 - [IPI on Alibabacloud] installation fails when region does not support pay-by-bandwidth 2040285 - Bump build-machinery-go for console-operator to pickup change in yaml-patch repository 2040357 - bump OVN to ovn-2021-21.12.0-11.el8fdp 2040376 - "unknown instance type" error for supported m6i.xlarge instance 2040394 - Controller: enqueue the failed configmap till services update 2040467 - Cannot build ztp-site-generator container image 2040504 - Change AWS EBS GP3 IOPS in MachineSet doesn't take affect in OpenShift 4 2040521 - RouterCertsDegraded certificate could not validate route hostname v4-0-config-system-custom-router-certs.apps 2040535 - Auto-update boot source is not available in customize wizard 2040540 - ovs hardware offload: ovsargs format error when adding vf netdev name 2040603 - rhel worker scaleup playbook failed because missing some dependency of podman 2040616 - rolebindings page doesn't load for normal users 2040620 - [MAPO] Error pulling MAPO image on installation 2040653 - Topology sidebar warns that another component is updated while rendering 2040655 - User settings update fails when selecting application in topology sidebar 2040661 - Different react warnings about updating state on unmounted components when leaving topology 2040670 - Permafailing CI job: periodic-ci-openshift-release-master-nightly-4.10-e2e-gcp-libvirt-cert-rotation 2040671 - [Feature:IPv6DualStack] most tests are failing in dualstack ipi 2040694 - Three upstream HTTPClientConfig struct fields missing in the operator 2040705 - Du policy for standard cluster runs the PTP daemon on masters and workers 2040710 - cluster-baremetal-operator cannot update BMC subscription CR 2040741 - Add CI test(s) to ensure that metal3 components are deployed in vSphere, OpenStack and None platforms 2040782 - Import YAML page blocks input with more then one generateName attribute 2040783 - The Import from YAML summary page doesn't show the resource name if created via generateName attribute 2040791 - Default PGT policies must be 'inform' to integrate with the Lifecycle Operator 2040793 - Fix snapshot e2e failures 2040880 - do not block upgrades if we can't connect to vcenter 2041087 - MetalLB: MetalLB CR is not upgraded automatically from 4.9 to 4.10 2041093 - autounattend.xml missing 2041204 - link to templates in virtualization-cluster-overview inventory card is to all templates 2041319 - [IPI on Alibabacloud] installation in region "cn-shanghai" failed, due to "Resource alicloud_vswitch CreateVSwitch Failed...InvalidCidrBlock.Overlapped" 2041326 - Should bump cluster-kube-descheduler-operator to kubernetes version V1.23 2041329 - aws and gcp CredentialsRequest manifests missing ServiceAccountNames list for cloud-network-config-controller 2041361 - [IPI on Alibabacloud] Disable session persistence and removebBandwidth peak of listener 2041441 - Provision volume with size 3000Gi even if sizeRange: '[10-2000]GiB' in storageclass on IBM cloud 2041466 - Kubedescheduler version is missing from the operator logs 2041475 - React components should have a (mostly) unique name in react dev tools to simplify code analyses 2041483 - MetallB: quay.io/openshift/origin-kube-rbac-proxy:4.10 deploy Metallb CR is missing (controller and speaker pods) 2041492 - Spacing between resources in inventory card is too small 2041509 - GCP Cloud provider components should use K8s 1.23 dependencies 2041510 - cluster-baremetal-operator doesn't run baremetal-operator's subscription webhook 2041541 - audit: ManagedFields are dropped using API not annotation 2041546 - ovnkube: set election timer at RAFT cluster creation time 2041554 - use lease for leader election 2041581 - KubeDescheduler operator log shows "Use of insecure cipher detected" 2041583 - etcd and api server cpu mask interferes with a guaranteed workload 2041598 - Including CA bundle in Azure Stack cloud config causes MCO failure 2041605 - Dynamic Plugins: discrepancy in proxy alias documentation/implementation 2041620 - bundle CSV alm-examples does not parse 2041641 - Fix inotify leak and kubelet retaining memory 2041671 - Delete templates leads to 404 page 2041694 - [IPI on Alibabacloud] installation fails when region does not support the cloud_essd disk category 2041734 - ovs hwol: VFs are unbind when switchdev mode is enabled 2041750 - [IPI on Alibabacloud] trying "create install-config" with region "cn-wulanchabu (China (Ulanqab))" (or "ap-southeast-6 (Philippines (Manila))", "cn-guangzhou (China (Guangzhou))") failed due to invalid endpoint 2041763 - The Observe > Alerting pages no longer have their default sort order applied 2041830 - CI: ovn-kubernetes-master-e2e-aws-ovn-windows is broken 2041854 - Communities / Local prefs are applied to all the services regardless of the pool, and only one community is applied 2041882 - cloud-network-config operator can't work normal on GCP workload identity cluster 2041888 - Intermittent incorrect build to run correlation, leading to run status updates applied to wrong build, builds stuck in non-terminal phases 2041926 - [IPI on Alibabacloud] Installer ignores public zone when it does not exist 2041971 - [vsphere] Reconciliation of mutating webhooks didn't happen 2041989 - CredentialsRequest manifests being installed for ibm-cloud-managed profile 2041999 - [PROXY] external dns pod cannot recognize custom proxy CA 2042001 - unexpectedly found multiple load balancers 2042029 - kubedescheduler fails to install completely 2042036 - [IBMCLOUD] "openshift-install explain installconfig.platform.ibmcloud" contains not yet supported custom vpc parameters 2042049 - Seeing warning related to unrecognized feature gate in kubescheduler & KCM logs 2042059 - update discovery burst to reflect lots of CRDs on openshift clusters 2042069 - Revert toolbox to rhcos-toolbox 2042169 - Can not delete egressnetworkpolicy in Foreground propagation 2042181 - MetalLB: User should not be allowed add same bgp advertisement twice in BGP address pool 2042265 - [IBM]"--scale-down-utilization-threshold" doesn't work on IBMCloud 2042274 - Storage API should be used when creating a PVC 2042315 - Baremetal IPI deployment with IPv6 control plane and disabled provisioning network fails as the nodes do not pass introspection 2042366 - Lifecycle hooks should be independently managed 2042370 - [IPI on Alibabacloud] installer panics when the zone does not have an enhanced NAT gateway 2042382 - [e2e][automation] CI takes more then 2 hours to run 2042395 - Add prerequisites for active health checks test 2042438 - Missing rpms in openstack-installer image 2042466 - Selection does not happen when switching from Topology Graph to List View 2042493 - No way to verify if IPs with leading zeros are still valid in the apiserver 2042567 - insufficient info on CodeReady Containers configuration 2042600 - Alone, the io.kubernetes.cri-o.Devices option poses a security risk 2042619 - Overview page of the console is broken for hypershift clusters 2042655 - [IPI on Alibabacloud] cluster becomes unusable if there is only one kube-apiserver pod running 2042711 - [IBMCloud] Machine Deletion Hook cannot work on IBMCloud 2042715 - [AliCloud] Machine Deletion Hook cannot work on AliCloud 2042770 - [IPI on Alibabacloud] with vpcID & vswitchIDs specified, the installer would still try creating NAT gateway unexpectedly 2042829 - Topology performance: HPA was fetched for each Deployment (Pod Ring) 2042851 - Create template from SAP HANA template flow - VM is created instead of a new template 2042906 - Edit machineset with same machine deletion hook name succeed 2042960 - azure-file CI fails with "gid(0) in storageClass and pod fsgroup(1000) are not equal" 2043003 - [IPI on Alibabacloud] 'destroy cluster' of a failed installation (bug2041694) stuck after 'stage=Nat gateways' 2043042 - [Serial] [sig-auth][Feature:OAuthServer] [RequestHeaders] [IdP] test RequestHeaders IdP [Suite:openshift/conformance/serial] 2043043 - Cluster Autoscaler should use K8s 1.23 dependencies 2043064 - Topology performance: Unnecessary rerenderings in topology nodes (unchanged mobx props) 2043078 - Favorite system projects not visible in the project selector after toggling "Show default projects". 2043117 - Recommended operators links are erroneously treated as external 2043130 - Update CSI sidecars to the latest release for 4.10 2043234 - Missing validation when creating several BGPPeers with the same peerAddress 2043240 - Sync openshift/descheduler with sigs.k8s.io/descheduler 2043254 - crio does not bind the security profiles directory 2043296 - Ignition fails when reusing existing statically-keyed LUKS volume 2043297 - [4.10] Bootimage bump tracker 2043316 - RHCOS VM fails to boot on Nutanix AOS 2043446 - Rebase aws-efs-utils to the latest upstream version. 2043556 - Add proper ci-operator configuration to ironic and ironic-agent images 2043577 - DPU network operator 2043651 - Fix bug with exp. backoff working correcly when setting nextCheck in vsphere operator 2043675 - Too many machines deleted by cluster autoscaler when scaling down 2043683 - Revert bug 2039344 Ignoring IPv6 addresses against etcd cert validation 2043709 - Logging flags no longer being bound to command line 2043721 - Installer bootstrap hosts using outdated kubelet containing bugs 2043731 - [IBMCloud] terraform outputs missing for ibmcloud bootstrap and worker ips for must-gather 2043759 - Bump cluster-ingress-operator to k8s.io/api 1.23 2043780 - Bump router to k8s.io/api 1.23 2043787 - Bump cluster-dns-operator to k8s.io/api 1.23 2043801 - Bump CoreDNS to k8s.io/api 1.23 2043802 - EgressIP stopped working after single egressIP for a netnamespace is switched to the other node of HA pair after the first egress node is shutdown 2043961 - [OVN-K] If pod creation fails, retry doesn't work as expected. 2044201 - Templates golden image parameters names should be supported 2044244 - Builds are failing after upgrading the cluster with builder image [jboss-webserver-5/jws56-openjdk8-openshift-rhel8] 2044248 - [IBMCloud][vpc.block.csi.ibm.io]Cluster common user use the storageclass without parameter “csi.storage.k8s.io/fstype” create pvc,pod successfully but write data to the pod's volume failed of "Permission denied" 2044303 - [ovn][cloud-network-config-controller] cloudprivateipconfigs ips were left after deleting egressip objects 2044347 - Bump to kubernetes 1.23.3 2044481 - collect sharedresource cluster scoped instances with must-gather 2044496 - Unable to create hardware events subscription - failed to add finalizers 2044628 - CVE-2022-21673 grafana: Forward OAuth Identity Token can allow users to access some data sources 2044680 - Additional libovsdb performance and resource consumption fixes 2044704 - Observe > Alerting pages should not show runbook links in 4.10 2044717 - [e2e] improve tests for upstream test environment 2044724 - Remove namespace column on VM list page when a project is selected 2044745 - Upgrading cluster from 4.9 to 4.10 on Azure (ARO) causes the cloud-network-config-controller pod to CrashLoopBackOff 2044808 - machine-config-daemon-pull.service: use cp instead of cat when extracting MCD in OKD 2045024 - CustomNoUpgrade alerts should be ignored 2045112 - vsphere-problem-detector has missing rbac rules for leases 2045199 - SnapShot with Disk Hot-plug hangs 2045561 - Cluster Autoscaler should use the same default Group value as Cluster API 2045591 - Reconciliation of aws pod identity mutating webhook did not happen 2045849 - Add Sprint 212 translations 2045866 - MCO Operator pod spam "Error creating event" warning messages in 4.10 2045878 - Sync upstream 1.16.0 downstream; includes hybrid helm plugin 2045916 - [IBMCloud] Default machine profile in installer is unreliable 2045927 - [FJ OCP4.10 Bug]: Podman failed to pull the IPA image due to the loss of proxy environment 2046025 - [IPI on Alibabacloud] pre-configured alicloud DNS private zone is deleted after destroying cluster, please clarify 2046137 - oc output for unknown commands is not human readable 2046296 - When creating multiple consecutive egressIPs on GCP not all of them get assigned to the instance 2046297 - Bump DB reconnect timeout 2046517 - In Notification drawer, the "Recommendations" header shows when there isn't any recommendations 2046597 - Observe > Targets page may show the wrong service monitor is multiple monitors have the same namespace & label selectors 2046626 - Allow setting custom metrics for Ansible-based Operators 2046683 - [AliCloud]"--scale-down-utilization-threshold" doesn't work on AliCloud 2047025 - Installation fails because of Alibaba CSI driver operator is degraded 2047190 - Bump Alibaba CSI driver for 4.10 2047238 - When using communities and localpreferences together, only localpreference gets applied 2047255 - alibaba: resourceGroupID not found 2047258 - [aws-usgov] fatal error occurred if AMI is not provided for AWS GovCloud regions 2047317 - Update HELM OWNERS files under Dev Console 2047455 - [IBM Cloud] Update custom image os type 2047496 - Add image digest feature 2047779 - do not degrade cluster if storagepolicy creation fails 2047927 - 'oc get project' caused 'Observed a panic: cannot deep copy core.NamespacePhase' when AllRequestBodies is used 2047929 - use lease for leader election 2047975 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel] 2048046 - New route annotation to show another URL or hide topology URL decorator doesn't work for Knative Services 2048048 - Application tab in User Preferences dropdown menus are too wide. 2048050 - Topology list view items are not highlighted on keyboard navigation 2048117 - [IBM]Shouldn't change status.storage.bucket and status.storage.resourceKeyCRN when update sepc.stroage,ibmcos with invalid value 2048413 - Bond CNI: Failed to attach Bond NAD to pod 2048443 - Image registry operator panics when finalizes config deletion 2048478 - [alicloud] CCM deploys alibaba-cloud-controller-manager from quay.io/openshift/origin-* 2048484 - SNO: cluster-policy-controller failed to start due to missing serving-cert/tls.crt 2048598 - Web terminal view is broken 2048836 - ovs-configure mis-detecting the ipv6 status on IPv4 only cluster causing Deployment failure 2048891 - Topology page is crashed 2049003 - 4.10: [IBMCloud] ibm-vpc-block-csi-node does not specify an update strategy, only resource requests, or priority class 2049043 - Cannot create VM from template 2049156 - 'oc get project' caused 'Observed a panic: cannot deep copy core.NamespacePhase' when AllRequestBodies is used 2049886 - Placeholder bug for OCP 4.10.0 metadata release 2049890 - Warning annotation for pods with cpu requests or limits on single-node OpenShift cluster without workload partitioning 2050189 - [aws-efs-csi-driver] Merge upstream changes since v1.3.2 2050190 - [aws-ebs-csi-driver] Merge upstream changes since v1.2.0 2050227 - Installation on PSI fails with: 'openstack platform does not have the required standard-attr-tag network extension' 2050247 - Failing test in periodics: [sig-network] Services should respect internalTrafficPolicy=Local Pod and Node, to Pod (hostNetwork: true) [Feature:ServiceInternalTrafficPolicy] [Skipped:Network/OVNKubernetes] [Suite:openshift/conformance/parallel] [Suite:k8s] 2050250 - Install fails to bootstrap, complaining about DefragControllerDegraded and sad members 2050310 - ContainerCreateError when trying to launch large (>500) numbers of pods across nodes 2050370 - alert data for burn budget needs to be updated to prevent regression 2050393 - ZTP missing support for local image registry and custom machine config 2050557 - Can not push images to image-registry when enabling KMS encryption in AlibabaCloud 2050737 - Remove metrics and events for master port offsets 2050801 - Vsphere upi tries to access vsphere during manifests generation phase 2050883 - Logger object in LSO does not log source location accurately 2051692 - co/image-registry is degrade because ImagePrunerDegraded: Job has reached the specified backoff limit 2052062 - Whereabouts should implement client-go 1.22+ 2052125 - [4.10] Crio appears to be coredumping in some scenarios 2052210 - [aws-c2s] kube-apiserver crashloops due to missing cloud config 2052339 - Failing webhooks will block an upgrade to 4.10 mid-way through the upgrade. 2052458 - [IBM Cloud] ibm-vpc-block-csi-controller does not specify an update strategy, priority class, or only resource requests 2052598 - kube-scheduler should use configmap lease 2052599 - kube-controller-manger should use configmap lease 2052600 - Failed to scaleup RHEL machine against OVN cluster due to jq tool is required by configure-ovs.sh 2052609 - [vSphere CSI driver Operator] RWX volumes counts metrics vsphere_rwx_volumes_total not valid 2052611 - MetalLB: BGPPeer object does not have ability to set ebgpMultiHop 2052612 - MetalLB: Webhook Validation: Two BGPPeers instances can have different router ID set. 2052644 - Infinite OAuth redirect loop post-upgrade to 4.10.0-rc.1 2052666 - [4.10.z] change gitmodules to rhcos-4.10 branch 2052756 - [4.10] PVs are not being cleaned up after PVC deletion 2053175 - oc adm catalog mirror throws 'missing signature key' error when using file://local/index 2053218 - ImagePull fails with error "unable to pull manifest from example.com/busy.box:v5 invalid reference format" 2053252 - Sidepanel for Connectors/workloads in topology shows invalid tabs 2053268 - inability to detect static lifecycle failure 2053314 - requestheader IDP test doesn't wait for cleanup, causing high failure rates 2053323 - OpenShift-Ansible BYOH Unit Tests are Broken 2053339 - Remove dev preview badge from IBM FlashSystem deployment windows 2053751 - ztp-site-generate container is missing convenience entrypoint 2053945 - [4.10] Failed to apply sriov policy on intel nics 2054109 - Missing "app" label 2054154 - RoleBinding in project without subject is causing "Project access" page to fail 2054244 - Latest pipeline run should be listed on the top of the pipeline run list 2054288 - console-master-e2e-gcp-console is broken 2054562 - DPU network operator 4.10 branch need to sync with master 2054897 - Unable to deploy hw-event-proxy operator 2055193 - e2e-metal-ipi-serial-ovn-ipv6 is failing frequently 2055358 - Summary Interval Hardcoded in PTP Operator if Set in the Global Body Instead of Command Line 2055371 - Remove Check which enforces summary_interval must match logSyncInterval 2055689 - [ibm]Operator storage PROGRESSING and DEGRADED is true during fresh install for ocp4.11 2055894 - CCO mint mode will not work for Azure after sunsetting of Active Directory Graph API 2056441 - AWS EFS CSI driver should use the trusted CA bundle when cluster proxy is configured 2056479 - ovirt-csi-driver-node pods are crashing intermittently 2056572 - reconcilePrecaching error: cannot list resource "clusterserviceversions" in API group "operators.coreos.com" at the cluster scope" 2056629 - [4.10] EFS CSI driver can't unmount volumes with "wait: no child processes" 2056878 - (dummy bug) ovn-kubernetes ExternalTrafficPolicy still SNATs 2056928 - Ingresscontroller LB scope change behaviour differs for different values of aws-load-balancer-internal annotation 2056948 - post 1.23 rebase: regression in service-load balancer reliability 2057438 - Service Level Agreement (SLA) always show 'Unknown' 2057721 - Fix Proxy support in RHACM 2.4.2 2057724 - Image creation fails when NMstateConfig CR is empty 2058641 - [4.10] Pod density test causing problems when using kube-burner 2059761 - 4.9.23-s390x-machine-os-content manifest invalid when mirroring content for disconnected install 2060610 - Broken access to public images: Unable to connect to the server: no basic auth credentials 2060956 - service domain can't be resolved when networkpolicy is used in OCP 4.10-rc

    1. References:

    https://access.redhat.com/security/cve/CVE-2014-3577 https://access.redhat.com/security/cve/CVE-2016-10228 https://access.redhat.com/security/cve/CVE-2017-14502 https://access.redhat.com/security/cve/CVE-2018-20843 https://access.redhat.com/security/cve/CVE-2018-1000858 https://access.redhat.com/security/cve/CVE-2019-8625 https://access.redhat.com/security/cve/CVE-2019-8710 https://access.redhat.com/security/cve/CVE-2019-8720 https://access.redhat.com/security/cve/CVE-2019-8743 https://access.redhat.com/security/cve/CVE-2019-8764 https://access.redhat.com/security/cve/CVE-2019-8766 https://access.redhat.com/security/cve/CVE-2019-8769 https://access.redhat.com/security/cve/CVE-2019-8771 https://access.redhat.com/security/cve/CVE-2019-8782 https://access.redhat.com/security/cve/CVE-2019-8783 https://access.redhat.com/security/cve/CVE-2019-8808 https://access.redhat.com/security/cve/CVE-2019-8811 https://access.redhat.com/security/cve/CVE-2019-8812 https://access.redhat.com/security/cve/CVE-2019-8813 https://access.redhat.com/security/cve/CVE-2019-8814 https://access.redhat.com/security/cve/CVE-2019-8815 https://access.redhat.com/security/cve/CVE-2019-8816 https://access.redhat.com/security/cve/CVE-2019-8819 https://access.redhat.com/security/cve/CVE-2019-8820 https://access.redhat.com/security/cve/CVE-2019-8823 https://access.redhat.com/security/cve/CVE-2019-8835 https://access.redhat.com/security/cve/CVE-2019-8844 https://access.redhat.com/security/cve/CVE-2019-8846 https://access.redhat.com/security/cve/CVE-2019-9169 https://access.redhat.com/security/cve/CVE-2019-13050 https://access.redhat.com/security/cve/CVE-2019-13627 https://access.redhat.com/security/cve/CVE-2019-14889 https://access.redhat.com/security/cve/CVE-2019-15903 https://access.redhat.com/security/cve/CVE-2019-19906 https://access.redhat.com/security/cve/CVE-2019-20454 https://access.redhat.com/security/cve/CVE-2019-20807 https://access.redhat.com/security/cve/CVE-2019-25013 https://access.redhat.com/security/cve/CVE-2020-1730 https://access.redhat.com/security/cve/CVE-2020-3862 https://access.redhat.com/security/cve/CVE-2020-3864 https://access.redhat.com/security/cve/CVE-2020-3865 https://access.redhat.com/security/cve/CVE-2020-3867 https://access.redhat.com/security/cve/CVE-2020-3868 https://access.redhat.com/security/cve/CVE-2020-3885 https://access.redhat.com/security/cve/CVE-2020-3894 https://access.redhat.com/security/cve/CVE-2020-3895 https://access.redhat.com/security/cve/CVE-2020-3897 https://access.redhat.com/security/cve/CVE-2020-3899 https://access.redhat.com/security/cve/CVE-2020-3900 https://access.redhat.com/security/cve/CVE-2020-3901 https://access.redhat.com/security/cve/CVE-2020-3902 https://access.redhat.com/security/cve/CVE-2020-8927 https://access.redhat.com/security/cve/CVE-2020-9802 https://access.redhat.com/security/cve/CVE-2020-9803 https://access.redhat.com/security/cve/CVE-2020-9805 https://access.redhat.com/security/cve/CVE-2020-9806 https://access.redhat.com/security/cve/CVE-2020-9807 https://access.redhat.com/security/cve/CVE-2020-9843 https://access.redhat.com/security/cve/CVE-2020-9850 https://access.redhat.com/security/cve/CVE-2020-9862 https://access.redhat.com/security/cve/CVE-2020-9893 https://access.redhat.com/security/cve/CVE-2020-9894 https://access.redhat.com/security/cve/CVE-2020-9895 https://access.redhat.com/security/cve/CVE-2020-9915 https://access.redhat.com/security/cve/CVE-2020-9925 https://access.redhat.com/security/cve/CVE-2020-9952 https://access.redhat.com/security/cve/CVE-2020-10018 https://access.redhat.com/security/cve/CVE-2020-11793 https://access.redhat.com/security/cve/CVE-2020-13434 https://access.redhat.com/security/cve/CVE-2020-14391 https://access.redhat.com/security/cve/CVE-2020-15358 https://access.redhat.com/security/cve/CVE-2020-15503 https://access.redhat.com/security/cve/CVE-2020-25660 https://access.redhat.com/security/cve/CVE-2020-25677 https://access.redhat.com/security/cve/CVE-2020-27618 https://access.redhat.com/security/cve/CVE-2020-27781 https://access.redhat.com/security/cve/CVE-2020-29361 https://access.redhat.com/security/cve/CVE-2020-29362 https://access.redhat.com/security/cve/CVE-2020-29363 https://access.redhat.com/security/cve/CVE-2021-3121 https://access.redhat.com/security/cve/CVE-2021-3326 https://access.redhat.com/security/cve/CVE-2021-3449 https://access.redhat.com/security/cve/CVE-2021-3450 https://access.redhat.com/security/cve/CVE-2021-3516 https://access.redhat.com/security/cve/CVE-2021-3517 https://access.redhat.com/security/cve/CVE-2021-3518 https://access.redhat.com/security/cve/CVE-2021-3520 https://access.redhat.com/security/cve/CVE-2021-3521 https://access.redhat.com/security/cve/CVE-2021-3537 https://access.redhat.com/security/cve/CVE-2021-3541 https://access.redhat.com/security/cve/CVE-2021-3733 https://access.redhat.com/security/cve/CVE-2021-3749 https://access.redhat.com/security/cve/CVE-2021-20305 https://access.redhat.com/security/cve/CVE-2021-21684 https://access.redhat.com/security/cve/CVE-2021-22946 https://access.redhat.com/security/cve/CVE-2021-22947 https://access.redhat.com/security/cve/CVE-2021-25215 https://access.redhat.com/security/cve/CVE-2021-27218 https://access.redhat.com/security/cve/CVE-2021-30666 https://access.redhat.com/security/cve/CVE-2021-30761 https://access.redhat.com/security/cve/CVE-2021-30762 https://access.redhat.com/security/cve/CVE-2021-33928 https://access.redhat.com/security/cve/CVE-2021-33929 https://access.redhat.com/security/cve/CVE-2021-33930 https://access.redhat.com/security/cve/CVE-2021-33938 https://access.redhat.com/security/cve/CVE-2021-36222 https://access.redhat.com/security/cve/CVE-2021-37750 https://access.redhat.com/security/cve/CVE-2021-39226 https://access.redhat.com/security/cve/CVE-2021-41190 https://access.redhat.com/security/cve/CVE-2021-43813 https://access.redhat.com/security/cve/CVE-2021-44716 https://access.redhat.com/security/cve/CVE-2021-44717 https://access.redhat.com/security/cve/CVE-2022-0532 https://access.redhat.com/security/cve/CVE-2022-21673 https://access.redhat.com/security/cve/CVE-2022-24407 https://access.redhat.com/security/updates/classification/#moderate

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYipqONzjgjWX9erEAQjQcBAAgWTjA6Q2NgqfVf63ZpJF1jPurZLPqxDL 0in/5+/wqWaiQ6yk7wM3YBZgviyKnAMCVdrLsaR7R77BvfJcTE3W/fzogxpp6Rne eGT1PTgQRecrSIn+WG4gGSteavTULWOIoPvUiNpiy3Y7fFgjFdah+Nyx3Xd+xehM CEswylOd6Hr03KZ1tS3XL3kGL2botha48Yls7FzDFbNcy6TBAuycmQZifKu8mHaF aDAupVJinDnnVgACeS6CnZTAD+Vrx5W7NIisteXv4x5Hy+jBIUHr8Yge3oxYoFnC Y/XmuOw2KilLZuqFe+KHig45qT+FmNU8E1egcGpNWvmS8hGZfiG1jEQAqDPbZHxp sQAQZLQyz3TvXa29vp4QcsUuMxndIOi+QaK75JmqE06MqMIlFDYpr6eQOIgIZvFO RDZU/qvBjh56ypInoqInBf8KOQMy6eO+r6nFbMGcAfucXmz0EVcSP1oFHAoA1nWN rs1Qz/SO4CvdPERxcr1MLuBLggZ6iqGmHKk5IN0SwcndBHaVJ3j/LBv9m7wBYVry bSvojBDYx5ricbTwB5sGzu7oH5yVl813FA9cjkFpEhBiMtTfI+DKC8ssoRYNHd5Z 7gLW6KWPUIDuCIiiioPZAJMyvJ0IMrNDoQ0lhqPeV7PFdlRhT95M/DagUZOpPVuT b5PUYUBIZLc= =GUDA -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Description:

    Red Hat Advanced Cluster Management for Kubernetes 2.1.6 images

    Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in.

    Bug fixes:

    • RHACM 2.1.6 images (BZ#1940581)

    • When generating the import cluster string, it can include unescaped characters (BZ#1934184)

    • Bugs fixed (https://bugzilla.redhat.com/):

    1853652 - CVE-2020-14040 golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash 1929338 - CVE-2020-35149 mquery: Code injection via merge or clone operation 1934184 - When generating the import cluster string, it can include unescaped characters 1940581 - RHACM 2.1.6 images

    1. Relevant releases/architectures:

    Red Hat JBoss Core Services on RHEL 7 Server - noarch, ppc64, x86_64

    1. Description:

    This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    For details on how to apply this update, refer to:

    https://access.redhat.com/articles/11258

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1941547 - CVE-2021-3450 openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT 1941554 - CVE-2021-3449 openssl: NULL pointer dereference in signature_algorithms processing

    1. Package List:

    Red Hat JBoss Core Services on RHEL 7 Server:

    Source: jbcs-httpd24-httpd-2.4.37-70.jbcs.el7.src.rpm jbcs-httpd24-mod_cluster-native-1.3.14-20.Final_redhat_2.jbcs.el7.src.rpm jbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.src.rpm jbcs-httpd24-mod_jk-1.2.48-13.redhat_1.jbcs.el7.src.rpm jbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.src.rpm jbcs-httpd24-mod_security-2.9.2-60.GA.jbcs.el7.src.rpm jbcs-httpd24-nghttp2-1.39.2-37.jbcs.el7.src.rpm jbcs-httpd24-openssl-1.1.1g-6.jbcs.el7.src.rpm jbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.src.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.src.rpm

    noarch: jbcs-httpd24-httpd-manual-2.4.37-70.jbcs.el7.noarch.rpm

    ppc64: jbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.ppc64.rpm jbcs-httpd24-mod_http2-debuginfo-1.15.7-14.jbcs.el7.ppc64.rpm jbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.ppc64.rpm jbcs-httpd24-mod_md-debuginfo-2.0.8-33.jbcs.el7.ppc64.rpm jbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.ppc64.rpm jbcs-httpd24-openssl-chil-debuginfo-1.0.0-5.jbcs.el7.ppc64.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.ppc64.rpm jbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-20.jbcs.el7.ppc64.rpm

    x86_64: jbcs-httpd24-httpd-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-httpd-debuginfo-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-httpd-devel-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-httpd-selinux-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-httpd-tools-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_cluster-native-1.3.14-20.Final_redhat_2.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_cluster-native-debuginfo-1.3.14-20.Final_redhat_2.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_http2-debuginfo-1.15.7-14.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_jk-ap24-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_jk-debuginfo-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_jk-manual-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_ldap-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_md-debuginfo-2.0.8-33.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_proxy_html-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_security-2.9.2-60.GA.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_security-debuginfo-2.9.2-60.GA.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_session-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-mod_ssl-2.4.37-70.jbcs.el7.x86_64.rpm jbcs-httpd24-nghttp2-1.39.2-37.jbcs.el7.x86_64.rpm jbcs-httpd24-nghttp2-debuginfo-1.39.2-37.jbcs.el7.x86_64.rpm jbcs-httpd24-nghttp2-devel-1.39.2-37.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-1.1.1g-6.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-chil-debuginfo-1.0.0-5.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-debuginfo-1.1.1g-6.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-devel-1.1.1g-6.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-libs-1.1.1g-6.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-perl-1.1.1g-6.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-20.jbcs.el7.x86_64.rpm jbcs-httpd24-openssl-static-1.1.1g-6.jbcs.el7.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. Description:

    Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library. ========================================================================== Ubuntu Security Notice USN-5038-1 August 12, 2021

    postgresql-10, postgresql-12, postgresql-13 vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 21.04
    • Ubuntu 20.04 LTS
    • Ubuntu 18.04 LTS

    Summary:

    Several security issues were fixed in PostgreSQL.

    Software Description: - postgresql-13: Object-relational SQL database - postgresql-12: Object-relational SQL database - postgresql-10: Object-relational SQL database

    Details:

    It was discovered that the PostgresQL planner could create incorrect plans in certain circumstances. A remote attacker could use this issue to cause PostgreSQL to crash, resulting in a denial of service, or possibly obtain sensitive information from memory. (CVE-2021-3677)

    It was discovered that PostgreSQL incorrectly handled certain SSL renegotiation ClientHello messages from clients. A remote attacker could possibly use this issue to cause PostgreSQL to crash, resulting in a denial of service. (CVE-2021-3449)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 21.04: postgresql-13 13.4-0ubuntu0.21.04.1

    Ubuntu 20.04 LTS: postgresql-12 12.8-0ubuntu0.20.04.1

    Ubuntu 18.04 LTS: postgresql-10 10.18-0ubuntu0.18.04.1

    This update uses a new upstream release, which includes additional bug fixes. After a standard system update you need to restart PostgreSQL to make all the necessary changes

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "graalvm",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.3.1.2"
          },
          {
            "_id": null,
            "model": "mysql workbench",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.23"
          },
          {
            "_id": null,
            "model": "simatic cloud connect 7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "cloud volumes ontap mediator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic net cp 1543sp-1",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "simatic pdm",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "9.1.0.7"
          },
          {
            "_id": null,
            "model": "nessus network monitor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.12.1"
          },
          {
            "_id": null,
            "model": "essbase",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.2"
          },
          {
            "_id": null,
            "model": "sma100",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "10.2.0.0"
          },
          {
            "_id": null,
            "model": "multi-domain management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r80.40"
          },
          {
            "_id": null,
            "model": "scalance s627-2m",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "scalance xp-200",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "simatic process historian opc ua server",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "10.0.0"
          },
          {
            "_id": null,
            "model": "simatic cp 1242-7 gprs v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "jd edwards world security",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "a9.4"
          },
          {
            "_id": null,
            "model": "scalance xr524-8c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "tenable.sc",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.13.0"
          },
          {
            "_id": null,
            "model": "simatic rf188ci",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic net cp 1243-1",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "simatic rf185c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "snapcenter",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "nessus network monitor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.13.0"
          },
          {
            "_id": null,
            "model": "mysql connectors",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.23"
          },
          {
            "_id": null,
            "model": "simatic net cp 1543-1",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "tim 1531 irc",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "secure global desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "10.24.0"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "5.7.33"
          },
          {
            "_id": null,
            "model": "scalance xr-300wg",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "sma100",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "10.2.1.0-17sv"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1217c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sinamics connect 300",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "12.12.0"
          },
          {
            "_id": null,
            "model": "nessus network monitor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.11.1"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.58"
          },
          {
            "_id": null,
            "model": "scalance xm-400",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "simatic net cp1243-7 lte eu",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "quantum security gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r81"
          },
          {
            "_id": null,
            "model": "communications communications policy management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "12.6.0.0.0"
          },
          {
            "_id": null,
            "model": "simatic rf360r",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "oncommand workflow automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic hmi comfort outdoor panels",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1214c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "scalance s615",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.15"
          },
          {
            "_id": null,
            "model": "simatic mv500",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1212fc",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sinec pni",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "scalance xf-200ba",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "nessus network monitor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.12.0"
          },
          {
            "_id": null,
            "model": "simatic rf188c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic wincc runtime advanced",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "zfs storage appliance kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.8"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1211c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "nessus",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "8.13.1"
          },
          {
            "_id": null,
            "model": "enterprise manager for storage management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.4.0.0"
          },
          {
            "_id": null,
            "model": "multi-domain management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r81"
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.59"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.7"
          },
          {
            "_id": null,
            "model": "simatic hmi basic panels 2nd generation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.12"
          },
          {
            "_id": null,
            "model": "scalance w700",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "e-series performance analyzer",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "scalance xr552-12",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "simatic net cp1243-7 lte us",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "12.0.0"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "34"
          },
          {
            "_id": null,
            "model": "graalvm",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "19.3.5"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "20.12"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "14.14.0"
          },
          {
            "_id": null,
            "model": "tenable.sc",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.17.0"
          },
          {
            "_id": null,
            "model": "web gateway cloud service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "openssl",
            "version": "1.1.1k"
          },
          {
            "_id": null,
            "model": "simatic rf166c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "scalance xc-200",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1215c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "quantum security management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r80.40"
          },
          {
            "_id": null,
            "model": "scalance xr526-8c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "15.14.0"
          },
          {
            "_id": null,
            "model": "simatic s7-1500 cpu 1518-4 pn\\/dp mfp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "web gateway cloud service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "9.2.10"
          },
          {
            "_id": null,
            "model": "tim 1531 irc",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "17.12"
          },
          {
            "_id": null,
            "model": "sinec infrastructure network services",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.0.1.1"
          },
          {
            "_id": null,
            "model": "graalvm",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.0.0.2"
          },
          {
            "_id": null,
            "model": "secure backup",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "18.1.0.1.0"
          },
          {
            "_id": null,
            "model": "nessus network monitor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "5.11.0"
          },
          {
            "_id": null,
            "model": "storagegrid",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "peoplesoft enterprise peopletools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.57"
          },
          {
            "_id": null,
            "model": "scalance sc-600",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "simatic pcs 7 telecontrol",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1215 fc",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "12.22.1"
          },
          {
            "_id": null,
            "model": "simatic rf186ci",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "10.1.1"
          },
          {
            "_id": null,
            "model": "simatic net cp 1542sp-1 irc",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "capture client",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "simatic logon",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.6.0.2"
          },
          {
            "_id": null,
            "model": "simatic wincc telecontrol",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "active iq unified manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "sonicos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "7.0.1.0"
          },
          {
            "_id": null,
            "model": "jd edwards enterpriseone tools",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.2.6.0"
          },
          {
            "_id": null,
            "model": "oncommand insight",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic pcs neo",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "scalance s623",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "scalance lpe9403",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1214 fc",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "10.13.0"
          },
          {
            "_id": null,
            "model": "log correlation engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "tenable",
            "version": "6.0.9"
          },
          {
            "_id": null,
            "model": "scalance m-800",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "simatic rf186c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "web gateway cloud service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "8.2.19"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "14.0.0"
          },
          {
            "_id": null,
            "model": "primavera unifier",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "21.12"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "9.2.10"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "14.16.1"
          },
          {
            "_id": null,
            "model": "simatic hmi ktp mobile panels",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sinema server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "scalance s612",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "simatic s7-1200 cpu 1212c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "santricity smi-s provider",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "quantum security management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r81"
          },
          {
            "_id": null,
            "model": "scalance xr528-6m",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "tia administrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sinec nms",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "simatic logon",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "freebsd",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "sinumerik opc ua server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "mysql server",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.0.23"
          },
          {
            "_id": null,
            "model": "ontap select deploy administration utility",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "scalance xb-200",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "scalance s602",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "ruggedcom rcm1224",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "10.12.0"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "12.13.0"
          },
          {
            "_id": null,
            "model": "simatic cp 1242-7 gprs v2",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "web gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mcafee",
            "version": "8.2.19"
          },
          {
            "_id": null,
            "model": "quantum security gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "r80.40"
          },
          {
            "_id": null,
            "model": "simatic net cp 1545-1",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "simatic cloud connect 7",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "15.0.0"
          },
          {
            "_id": null,
            "model": "simatic net cp 1243-8 irc",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "scalance w1700",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "node.js",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "nodejs",
            "version": "14.15.0"
          },
          {
            "_id": null,
            "model": "simatic net cp 1543-1",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.2"
          },
          {
            "_id": null,
            "model": "hitachi ops center analyzer viewpoint",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u7acb",
            "version": null
          },
          {
            "_id": null,
            "model": "storagegrid",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "ontap select deploy administration utility",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "quantum security gateway",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30c1\u30a7\u30c3\u30af \u30dd\u30a4\u30f3\u30c8 \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2 \u30c6\u30af\u30ce\u30ed\u30b8\u30fc\u30ba",
            "version": null
          },
          {
            "_id": null,
            "model": "tenable.sc",
            "scope": null,
            "trust": 0.8,
            "vendor": "tenable",
            "version": null
          },
          {
            "_id": null,
            "model": "nessus",
            "scope": null,
            "trust": 0.8,
            "vendor": "tenable",
            "version": null
          },
          {
            "_id": null,
            "model": "oncommand workflow automation",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "hitachi ops center common services",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u7acb",
            "version": null
          },
          {
            "_id": null,
            "model": "santricity smi-s provider",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "mcafee web gateway \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30de\u30ab\u30d5\u30a3\u30fc",
            "version": null
          },
          {
            "_id": null,
            "model": "e-series performance analyzer",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": "jp1/file transmission server/ftp",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u7acb",
            "version": null
          },
          {
            "_id": null,
            "model": "quantum security management",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30c1\u30a7\u30c3\u30af \u30dd\u30a4\u30f3\u30c8 \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2 \u30c6\u30af\u30ce\u30ed\u30b8\u30fc\u30ba",
            "version": null
          },
          {
            "_id": null,
            "model": "openssl",
            "scope": null,
            "trust": 0.8,
            "vendor": "openssl",
            "version": null
          },
          {
            "_id": null,
            "model": "cloud volumes ontap \u30e1\u30c7\u30a3\u30a8\u30fc\u30bf",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "jp1/base",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u7acb",
            "version": null
          },
          {
            "_id": null,
            "model": "gnu/linux",
            "scope": null,
            "trust": 0.8,
            "vendor": "debian",
            "version": null
          },
          {
            "_id": null,
            "model": "web gateway cloud service",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30de\u30ab\u30d5\u30a3\u30fc",
            "version": null
          },
          {
            "_id": null,
            "model": "multi-domain management",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30c1\u30a7\u30c3\u30af \u30dd\u30a4\u30f3\u30c8 \u30bd\u30d5\u30c8\u30a6\u30a7\u30a2 \u30c6\u30af\u30ce\u30ed\u30b8\u30fc\u30ba",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "162383"
          },
          {
            "db": "PACKETSTORM",
            "id": "162183"
          },
          {
            "db": "PACKETSTORM",
            "id": "166279"
          },
          {
            "db": "PACKETSTORM",
            "id": "162337"
          },
          {
            "db": "PACKETSTORM",
            "id": "162196"
          },
          {
            "db": "PACKETSTORM",
            "id": "162201"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2021-3449",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-3449",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 4.3,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "VHN-388130",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "id": "CVE-2021-3449",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "High",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 5.9,
                "baseSeverity": "Medium",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2021-3449",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2021-3449",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2021-3449",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "VULHUB",
                "id": "VHN-388130",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-3449",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j). OpenSSL is an open source general encryption library of the Openssl team that can implement the Secure Sockets Layer (SSLv2/v3) and Transport Layer Security (TLSv1) protocols. The product supports a variety of encryption algorithms, including symmetric ciphers, hash algorithms, secure hash algorithms, etc. On March 25, 2021, the OpenSSL Project released a security advisory, OpenSSL Security Advisory [25 March 2021], that disclosed two vulnerabilities. \nExploitation of these vulnerabilities could allow an malicious user to use a valid non-certificate authority (CA) certificate to act as a CA and sign a certificate for an arbitrary organization, user or device, or to cause a denial of service (DoS) condition. \nThis advisory is available at the following link:tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd. \n\nBug fix:\n\n* RHACM 2.0.10 images (BZ #1940452)\n\n3. Bugs fixed (https://bugzilla.redhat.com/):\n\n1940452 - RHACM 2.0.10 images\n1944286 - CVE-2021-23358 nodejs-underscore: Arbitrary code execution via the template function\n\n5. Solution:\n\nBefore applying the update, back up your existing installation, including\nall applications, configuration files, databases and database settings, and\nso on. \n\nThe References section of this erratum contains a download link for the\nupdate. You must be logged in to download the update. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: OpenShift Container Platform 4.10.3 security update\nAdvisory ID:       RHSA-2022:0056-01\nProduct:           Red Hat OpenShift Enterprise\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2022:0056\nIssue date:        2022-03-10\nCVE Names:         CVE-2014-3577 CVE-2016-10228 CVE-2017-14502 \n                   CVE-2018-20843 CVE-2018-1000858 CVE-2019-8625 \n                   CVE-2019-8710 CVE-2019-8720 CVE-2019-8743 \n                   CVE-2019-8764 CVE-2019-8766 CVE-2019-8769 \n                   CVE-2019-8771 CVE-2019-8782 CVE-2019-8783 \n                   CVE-2019-8808 CVE-2019-8811 CVE-2019-8812 \n                   CVE-2019-8813 CVE-2019-8814 CVE-2019-8815 \n                   CVE-2019-8816 CVE-2019-8819 CVE-2019-8820 \n                   CVE-2019-8823 CVE-2019-8835 CVE-2019-8844 \n                   CVE-2019-8846 CVE-2019-9169 CVE-2019-13050 \n                   CVE-2019-13627 CVE-2019-14889 CVE-2019-15903 \n                   CVE-2019-19906 CVE-2019-20454 CVE-2019-20807 \n                   CVE-2019-25013 CVE-2020-1730 CVE-2020-3862 \n                   CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 \n                   CVE-2020-3868 CVE-2020-3885 CVE-2020-3894 \n                   CVE-2020-3895 CVE-2020-3897 CVE-2020-3899 \n                   CVE-2020-3900 CVE-2020-3901 CVE-2020-3902 \n                   CVE-2020-8927 CVE-2020-9802 CVE-2020-9803 \n                   CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 \n                   CVE-2020-9843 CVE-2020-9850 CVE-2020-9862 \n                   CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 \n                   CVE-2020-9915 CVE-2020-9925 CVE-2020-9952 \n                   CVE-2020-10018 CVE-2020-11793 CVE-2020-13434 \n                   CVE-2020-14391 CVE-2020-15358 CVE-2020-15503 \n                   CVE-2020-25660 CVE-2020-25677 CVE-2020-27618 \n                   CVE-2020-27781 CVE-2020-29361 CVE-2020-29362 \n                   CVE-2020-29363 CVE-2021-3121 CVE-2021-3326 \n                   CVE-2021-3449 CVE-2021-3450 CVE-2021-3516 \n                   CVE-2021-3517 CVE-2021-3518 CVE-2021-3520 \n                   CVE-2021-3521 CVE-2021-3537 CVE-2021-3541 \n                   CVE-2021-3733 CVE-2021-3749 CVE-2021-20305 \n                   CVE-2021-21684 CVE-2021-22946 CVE-2021-22947 \n                   CVE-2021-25215 CVE-2021-27218 CVE-2021-30666 \n                   CVE-2021-30761 CVE-2021-30762 CVE-2021-33928 \n                   CVE-2021-33929 CVE-2021-33930 CVE-2021-33938 \n                   CVE-2021-36222 CVE-2021-37750 CVE-2021-39226 \n                   CVE-2021-41190 CVE-2021-43813 CVE-2021-44716 \n                   CVE-2021-44717 CVE-2022-0532 CVE-2022-21673 \n                   CVE-2022-24407 \n=====================================================================\n\n1. Summary:\n\nRed Hat OpenShift Container Platform release 4.10.3 is now available with\nupdates to packages and images that fix several bugs and add enhancements. \n\nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Description:\n\nRed Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments. \n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.10.3. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/RHSA-2022:0055\n\nSpace precludes documenting all of the container images in this advisory. \nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nSecurity Fix(es):\n\n* gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index\nvalidation (CVE-2021-3121)\n* grafana: Snapshot authentication bypass (CVE-2021-39226)\n* golang: net/http: limit growth of header canonicalization cache\n(CVE-2021-44716)\n* nodejs-axios: Regular expression denial of service in trim function\n(CVE-2021-3749)\n* golang: syscall: don\u0027t close fd 0 on ForkExec error (CVE-2021-44717)\n* grafana: Forward OAuth Identity Token can allow users to access some data\nsources (CVE-2022-21673)\n* grafana: directory traversal vulnerability (CVE-2021-43813)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nYou may download the oc tool and use it to inspect release image metadata\nas follows:\n\n(For x86_64 architecture)\n\n$ oc adm release info\nquay.io/openshift-release-dev/ocp-release:4.10.3-x86_64\n\nThe image digest is\nsha256:7ffe4cd612be27e355a640e5eec5cd8f923c1400d969fd590f806cffdaabcc56\n\n(For s390x architecture)\n\n  $ oc adm release info\nquay.io/openshift-release-dev/ocp-release:4.10.3-s390x\n\nThe image digest is\nsha256:4cf21a9399da1ce8427246f251ae5dedacfc8c746d2345f9cfe039ed9eda3e69\n\n(For ppc64le architecture)\n\n  $ oc adm release info\nquay.io/openshift-release-dev/ocp-release:4.10.3-ppc64le\n\nThe image digest is\nsha256:4ee571da1edf59dfee4473aa4604aba63c224bf8e6bcf57d048305babbbde93c\n\nAll OpenShift Container Platform 4.10 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift Console\nor the CLI oc command. Instructions for upgrading a cluster are available\nat\nhttps://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html\n\n3. Solution:\n\nFor OpenShift Container Platform 4.10 see the following documentation,\nwhich will be updated shortly for this release, for moderate instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html\n\n4. Bugs fixed (https://bugzilla.redhat.com/):\n\n1808240 - Always return metrics value for pods under the user\u0027s namespace\n1815189 - feature flagged UI does not always become available after operator installation\n1825034 - e2e: Mock CSI tests fail on IBM ROKS clusters\n1826225 - edge terminated h2 (gRPC) connections need a haproxy template change to work correctly\n1860774 - csr for vSphere egress nodes were not approved automatically during cert renewal\n1878106 - token inactivity timeout is not shortened after oauthclient/oauth config values are lowered\n1878925 - \u0027oc adm upgrade --to ...\u0027 rejects versions which occur only in history, while the cluster-version operator supports history fallback\n1880738 - origin e2e test deletes original worker\n1882983 - oVirt csi driver should refuse to provision RWX and ROX PV\n1886450 - Keepalived router id check not documented for RHV/VMware IPI\n1889488 - The metrics endpoint for the Scheduler is not protected by RBAC\n1894431 - Router pods fail to boot if the SSL certificate applied is missing an empty line at the bottom\n1896474 - Path based routing is broken for some combinations\n1897431 - CIDR support for  additional network attachment with the bridge CNI plug-in\n1903408 - NodePort externalTrafficPolicy does not work for ovn-kubernetes\n1907433 - Excessive logging in image operator\n1909906 - The router fails with PANIC error when stats port already in use\n1911173 - [MSTR-998] Many charts\u0027 legend names show {{}} instead of words\n1914053 - pods assigned with Multus whereabouts IP get stuck in ContainerCreating state after node rebooting. \n1916169 - a reboot while MCO is applying changes leaves the node in undesirable state and MCP looks fine (UPDATED=true)\n1917893 - [ovirt] install fails: due to terraform error \"Cannot attach Virtual Disk: Disk is locked\" on vm resource\n1921627 - GCP UPI installation failed due to exceeding gcp limitation of instance group name\n1921650 - CVE-2021-3121 gogo/protobuf: plugin/unmarshal/unmarshal.go lacks certain index validation\n1926522 - oc adm catalog does not clean temporary files\n1927478 - Default CatalogSources deployed by marketplace do not have toleration for tainted nodes. \n1928141 - kube-storage-version-migrator constantly reporting type \"Upgradeable\" status Unknown\n1928285 - [LSO][OCS][arbiter] OCP Console shows no results while in fact underlying setup of LSO localvolumeset and it\u0027s storageclass is not yet finished, confusing users\n1931594 - [sig-cli] oc --request-timeout works as expected fails frequently on s390x\n1933847 - Prometheus goes unavailable (both instances down) during 4.8 upgrade\n1937085 - RHV UPI inventory playbook missing guarantee_memory\n1937196 - [aws ebs csi driver] events for block volume expansion may cause confusion\n1938236 - vsphere-problem-detector does not support overriding log levels via storage CR\n1939401 - missed labels for CMO/openshift-state-metric/telemeter-client/thanos-querier pods\n1939435 - Setting an IPv6 address in noProxy field causes error in openshift installer\n1939552 - [sig-api-machinery] CustomResourcePublishOpenAPI [Privileged:ClusterAdmin] works for CRD preserving unknown fields in an embedded object [Conformance] [Suite:openshift/conformance/parallel/minimal] [Suite:k8s]\n1942913 - ThanosSidecarUnhealthy isn\u0027t resilient to WAL replays. \n1943363 - [ovn] CNO should gracefully terminate ovn-northd\n1945274 - ostree-finalize-staged.service failed while upgrading a rhcos node to 4.6.17\n1948080 - authentication should not set Available=False APIServices_Error with 503s\n1949262 - Prometheus Statefulsets should have 2 replicas and hard affinity set\n1949672 - [GCP] Update 4.8 UPI template to match ignition version: 3.2.0\n1950827 - [LSO] localvolumediscoveryresult name is not friendly to customer\n1952576 - csv_succeeded metric not present in olm-operator for all successful CSVs\n1953264 - \"remote error: tls: bad certificate\" logs in prometheus-operator container\n1955300 - Machine config operator reports unavailable for 23m during upgrade\n1955489 - Alertmanager Statefulsets should have 2 replicas and hard affinity set\n1955490 - Thanos ruler Statefulsets should have 2 replicas and hard affinity set\n1955544 - [IPI][OSP] densed master-only installation with 0 workers fails due to missing worker security group on masters\n1956496 - Needs SR-IOV Docs Upstream\n1956739 - Permission for authorized_keys for core user changes from core user to root when changed the pull secret\n1956776 - [vSphere] Installer should do pre-check to ensure user-provided network name is valid\n1956964 - upload a boot-source to OpenShift virtualization using the console\n1957547 - [RFE]VM name is not auto filled in dev console\n1958349 - ovn-controller doesn\u0027t release the memory after cluster-density run\n1959352 - [scale] failed to get pod annotation: timed out waiting for annotations\n1960378 - icsp allows mirroring of registry root - install-config imageContentSources does not\n1960674 - Broken test: [sig-imageregistry][Serial][Suite:openshift/registry/serial] Image signature workflow can push a signed image to openshift registry and verify it [Suite:openshift/conformance/serial]\n1961317 - storage ClusterOperator does not declare ClusterRoleBindings in relatedObjects\n1961391 - String updates\n1961509 - DHCP daemon pod should have CPU and memory requests set but not limits\n1962066 - Edit machine/machineset specs not working\n1962206 - openshift-multus/dhcp-daemon set should meet platform requirements for update strategy that have maxUnavailable update of 10 or 33 percent\n1963053 - `oc whoami --show-console` should show the web console URL, not the server api URL\n1964112 - route SimpleAllocationPlugin: host name validation errors: spec.host: Invalid value: ... must be no more than 63 characters\n1964327 - Support containers with name:tag@digest\n1964789 - Send keys and disconnect does not work for VNC console\n1965368 - ClusterQuotaAdmission received non-meta object - message constantly reported in OpenShift Container Platform 4.7\n1966445 - Unmasking a service doesn\u0027t work if it masked using MCO\n1966477 - Use GA version in KAS/OAS/OauthAS to avoid: \"audit.k8s.io/v1beta1\" is deprecated and will be removed in a future release, use \"audit.k8s.io/v1\" instead\n1966521 - kube-proxy\u0027s userspace implementation consumes excessive CPU\n1968364 - [Azure] when using ssh type ed25519 bootstrap fails to come up\n1970021 - nmstate does not persist its configuration due to overlay systemd-connections-merged mount\n1970218 - MCO writes incorrect file contents if compression field is specified\n1970331 - [sig-auth][Feature:SCC][Early] should not have pod creation failures during install [Suite:openshift/conformance/parallel]\n1970805 - Cannot create build when docker image url contains dir structure\n1972033 - [azure] PV region node affinity is failure-domain.beta.kubernetes.io instead of topology.kubernetes.io\n1972827 - image registry does not remain available during upgrade\n1972962 - Should set the minimum value for the `--max-icsp-size` flag of `oc adm catalog mirror`\n1973447 - ovn-dbchecker peak memory spikes to ~500MiB during cluster-density run\n1975826 - ovn-kubernetes host directed traffic cannot be offloaded as CT zone 64000 is not established\n1976301 - [ci] e2e-azure-upi is permafailing\n1976399 - During the upgrade from OpenShift 4.5 to OpenShift 4.6 the election timers for the OVN north and south databases did not change. \n1976674 - CCO didn\u0027t set Upgradeable to False when cco mode is configured to Manual on azure platform\n1976894 - Unidling a StatefulSet does not work as expected\n1977319 - [Hive] Remove stale cruft installed by CVO in earlier releases\n1977414 - Build Config timed out waiting for condition 400: Bad Request\n1977929 - [RFE] Display Network Attachment Definitions from openshift-multus namespace during OCS deployment via UI using Multus\n1978528 - systemd-coredump started and failed intermittently for unknown reasons\n1978581 - machine-config-operator: remove runlevel from mco namespace\n1979562 - Cluster operators: don\u0027t show messages when neither progressing, degraded or unavailable\n1979962 - AWS SDN Network Stress tests have not passed in 4.9 release-openshift-origin-installer-e2e-aws-sdn-network-stress-4.9\n1979966 - OCP builds always fail when run on RHEL7 nodes\n1981396 - Deleting pool inside pool page the pool stays in Ready phase in the heading\n1981549 - Machine-config daemon does not recover from broken Proxy configuration\n1981867 - [sig-cli] oc explain should contain proper fields description for special types [Suite:openshift/conformance/parallel]\n1981941 - Terraform upgrade required in openshift-installer to resolve multiple issues\n1982063 - \u0027Control Plane\u0027  is not translated in Simplified Chinese language in Home-\u003eOverview page\n1982498 - Default registry credential path should be adjusted to use containers/auth.json for oc commands\n1982662 - Workloads - DaemonSets - Add storage: i18n misses\n1982726 - kube-apiserver audit logs show a lot of 404 errors for DELETE \"*/secrets/encryption-config\" on single node clusters\n1983758 - upgrades are failing on disruptive tests\n1983964 - Need Device plugin configuration for the NIC \"needVhostNet\" \u0026 \"isRdma\"\n1984592 - global pull secret not working in OCP4.7.4+ for additional private registries\n1985073 - new-in-4.8 ExtremelyHighIndividualControlPlaneCPU fires on some GCP update jobs\n1985486 - Cluster Proxy not used during installation on OSP with Kuryr\n1985724 - VM Details Page missing translations\n1985838 - [OVN] CNO exportNetworkFlows does not clear collectors when deleted\n1985933 - Downstream image registry recommendation\n1985965 - oVirt CSI driver does not report volume stats\n1986216 - [scale] SNO: Slow Pod recovery due to \"timed out waiting for OVS port binding\"\n1986237 - \"MachineNotYetDeleted\" in Pending state , alert not fired\n1986239 - crictl create fails with \"PID namespace requested, but sandbox infra container invalid\"\n1986302 - console continues to fetch prometheus alert and silences for normal user\n1986314 - Current MTV installation for KubeVirt import flow creates unusable Forklift UI\n1986338 - error creating list of resources in Import YAML\n1986502 - yaml multi file dnd duplicates previous dragged files\n1986819 - fix string typos for hot-plug disks\n1987044 - [OCPV48] Shutoff VM is being shown as \"Starting\" in WebUI when using spec.runStrategy Manual/RerunOnFailure\n1987136 - Declare operatorframework.io/arch.* labels for all operators\n1987257 - Go-http-client user-agent being used for oc adm mirror requests\n1987263 - fsSpaceFillingUpWarningThreshold not aligned to Kubernetes Garbage Collection Threshold\n1987445 - MetalLB integration: All gateway routers in the cluster answer ARP requests for LoadBalancer services IP\n1988406 - SSH key dropped when selecting \"Customize virtual machine\" in UI\n1988440 - Network operator changes ovnkube-config too early causing ovnkube-master pods to crashloop during cluster upgrade\n1988483 - Azure drop ICMP need to frag FRAG when using OVN: openshift-apiserver becomes False after env runs some time due to communication between one master to pods on another master fails with \"Unable to connect to the server\"\n1988879 - Virtual media based deployment fails on Dell servers due to pending Lifecycle Controller jobs\n1989438 - expected replicas is wrong\n1989502 - Developer Catalog is disappearing after short time\n1989843 - \u0027More\u0027 and \u0027Show Less\u0027 functions are not translated on several page\n1990014 - oc debug \u003cpod-name\u003e does not work for Windows pods\n1990190 - e2e testing failed with basic manifest: reason/ExternalProvisioning waiting for a volume to be created\n1990193 - \u0027more\u0027 and \u0027Show Less\u0027  is not being translated on Home -\u003e Search page\n1990255 - Partial or all of the Nodes/StorageClasses don\u0027t appear back on UI after text is removed from search bar\n1990489 - etcdHighNumberOfFailedGRPCRequests fires only on metal env in CI\n1990506 - Missing udev rules in initramfs for /dev/disk/by-id/scsi-* symlinks\n1990556 - get-resources.sh doesn\u0027t honor the no_proxy settings even with no_proxy var\n1990625 - Ironic agent registers with SLAAC address with privacy-stable\n1990635 - CVO does not recognize the channel change if desired version and channel changed at the same time\n1991067 - github.com can not be resolved inside pods where cluster is running on openstack. \n1991573 - Enable typescript strictNullCheck on network-policies files\n1991641 - Baremetal Cluster Operator still Available After Delete Provisioning\n1991770 - The logLevel and operatorLogLevel values do not work with Cloud Credential Operator\n1991819 - Misspelled word \"ocurred\"  in oc inspect cmd\n1991942 - Alignment and spacing fixes\n1992414 - Two rootdisks show on storage step if \u0027This is a CD-ROM boot source\u0027  is checked\n1992453 - The configMap failed to save on VM environment tab\n1992466 - The button \u0027Save\u0027 and \u0027Reload\u0027 are not translated on vm environment tab\n1992475 - The button \u0027Open console in New Window\u0027 and \u0027Disconnect\u0027 are not translated on vm console tab\n1992509 - Could not customize boot source due to source PVC not found\n1992541 - all the alert rules\u0027 annotations \"summary\" and \"description\" should comply with the OpenShift alerting guidelines\n1992580 - storageProfile should stay with the same value by check/uncheck the apply button\n1992592 - list-type missing in oauth.config.openshift.io for identityProviders breaking Server Side Apply\n1992777 - [IBMCLOUD] Default \"ibm_iam_authorization_policy\" is not working as expected in all scenarios\n1993364 - cluster destruction fails to remove router in BYON with Kuryr as primary network (even after BZ 1940159 got fixed)\n1993376 - periodic-ci-openshift-release-master-ci-4.6-upgrade-from-stable-4.5-e2e-azure-upgrade is permfailing\n1994094 - Some hardcodes are detected at the code level in OpenShift console components\n1994142 - Missing required cloud config fields for IBM Cloud\n1994733 - MetalLB: IP address is not assigned to service if there is duplicate IP address in two address pools\n1995021 - resolv.conf and corefile sync slows down/stops after keepalived container restart\n1995335 - [SCALE] ovnkube CNI: remove ovs flows check\n1995493 - Add Secret to workload button and Actions button are not aligned on secret details page\n1995531 - Create RDO-based Ironic image to be promoted to OKD\n1995545 - Project drop-down amalgamates inside main screen while creating storage system for odf-operator\n1995887 - [OVN]After reboot egress node,  lr-policy-list was not correct, some duplicate records or missed internal IPs\n1995924 - CMO should report `Upgradeable: false` when HA workload is incorrectly spread\n1996023 - kubernetes.io/hostname values are larger than filter when create localvolumeset from webconsole\n1996108 - Allow backwards compatibility of shared gateway mode to inject host-based routes into OVN\n1996624 - 100% of the cco-metrics/cco-metrics targets in openshift-cloud-credential-operator namespace are down\n1996630 - Fail to delete the first Authorized SSH Key input box on Advanced page\n1996647 - Provide more useful degraded message in auth operator on DNS errors\n1996736 - Large number of 501 lr-policies in INCI2 env\n1996886 - timedout waiting for flows during pod creation and ovn-controller pegged on worker nodes\n1996916 - Special Resource Operator(SRO) - Fail to deploy simple-kmod on GCP\n1996928 - Enable default operator indexes on ARM\n1997028 - prometheus-operator update removes env var support for thanos-sidecar\n1997059 - Failed to create cluster in AWS us-east-1 region due to a local zone is used\n1997226 - Ingresscontroller reconcilations failing but not shown in operator logs or status of ingresscontroller. \n1997245 - \"Subscription already exists in openshift-storage namespace\" error message is seen while installing odf-operator via UI\n1997269 - Have to refresh console to install kube-descheduler\n1997478 - Storage operator is not available after reboot cluster instances\n1997509 - flake: [sig-cli] oc builds new-build [Skipped:Disconnected] [Suite:openshift/conformance/parallel]\n1997967 - storageClass is not reserved from default wizard to customize wizard\n1998035 - openstack IPI CI: custom var-lib-etcd.mount (ramdisk) unit is racing due to incomplete After/Before order\n1998038 - [e2e][automation] add tests for UI for VM disk hot-plug\n1998087 - Fix CephHealthCheck wrapping contents and add data-tests for HealthItem and SecondaryStatus\n1998174 - Create storageclass gp3-csi  after install ocp cluster on aws\n1998183 - \"r: Bad Gateway\" info is improper\n1998235 - Firefox warning: Cookie \u201ccsrf-token\u201d will be soon rejected\n1998377 - Filesystem table head is not full displayed in disk tab\n1998378 - Virtual Machine is \u0027Not available\u0027 in Home -\u003e Overview -\u003e Cluster inventory\n1998519 - Add fstype when create localvolumeset instance on web console\n1998951 - Keepalived conf ingress peer on in Dual stack cluster contains both IPv6 and IPv4 addresses\n1999076 - [UI] Page Not Found error when clicking on Storage link provided in Overview page\n1999079 - creating pods before sriovnetworknodepolicy sync up succeed will cause node unschedulable\n1999091 - Console update toast notification can appear multiple times\n1999133 - removing and recreating static pod manifest leaves pod in error state\n1999246 - .indexignore is not ingore when oc command load dc configuration\n1999250 - ArgoCD in GitOps operator can\u0027t manage namespaces\n1999255 - ovnkube-node always crashes out the first time it starts\n1999261 - ovnkube-node log spam (and security token leak?)\n1999309 - While installing odf-operator via UI, web console update pop-up navigates to OperatorHub -\u003e Operator Installation page\n1999314 - console-operator is slow to mark Degraded as False once console starts working\n1999425 - kube-apiserver with \"[SHOULD NOT HAPPEN] failed to update managedFields\" err=\"failed to convert new object (machine.openshift.io/v1beta1, Kind=MachineHealthCheck)\n1999556 - \"master\" pool should be updated before the CVO reports available at the new version occurred\n1999578 - AWS EFS CSI tests are constantly failing\n1999603 - Memory Manager allows Guaranteed QoS Pod with hugepages requested is exactly equal to the left over Hugepages\n1999619 - cloudinit is malformatted if a user sets a password during VM creation flow\n1999621 - Empty ssh_authorized_keys entry is added to VM\u0027s cloudinit if created from a customize flow\n1999649 - MetalLB: Only one type of IP address can be assigned to service on dual stack cluster from a address pool that have both IPv4 and IPv6 addresses defined\n1999668 - openshift-install destroy cluster panic\u0027s when given invalid credentials to cloud provider (Azure Stack Hub)\n1999734 - IBM Cloud CIS Instance CRN missing in infrastructure manifest/resource\n1999771 - revert \"force cert rotation every couple days for development\" in 4.10\n1999784 - CVE-2021-3749 nodejs-axios: Regular expression denial of service in trim function\n1999796 - Openshift Console `Helm` tab is not showing helm releases in a namespace when there is high number of deployments in the same namespace. \n1999836 - Admin web-console inconsistent status summary of sparse ClusterOperator conditions\n1999903 - Click \"This is a CD-ROM boot source\" ticking \"Use template size PVC\" on pvc upload form\n1999983 - No way to clear upload error from template boot source\n2000081 - [IPI baremetal]  The metal3 pod failed to restart when switching from Disabled to Managed provisioning without specifying provisioningInterface parameter\n2000096 - Git URL is not re-validated on edit build-config form reload\n2000216 - Successfully imported ImageStreams are not resolved in DeploymentConfig\n2000236 - Confusing usage message from dynkeepalived CLI\n2000268 - Mark cluster unupgradable if vcenter, esxi versions or HW versions are unsupported\n2000430 - bump cluster-api-provider-ovirt version in installer\n2000450 - 4.10: Enable static PV multi-az test\n2000490 - All critical alerts shipped by CMO should have links to a runbook\n2000521 - Kube-apiserver CO degraded due to failed conditional check (ConfigObservationDegraded)\n2000573 - Incorrect StorageCluster CR created and ODF cluster getting installed with 2 Zone OCP cluster\n2000628 - ibm-flashsystem-storage-storagesystem got created without any warning even when the attempt was cancelled\n2000651 - ImageStreamTag alias results in wrong tag and invalid link in Web Console\n2000754 - IPerf2 tests should be lower\n2000846 - Structure logs in the entire codebase of Local Storage Operator\n2000872 - [tracker] container is not able to list on some directories within the nfs after upgrade to 4.7.24\n2000877 - OCP ignores STOPSIGNAL in Dockerfile and sends SIGTERM\n2000938 - CVO does not respect changes to a Deployment strategy\n2000963 - \u0027Inline-volume (default fs)] volumes should store data\u0027 tests are failing on OKD with updated selinux-policy\n2001008 - [MachineSets] CloneMode defaults to linkedClone, but I don\u0027t have snapshot and should be fullClone\n2001240 - Remove response headers for downloads of binaries from OpenShift WebConsole\n2001295 - Remove openshift:kubevirt-machine-controllers decleration from machine-api\n2001317 - OCP Platform Quota Check - Inaccurate MissingQuota error\n2001337 - Details Card in ODF Dashboard mentions OCS\n2001339 - fix text content hotplug\n2001413 - [e2e][automation] add/delete nic and disk to template\n2001441 - Test: oc adm must-gather runs successfully for audit logs -  fail due to startup log\n2001442 - Empty termination.log file for the kube-apiserver has too permissive mode\n2001479 - IBM Cloud DNS unable to create/update records\n2001566 - Enable alerts for prometheus operator in UWM\n2001575 - Clicking on the perspective switcher shows a white page with loader\n2001577 - Quick search placeholder is not displayed properly when the search string is removed\n2001578 - [e2e][automation] add tests for vm dashboard tab\n2001605 - PVs remain in Released state for a long time after the claim is deleted\n2001617 - BucketClass Creation is restricted on 1st page but enabled using side navigation options\n2001620 - Cluster becomes degraded if it can\u0027t talk to Manila\n2001760 - While creating \u0027Backing Store\u0027, \u0027Bucket Class\u0027, \u0027Namespace Store\u0027 user is navigated to \u0027Installed Operators\u0027 page after clicking on ODF\n2001761 - Unable to apply cluster operator storage for SNO on GCP platform. \n2001765 - Some error message in the log  of diskmaker-manager caused confusion\n2001784 - show loading page before final results instead of showing a transient message No log files exist\n2001804 - Reload feature on Environment section in Build Config form does not work properly\n2001810 - cluster admin unable to view BuildConfigs in all namespaces\n2001817 - Failed to load RoleBindings list that will lead to \u2018Role name\u2019 is not able to be selected on Create RoleBinding page as well\n2001823 - OCM controller must update operator status\n2001825 - [SNO]ingress/authentication clusteroperator degraded when enable ccm from start\n2001835 - Could not select image tag version when create app from dev console\n2001855 - Add capacity is disabled for ocs-storagecluster\n2001856 - Repeating event: MissingVersion no image found for operand pod\n2001959 - Side nav list borders don\u0027t extend to edges of container\n2002007 - Layout issue on \"Something went wrong\" page\n2002010 - ovn-kube may never attempt to retry a pod creation\n2002012 - Cannot change volume mode when cloning a VM from a template\n2002027 - Two instances of Dotnet helm chart show as one in topology\n2002075 - opm render does not automatically pulling in the image(s) used in the deployments\n2002121 - [OVN] upgrades failed for IPI  OSP16 OVN  IPSec cluster\n2002125 - Network policy details page heading should be updated to Network Policy details\n2002133 - [e2e][automation] add support/virtualization and improve deleteResource\n2002134 - [e2e][automation] add test to verify vm details tab\n2002215 - Multipath day1 not working on s390x\n2002238 - Image stream tag is not persisted when switching from yaml to form editor\n2002262 - [vSphere] Incorrect user agent in vCenter sessions list\n2002266 - SinkBinding create form doesn\u0027t allow to use subject name, instead of label selector\n2002276 - OLM fails to upgrade operators immediately\n2002300 - Altering the Schedule Profile configurations doesn\u0027t affect the placement of the pods\n2002354 - Missing DU configuration \"Done\" status reporting during ZTP flow\n2002362 - Dynamic Plugin - ConsoleRemotePlugin for webpack doesn\u0027t use commonjs\n2002368 - samples should not go degraded when image allowedRegistries blocks imagestream creation\n2002372 - Pod creation failed due to mismatched pod IP address in CNI and OVN\n2002397 - Resources search is inconsistent\n2002434 - CRI-O leaks some children PIDs\n2002443 - Getting undefined error on create local volume set page\n2002461 - DNS operator performs spurious updates in response to API\u0027s defaulting of service\u0027s internalTrafficPolicy\n2002504 - When the openshift-cluster-storage-operator is degraded because of \"VSphereProblemDetectorController_SyncError\", the insights operator is not sending the logs from all pods. \n2002559 - User preference for topology list view does not follow when a new namespace is created\n2002567 - Upstream SR-IOV worker doc has broken links\n2002588 - Change text to be sentence case to align with PF\n2002657 - ovn-kube egress IP monitoring is using a random port over the node network\n2002713 - CNO: OVN logs should have millisecond resolution\n2002748 - [ICNI2] \u0027ErrorAddingLogicalPort\u0027 failed to handle external GW check: timeout waiting for namespace event\n2002759 - Custom profile should not allow not including at least one required HTTP2 ciphersuite\n2002763 - Two storage systems getting created with external mode RHCS\n2002808 - KCM does not use web identity credentials\n2002834 - Cluster-version operator does not remove unrecognized volume mounts\n2002896 - Incorrect result return when user filter data by name on search page\n2002950 - Why spec.containers.command is not created with \"oc create deploymentconfig \u003cdc-name\u003e --image=\u003cimage\u003e -- \u003ccommand\u003e\"\n2003096 - [e2e][automation] check bootsource URL is displaying on review step\n2003113 - OpenShift Baremetal IPI installer uses first three defined nodes under hosts in install-config for master nodes instead of filtering the hosts with the master role\n2003120 - CI: Uncaught error with ResizeObserver on operand details page\n2003145 - Duplicate operand tab titles causes \"two children with the same key\" warning\n2003164 - OLM, fatal error: concurrent map writes\n2003178 - [FLAKE][knative] The UI doesn\u0027t show updated traffic distribution after accepting the form\n2003193 - Kubelet/crio leaks netns and veth ports in the host\n2003195 - OVN CNI should ensure host veths are removed\n2003204 - Jenkins all new container images (openshift4/ose-jenkins) not supporting \u0027-e JENKINS_PASSWORD=password\u0027  ENV  which was working for old container images\n2003206 - Namespace stuck terminating: Failed to delete all resource types, 1 remaining: unexpected items still remain in namespace\n2003239 - \"[sig-builds][Feature:Builds][Slow] can use private repositories as build input\" tests fail outside of CI\n2003244 - Revert libovsdb client code\n2003251 - Patternfly components with list element has list item bullet when they should not. \n2003252 - \"[sig-builds][Feature:Builds][Slow] starting a build using CLI  start-build test context override environment BUILD_LOGLEVEL in buildconfig\" tests do not work as expected outside of CI\n2003269 - Rejected pods should be filtered from admission regression\n2003357 - QE- Removing the epic tags for gherkin tags related to 4.9 Release\n2003426 - [e2e][automation]  add test for vm details bootorder\n2003496 - [e2e][automation] add test for vm resources requirment settings\n2003641 - All metal ipi jobs are failing in 4.10\n2003651 - ODF4.9+LSO4.8 installation via UI, StorageCluster move to error state\n2003655 - [IPI ON-PREM] Keepalived chk_default_ingress track script failed even though default router pod runs on node\n2003683 - Samples operator is panicking in CI\n2003711 - [UI] Empty file ceph-external-cluster-details-exporter.py downloaded from external cluster \"Connection Details\" page\n2003715 - Error on creating local volume set after selection of the volume mode\n2003743 - Remove workaround keeping /boot RW for kdump support\n2003775 - etcd pod on CrashLoopBackOff after master replacement procedure\n2003788 - CSR reconciler report error constantly when BYOH CSR approved by other Approver\n2003792 - Monitoring metrics query graph flyover panel is useless\n2003808 - Add Sprint 207 translations\n2003845 - Project admin cannot access image vulnerabilities view\n2003859 - sdn emits events with garbage messages\n2003896 - (release-4.10) ApiRequestCounts conditional gatherer\n2004009 - 4.10: Fix multi-az zone scheduling e2e for 5 control plane replicas\n2004051 - CMO can report as being Degraded while node-exporter is deployed on all nodes\n2004059 - [e2e][automation] fix current tests for downstream\n2004060 - Trying to use basic spring boot sample causes crash on Firefox\n2004101 - [UI] When creating storageSystem deployment type dropdown under advanced setting doesn\u0027t close after selection\n2004127 - [flake] openshift-controller-manager event reason/SuccessfulDelete occurs too frequently\n2004203 - build config\u0027s created prior to 4.8 with image change triggers can result in trigger storm in OCM/openshift-apiserver\n2004313 - [RHOCP 4.9.0-rc.0] Failing to deploy Azure cluster from the macOS installer - ignition_bootstrap.ign: no such file or directory\n2004449 - Boot option recovery menu prevents image boot\n2004451 - The backup filename displayed in the RecentBackup message is incorrect\n2004459 - QE - Modified the AddFlow gherkin scripts and automation scripts\n2004508 - TuneD issues with the recent ConfigParser changes. \n2004510 - openshift-gitops operator hooks gets unauthorized (401) errors during jobs executions\n2004542 - [osp][octavia lb] cannot create LoadBalancer type svcs\n2004578 - Monitoring and node labels missing for an external storage platform\n2004585 - prometheus-k8s-0 cpu usage keeps increasing for the first 3 days\n2004596 - [4.10] Bootimage bump tracker\n2004597 - Duplicate ramdisk log containers running\n2004600 - Duplicate ramdisk log containers running\n2004609 - output of \"crictl inspectp\" is not complete\n2004625 - BMC credentials could be logged if they change\n2004632 - When LE takes a large amount of time, multiple whereabouts are seen\n2004721 - ptp/worker custom threshold doesn\u0027t change ptp events threshold\n2004736 - [knative] Create button on new Broker form is inactive despite form being filled\n2004796 - [e2e][automation] add test for vm scheduling policy\n2004814 - (release-4.10) OCM controller - change type of the etc-pki-entitlement secret to opaque\n2004870 - [External Mode] Insufficient spacing along y-axis in RGW Latency Performance Card\n2004901 - [e2e][automation] improve kubevirt devconsole tests\n2004962 - Console frontend job consuming too much CPU in CI\n2005014 - state of ODF StorageSystem is misreported during installation or uninstallation\n2005052 - Adding a MachineSet selector matchLabel causes orphaned Machines\n2005179 - pods status filter is not taking effect\n2005182 - sync list of deprecated apis about to be removed\n2005282 - Storage cluster name is given as title in StorageSystem details page\n2005355 - setuptools 58 makes Kuryr CI fail\n2005407 - ClusterNotUpgradeable Alert should be set to Severity Info\n2005415 - PTP operator with sidecar api configured throws  bind: address already in use\n2005507 - SNO spoke cluster failing to reach coreos.live.rootfs_url is missing url in console\n2005554 - The switch status of the button \"Show default project\" is not revealed correctly in code\n2005581 - 4.8.12 to 4.9 upgrade hung due to cluster-version-operator pod CrashLoopBackOff: error creating clients: invalid configuration: no configuration has been provided, try setting KUBERNETES_MASTER environment variable\n2005761 - QE - Implementing crw-basic feature file\n2005783 - Fix accessibility issues in the \"Internal\" and \"Internal - Attached Mode\" Installation Flow\n2005811 - vSphere Problem Detector operator - ServerFaultCode: InvalidProperty\n2005854 - SSH NodePort service is created for each VM\n2005901 - KS, KCM and KA going Degraded during master nodes upgrade\n2005902 - Current UI flow for MCG only deployment is confusing and doesn\u0027t reciprocate any message to the end-user\n2005926 - PTP operator NodeOutOfPTPSync rule is using max offset from the master instead of openshift_ptp_clock_state metrics\n2005971 - Change telemeter to report the Application Services product usage metrics\n2005997 - SELinux domain container_logreader_t does not have a policy to follow sym links for log files\n2006025 - Description to use an existing StorageClass while creating StorageSystem needs to be re-phrased\n2006060 - ocs-storagecluster-storagesystem details are missing on UI for MCG Only and MCG only in LSO mode deployment types\n2006101 - Power off fails for drivers that don\u0027t support Soft power off\n2006243 - Metal IPI upgrade jobs are running out of disk space\n2006291 - bootstrapProvisioningIP set incorrectly when provisioningNetworkCIDR doesn\u0027t use the 0th address\n2006308 - Backing Store YAML tab on click displays a blank screen on UI\n2006325 - Multicast is broken across nodes\n2006329 - Console only allows Web Terminal Operator to be installed in OpenShift Operators\n2006364 - IBM Cloud: Set resourceGroupId for resourceGroups, not simply resource\n2006561 - [sig-instrumentation] Prometheus when installed on the cluster shouldn\u0027t have failing rules evaluation [Skipped:Disconnected] [Suite:openshift/conformance/parallel]\n2006690 - OS boot failure \"x64 Exception Type 06 - Invalid Opcode Exception\"\n2006714 - add retry for etcd errors in kube-apiserver\n2006767 - KubePodCrashLooping may not fire\n2006803 - Set CoreDNS cache entries for forwarded zones\n2006861 - Add Sprint 207 part 2 translations\n2006945 - race condition can cause crashlooping bootstrap kube-apiserver in cluster-bootstrap\n2006947 - e2e-aws-proxy for 4.10 is permafailing with samples operator errors\n2006975 - clusteroperator/etcd status condition should not change reasons frequently due to EtcdEndpointsDegraded\n2007085 - Intermittent failure mounting /run/media/iso when booting live ISO from USB stick\n2007136 - Creation of BackingStore, BucketClass, NamespaceStore fails\n2007271 - CI Integration for Knative test cases\n2007289 - kubevirt tests are failing in CI\n2007322 - Devfile/Dockerfile import does not work for unsupported git host\n2007328 - Updated patternfly to v4.125.3 and pf.quickstarts to v1.2.3. \n2007379 - Events are not generated for master offset  for ordinary clock\n2007443 - [ICNI 2.0] Loadbalancer pods do not establish BFD sessions with all workers that host pods for the routed namespace\n2007455 - cluster-etcd-operator: render command should fail if machineCidr contains reserved address\n2007495 - Large label value for the metric kubelet_started_pods_errors_total with label message when there is a error\n2007522 - No new local-storage-operator-metadata-container is build for 4.10\n2007551 - No new ose-aws-efs-csi-driver-operator-bundle-container is build for 4.10\n2007580 - Azure cilium installs are failing e2e tests\n2007581 - Too many haproxy processes in default-router pod causing high load average after upgrade from v4.8.3 to v4.8.10\n2007677 - Regression: core container io performance metrics are missing for pod, qos, and system slices on nodes\n2007692 - 4.9 \"old-rhcos\" jobs are permafailing with storage test failures\n2007710 - ci/prow/e2e-agnostic-cmd job is failing on prow\n2007757 - must-gather extracts imagestreams in the \"openshift\" namespace, but not Templates\n2007802 - AWS machine actuator get stuck if machine is completely missing\n2008096 - TestAWSFinalizerDeleteS3Bucket sometimes fails to teardown operator\n2008119 - The serviceAccountIssuer field on Authentication CR is reseted to \u201c\u201d when installation process\n2008151 - Topology breaks on clicking in empty state\n2008185 - Console operator go.mod should use go 1.16.version\n2008201 - openstack-az job is failing on haproxy idle test\n2008207 - vsphere CSI driver doesn\u0027t set resource limits\n2008223 - gather_audit_logs: fix oc command line to get the current audit profile\n2008235 - The Save button in the Edit DC form remains disabled\n2008256 - Update Internationalization README with scope info\n2008321 - Add correct documentation link for MON_DISK_LOW\n2008462 - Disable PodSecurity feature gate for 4.10\n2008490 - Backing store details page does not contain all the kebab actions. \n2008521 - gcp-hostname service should correct invalid search entries in resolv.conf\n2008532 - CreateContainerConfigError:: failed to prepare subPath for volumeMount\n2008539 - Registry doesn\u0027t fall back to secondary ImageContentSourcePolicy Mirror\n2008540 - HighlyAvailableWorkloadIncorrectlySpread always fires on upgrade on cluster with two workers\n2008599 - Azure Stack UPI does not have Internal Load Balancer\n2008612 - Plugin asset proxy does not pass through browser cache headers\n2008712 - VPA webhook timeout prevents all pods from starting\n2008733 - kube-scheduler: exposed /debug/pprof port\n2008911 - Prometheus repeatedly scaling prometheus-operator replica set\n2008926 - [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources [Serial] [Suite:openshift/conformance/serial]\n2008987 - OpenShift SDN Hosted Egress IP\u0027s are not being scheduled to nodes after upgrade to 4.8.12\n2009055 - Instances of OCS to be replaced with ODF on UI\n2009078 - NetworkPodsCrashLooping alerts in upgrade CI jobs\n2009083 - opm blocks pruning of existing bundles during add\n2009111 - [IPI-on-GCP] \u0027Install a cluster with nested virtualization enabled\u0027 failed due to unable to launch compute instances\n2009131 - [e2e][automation] add more test about vmi\n2009148 - [e2e][automation] test vm nic presets and options\n2009233 - ACM policy object generated by PolicyGen conflicting with OLM Operator\n2009253 - [BM] [IPI] [DualStack] apiVIP and ingressVIP should be of the same primary IP family\n2009298 - Service created for VM SSH access is not owned by the VM and thus is not deleted if the VM is deleted\n2009384 - UI changes to support BindableKinds CRD changes\n2009404 - ovnkube-node pod enters CrashLoopBackOff after OVN_IMAGE is swapped\n2009424 - Deployment upgrade is failing availability check\n2009454 - Change web terminal subscription permissions from get to list\n2009465 - container-selinux should come from rhel8-appstream\n2009514 - Bump OVS to 2.16-15\n2009555 - Supermicro X11 system not booting from vMedia with AI\n2009623 - Console: Observe \u003e Metrics page: Table pagination menu shows bullet points\n2009664 - Git Import: Edit of knative service doesn\u0027t work as expected for git import flow\n2009699 - Failure to validate flavor RAM\n2009754 - Footer is not sticky anymore in import forms\n2009785 - CRI-O\u0027s version file should be pinned by MCO\n2009791 - Installer:  ibmcloud ignores install-config values\n2009823 - [sig-arch] events should not repeat pathologically - reason/VSphereOlderVersionDetected Marking cluster un-upgradeable because one or more VMs are on hardware version vmx-13\n2009840 - cannot build extensions on aarch64 because of unavailability of rhel-8-advanced-virt repo\n2009859 - Large number of sessions created by vmware-vsphere-csi-driver-operator during e2e tests\n2009873 - Stale Logical Router Policies and Annotations for a given node\n2009879 - There should be test-suite coverage to ensure admin-acks work as expected\n2009888 - SRO package name collision between official and community version\n2010073 - uninstalling and then reinstalling sriov-network-operator is not working\n2010174 - 2 PVs get created unexpectedly with different paths that actually refer to the same device on the node. \n2010181 - Environment variables not getting reset on reload on deployment edit form\n2010310 - [sig-instrumentation][Late] OpenShift alerting rules should have description and summary annotations [Skipped:Disconnected] [Suite:openshift/conformance/parallel]\n2010341 - OpenShift Alerting Rules Style-Guide Compliance\n2010342 - Local console builds can have out of memory errors\n2010345 - OpenShift Alerting Rules Style-Guide Compliance\n2010348 - Reverts PIE build mode for K8S components\n2010352 - OpenShift Alerting Rules Style-Guide Compliance\n2010354 - OpenShift Alerting Rules Style-Guide Compliance\n2010359 - OpenShift Alerting Rules Style-Guide Compliance\n2010368 - OpenShift Alerting Rules Style-Guide Compliance\n2010376 - OpenShift Alerting Rules Style-Guide Compliance\n2010662 - Cluster is unhealthy after image-registry-operator tests\n2010663 - OpenShift Alerting Rules Style-Guide Compliance (ovn-kubernetes subcomponent)\n2010665 - Bootkube tries to use oc after cluster bootstrap is done and there is no API\n2010698 - [BM] [IPI] [Dual Stack] Installer must ensure ipv6 short forms too if clusterprovisioning IP is specified as ipv6 address\n2010719 - etcdHighNumberOfFailedGRPCRequests runbook is missing\n2010864 - Failure building EFS operator\n2010910 - ptp worker events unable to identify interface for multiple interfaces\n2010911 - RenderOperatingSystem() returns wrong OS version on OCP 4.7.24\n2010921 - Azure Stack Hub does not handle additionalTrustBundle\n2010931 - SRO CSV uses non default category \"Drivers and plugins\"\n2010946 - concurrent CRD from ovirt-csi-driver-operator gets reconciled by CVO after deployment, changing CR as well. \n2011038 - optional operator conditions are confusing\n2011063 - CVE-2021-39226 grafana: Snapshot authentication bypass\n2011171 - diskmaker-manager constantly redeployed by LSO when creating LV\u0027s\n2011293 - Build pod are not pulling images if we are not explicitly giving the registry name with the image\n2011368 - Tooltip in pipeline visualization shows misleading data\n2011386 - [sig-arch] Check if alerts are firing during or after upgrade success --- alert KubePodNotReady fired for 60 seconds with labels\n2011411 - Managed Service\u0027s Cluster overview page contains link to missing Storage dashboards\n2011443 - Cypress tests assuming Admin Perspective could fail on shared/reference cluster\n2011513 - Kubelet rejects pods that use resources that should be freed by completed pods\n2011668 - Machine stuck in deleting phase in VMware \"reconciler failed to Delete machine\"\n2011693 - (release-4.10) \"insightsclient_request_recvreport_total\" metric is always incremented\n2011698 - After upgrading cluster to 4.8 the kube-state-metrics service doesn\u0027t export namespace labels anymore\n2011733 - Repository README points to broken documentarion link\n2011753 - Ironic resumes clean before raid configuration job is actually completed\n2011809 - The nodes page in the openshift console doesn\u0027t work. You just get a blank page\n2011822 - Obfuscation doesn\u0027t work at clusters with OVN\n2011882 - SRO helm charts not synced with templates\n2011893 - Validation: BMC driver ipmi is not supported for secure UEFI boot\n2011896 - [4.10] ClusterVersion Upgradeable=False MultipleReasons should include all messages\n2011903 - vsphere-problem-detector: session leak\n2011927 - OLM should allow users to specify a proxy for GRPC connections\n2011956 - [tracker] Kubelet rejects pods that use resources that should be freed by completed pods\n2011960 - [tracker] Storage operator is not available after reboot cluster instances\n2011971 - ICNI2 pods are stuck in ContainerCreating state\n2011972 - Ingress operator not creating wildcard route for hypershift  clusters\n2011977 - SRO bundle references non-existent image\n2012069 - Refactoring Status controller\n2012177 - [OCP 4.9 + OCS 4.8.3] Overview tab is missing under Storage after successful deployment on UI\n2012228 - ibmcloud: credentialsrequests invalid for machine-api-operator: resource-group\n2012233 - [IBMCLOUD] IPI: \"Exceeded limit of remote rules per security group (the limit is 5 remote rules per security group)\"\n2012235 - [IBMCLOUD] IPI: IBM cloud provider requires ResourceGroupName in cloudproviderconfig\n2012317 - Dynamic Plugins: ListPageCreateDropdown items cut off\n2012407 - [e2e][automation] improve vm tab console tests\n2012426 - ThanosSidecarBucketOperationsFailed/ThanosSidecarUnhealthy alerts don\u0027t have namespace label\n2012562 - migration condition is not detected in list view\n2012770 - when using expression metric openshift_apps_deploymentconfigs_last_failed_rollout_time namespace label is re-written\n2012780 - The port 50936 used by haproxy is occupied by kube-apiserver\n2012838 - Setting the default maximum container root partition size for Overlay with CRI-O stop working\n2012902 - Neutron Ports assigned to Completed Pods are not reused Edit\n2012915 - kube_persistentvolumeclaim_labels and kube_persistentvolume_labels are missing in OCP 4.8 monitoring stack\n2012971 - Disable operands deletes\n2013034 - Cannot install to openshift-nmstate namespace\n2013127 - OperatorHub links could not be opened in a new tabs (sharing and open a deep link works fine)\n2013199 - post reboot of node SRIOV policy taking huge time\n2013203 - UI breaks when trying to create block pool before storage cluster/system creation\n2013222 - Full breakage for nightly payload promotion\n2013273 - Nil pointer exception when phc2sys options are missing\n2013321 - TuneD: high CPU utilization of the TuneD daemon. \n2013416 - Multiple assets emit different content to the same filename\n2013431 - Application selector dropdown has incorrect font-size and positioning\n2013528 - mapi_current_pending_csr is always set to 1 on OpenShift Container Platform 4.8\n2013545 - Service binding created outside topology is not visible\n2013599 - Scorecard support storage is not included in ocp4.9\n2013632 - Correction/Changes in Quick Start Guides for ODF 4.9 (Install ODF guide)\n2013646 - fsync controller will show false positive if gaps in metrics are observed. \n2013710 - ZTP Operator subscriptions for 4.9 release branch should point to 4.9 by default\n2013751 - Service details page is showing wrong in-cluster hostname\n2013787 - There are two tittle \u0027Network Attachment Definition Details\u0027 on NAD details page\n2013871 - Resource table headings are not aligned with their column data\n2013895 - Cannot enable accelerated network via MachineSets on Azure\n2013920 - \"--collector.filesystem.ignored-mount-points is DEPRECATED and will be removed in 2.0.0, use --collector.filesystem.mount-points-exclude\"\n2013930 - Create Buttons enabled for Bucket Class, Backingstore and Namespace Store in the absence of Storagesystem(or MCG)\n2013969 - oVIrt CSI driver fails on creating PVCs on hosted engine storage domain\n2013990 - Observe dashboard crashs on reload when perspective has changed (in another tab)\n2013996 - Project detail page: Action \"Delete Project\" does nothing for the default project\n2014071 - Payload imagestream new tags not properly updated during cluster upgrade\n2014153 - SRIOV exclusive pooling\n2014202 - [OCP-4.8.10] OVN-Kubernetes: service IP is not responding when egressIP set to the namespace\n2014238 - AWS console test is failing on importing duplicate YAML definitions\n2014245 - Several aria-labels, external links, and labels aren\u0027t internationalized\n2014248 - Several files aren\u0027t internationalized\n2014352 - Could not filter out machine by using node name on machines page\n2014464 - Unexpected spacing/padding below navigation groups in developer perspective\n2014471 - Helm Release notes tab is not automatically open after installing a chart for other languages\n2014486 - Integration Tests: OLM single namespace operator tests failing\n2014488 - Custom operator cannot change orders of condition tables\n2014497 - Regex slows down different forms and creates too much recursion errors in the log\n2014538 - Kuryr controller crash looping on  self._get_vip_port(loadbalancer).id   \u0027NoneType\u0027 object has no attribute \u0027id\u0027\n2014614 - Metrics scraping requests should be assigned to exempt priority level\n2014710 - TestIngressStatus test is broken on Azure\n2014954 - The prometheus-k8s-{0,1} pods are CrashLoopBackoff repeatedly\n2014995 - oc adm must-gather cannot gather audit logs with \u0027None\u0027 audit profile\n2015115 - [RFE] PCI passthrough\n2015133 - [IBMCLOUD] ServiceID API key credentials seems to be insufficient for ccoctl \u0027--resource-group-name\u0027 parameter\n2015154 - Support ports defined networks and primarySubnet\n2015274 - Yarn dev fails after updates to dynamic plugin JSON schema logic\n2015337 - 4.9.0 GA MetalLB operator image references need to be adjusted to match production\n2015386 - Possibility to add labels to the built-in OCP alerts\n2015395 - Table head on Affinity Rules modal is not fully expanded\n2015416 - CI implementation for Topology plugin\n2015418 - Project Filesystem query returns No datapoints found\n2015420 - No vm resource in project view\u0027s inventory\n2015422 - No conflict checking on snapshot name\n2015472 - Form and YAML view switch button should have distinguishable status\n2015481 - [4.10]  sriov-network-operator daemon pods are failing to start\n2015493 - Cloud Controller Manager Operator does not respect \u0027additionalTrustBundle\u0027 setting\n2015496 - Storage - PersistentVolumes : Claim colum value \u0027No Claim\u0027 in English\n2015498 - [UI] Add capacity when not applicable (for MCG only deployment and External mode cluster) fails to pass any info. to user and tries to just load a blank screen on \u0027Add Capacity\u0027 button click\n2015506 - Home - Search - Resources - APIRequestCount : hard to select an item from ellipsis menu\n2015515 - Kubelet checks all providers even if one is configured: NoCredentialProviders: no valid providers in chain. \n2015535 - Administration - ResourceQuotas - ResourceQuota details: Inside Pie chart \u0027x% used\u0027 is in English\n2015549 - Observe - Metrics: Column heading and pagination text is in English\n2015557 - Workloads - DeploymentConfigs :  Error message is in English\n2015568 - Compute - Nodes : CPU column\u0027s values are in English\n2015635 - Storage operator fails causing installation to fail on ASH\n2015660 - \"Finishing boot source customization\" screen should not use term \"patched\"\n2015793 - [hypershift] The collect-profiles job\u0027s pods should run on the control-plane node\n2015806 - Metrics view in Deployment reports \"Forbidden\" when not cluster-admin\n2015819 - Conmon sandbox processes run on non-reserved CPUs with workload partitioning\n2015837 - OS_CLOUD overwrites install-config\u0027s platform.openstack.cloud\n2015950 - update from 4.7.22 to 4.8.11 is failing due to large amount of secrets to watch\n2015952 - RH CodeReady Workspaces Operator in e2e testing will soon fail\n2016004 - [RFE] RHCOS: help determining whether a user-provided image was already booted (Ignition provisioning already performed)\n2016008 - [4.10] Bootimage bump tracker\n2016052 - No e2e CI presubmit configured for release component azure-file-csi-driver\n2016053 - No e2e CI presubmit configured for release component azure-file-csi-driver-operator\n2016054 - No e2e CI presubmit configured for release component cluster-autoscaler\n2016055 - No e2e CI presubmit configured for release component console\n2016058 - openshift-sync does not synchronise in \"ose-jenkins:v4.8\"\n2016064 - No e2e CI presubmit configured for release component ibm-cloud-controller-manager\n2016065 - No e2e CI presubmit configured for release component ibmcloud-machine-controllers\n2016175 - Pods get stuck in ContainerCreating state when attaching volumes fails on SNO clusters. \n2016179 - Add Sprint 208 translations\n2016228 - Collect Profiles pprof secret is hardcoded to openshift-operator-lifecycle-manager\n2016235 - should update to 7.5.11 for grafana resources version label\n2016296 - Openshift virtualization  : Create Windows Server 2019 VM using template : Fails\n2016334 - shiftstack: SRIOV nic reported as not supported\n2016352 - Some pods start before CA resources are present\n2016367 - Empty task box is getting created for a pipeline without finally task\n2016435 - Duplicate AlertmanagerClusterFailedToSendAlerts alerts\n2016438 - Feature flag gating is missing in few extensions contributed via knative plugin\n2016442 - OCPonRHV: pvc should be in Bound state and without error when choosing default sc\n2016446 - [OVN-Kubernetes] Egress Networkpolicy is failing Intermittently for statefulsets\n2016453 - Complete i18n for GaugeChart defaults\n2016479 - iface-id-ver is not getting updated for existing lsp\n2016925 - Dashboards with All filter, change to a specific value and change back to All,  data will disappear\n2016951 - dynamic actions list is not disabling \"open console\" for stopped vms\n2016955 - m5.large instance type for bootstrap node is hardcoded causing deployments to fail if instance type is not available\n2016988 - NTO does not set io_timeout and max_retries for AWS Nitro instances\n2017016 - [REF] Virtualization menu\n2017036 - [sig-network-edge][Feature:Idling] Unidling should handle many TCP connections fails in periodic-ci-openshift-release-master-ci-4.9-e2e-openstack-ovn\n2017050 - Dynamic Plugins: Shared modules loaded multiple times, breaking use of PatternFly\n2017130 - t is not a function error navigating to details page\n2017141 - Project dropdown has a dynamic inline width added which can cause min-width issue\n2017244 - ovirt csi operator static files creation is in the wrong order\n2017276 - [4.10] Volume mounts not created with the correct security context\n2017327 - When run opm index prune failed with error removing operator package cic-operator FOREIGN KEY constraint failed. \n2017427 - NTO does not restart TuneD daemon when profile application is taking too long\n2017535 - Broken Argo CD link image on GitOps Details Page\n2017547 - Siteconfig application sync fails with The AgentClusterInstall is invalid: spec.provisionRequirements.controlPlaneAgents: Required value when updating images references\n2017564 - On-prem prepender dispatcher script overwrites DNS search settings\n2017565 - CCMO does not handle additionalTrustBundle on Azure Stack\n2017566 - MetalLB: Web Console -Create Address pool form shows address pool name twice\n2017606 - [e2e][automation] add test to verify send key for VNC console\n2017650 - [OVN]EgressFirewall cannot be applied correctly if cluster has windows nodes\n2017656 - VM IP address is \"undefined\" under VM details -\u003e ssh field\n2017663 - SSH password authentication is disabled when public key is not supplied\n2017680 - [gcp] Couldn\u2019t enable support for instances with GPUs on GCP\n2017732 - [KMS] Prevent creation of encryption enabled storageclass without KMS connection set\n2017752 - (release-4.10) obfuscate identity provider attributes in collected authentication.operator.openshift.io resource\n2017756 - overlaySize setting on containerruntimeconfig is ignored due to cri-o defaults\n2017761 - [e2e][automation] dummy bug for 4.9 test dependency\n2017872 - Add Sprint 209 translations\n2017874 - The installer is incorrectly checking the quota for X instances instead of G and VT instances\n2017879 - Add Chinese translation for \"alternate\"\n2017882 - multus: add handling of pod UIDs passed from runtime\n2017909 - [ICNI 2.0] ovnkube-masters stop processing add/del events for pods\n2018042 - HorizontalPodAutoscaler CPU averageValue did not show up in HPA metrics GUI\n2018093 - Managed cluster should ensure control plane pods do not run in best-effort QoS\n2018094 - the tooltip length is limited\n2018152 - CNI pod is not restarted when It cannot start servers due to ports being used\n2018208 - e2e-metal-ipi-ovn-ipv6 are failing 75% of the time\n2018234 - user settings are saved in local storage instead of on cluster\n2018264 - Delete Export button doesn\u0027t work in topology sidebar (general issue with unknown CSV?)\n2018272 - Deployment managed by link and topology sidebar links to invalid resource page (at least for Exports)\n2018275 - Topology graph doesn\u0027t show context menu for Export CSV\n2018279 - Edit and Delete confirmation modals for managed resource should close when the managed resource is clicked\n2018380 - Migrate docs links to access.redhat.com\n2018413 - Error: context deadline exceeded, OCP 4.8.9\n2018428 - PVC is deleted along with VM even with \"Delete Disks\" unchecked\n2018445 - [e2e][automation] enhance tests for downstream\n2018446 - [e2e][automation] move tests to different level\n2018449 - [e2e][automation] add test about create/delete network attachment definition\n2018490 - [4.10] Image provisioning fails with file name too long\n2018495 - Fix typo in internationalization README\n2018542 - Kernel upgrade does not reconcile DaemonSet\n2018880 - Get \u0027No datapoints found.\u0027 when query metrics about alert rule KubeCPUQuotaOvercommit and KubeMemoryQuotaOvercommit\n2018884 - QE - Adapt crw-basic feature file to OCP 4.9/4.10 changes\n2018935 - go.sum not updated, that ART extracts version string from, WAS: Missing backport from 4.9 for Kube bump PR#950\n2018965 - e2e-metal-ipi-upgrade is permafailing in 4.10\n2018985 - The rootdisk size is 15Gi of windows VM in customize wizard\n2019001 - AWS: Operator degraded (CredentialsFailing): 1 of 6 credentials requests are failing to sync. \n2019096 - Update SRO leader election timeout to support SNO\n2019129 - SRO in operator hub points to wrong repo for README\n2019181 - Performance profile does not apply\n2019198 - ptp offset metrics are not named according to the log output\n2019219 - [IBMCLOUD]: cloud-provider-ibm missing IAM permissions in CCCMO CredentialRequest\n2019284 - Stop action should not in the action list while VMI is not running\n2019346 - zombie processes accumulation and Argument list too long\n2019360 - [RFE] Virtualization Overview page\n2019452 - Logger object in LSO appends to existing logger recursively\n2019591 - Operator install modal body that scrolls has incorrect padding causing shadow position to be incorrect\n2019634 - Pause and migration is enabled in action list for a user who has view only permission\n2019636 - Actions in VM tabs should be disabled when user has view only permission\n2019639 - \"Take snapshot\" should be disabled while VM image is still been importing\n2019645 - Create button is not removed on \"Virtual Machines\" page for view only user\n2019646 - Permission error should pop-up immediately while clicking \"Create VM\" button on template page for view only user\n2019647 - \"Remove favorite\" and \"Create new Template\" should be disabled in template action list for view only user\n2019717 - cant delete VM with un-owned pvc attached\n2019722 - The shared-resource-csi-driver-node pod runs as \u201cBestEffort\u201d qosClass\n2019739 - The shared-resource-csi-driver-node uses imagePullPolicy as \"Always\"\n2019744 - [RFE] Suggest users to download newest RHEL 8 version\n2019809 - [OVN][Upgrade] After upgrade to 4.7.34 ovnkube-master pods are in CrashLoopBackOff/ContainerCreating and other multiple issues at OVS/OVN level\n2019827 - Display issue with top-level menu items running demo plugin\n2019832 - 4.10 Nightlies blocked: Failed to upgrade authentication, operator was degraded\n2019886 - Kuryr unable to finish ports recovery upon controller restart\n2019948 - [RFE] Restructring Virtualization links\n2019972 - The Nodes section doesn\u0027t display the csr of the nodes that are trying to join the cluster\n2019977 - Installer doesn\u0027t validate region causing binary to hang with a 60 minute timeout\n2019986 - Dynamic demo plugin fails to build\n2019992 - instance:node_memory_utilisation:ratio metric is incorrect\n2020001 - Update dockerfile for demo dynamic plugin to reflect dir change\n2020003 - MCD does not regard \"dangling\" symlinks as a files, attempts to write through them on next backup, resulting in \"not writing through dangling symlink\" error and degradation. \n2020107 - cluster-version-operator: remove runlevel from CVO namespace\n2020153 - Creation of Windows high performance VM fails\n2020216 - installer: Azure storage container blob where is stored bootstrap.ign file shouldn\u0027t be public\n2020250 - Replacing deprecated ioutil\n2020257 - Dynamic plugin with multiple webpack compilation passes may fail to build\n2020275 - ClusterOperators link in console returns blank page during upgrades\n2020377 - permissions error while using tcpdump option with must-gather\n2020489 - coredns_dns metrics don\u0027t include the custom zone metrics data due to CoreDNS prometheus plugin is not defined\n2020498 - \"Show PromQL\" button is disabled\n2020625 - [AUTH-52] User fails to login from web console with keycloak OpenID IDP after enable group membership sync feature\n2020638 - [4.7] CI conformance test failures related to CustomResourcePublishOpenAPI\n2020664 - DOWN subports are not cleaned up\n2020904 - When trying to create a connection from the Developer view between VMs, it fails\n2021016 - \u0027Prometheus Stats\u0027 of dashboard \u0027Prometheus Overview\u0027 miss data on console compared with Grafana\n2021017 - 404 page not found error on knative eventing page\n2021031 - QE - Fix the topology CI scripts\n2021048 - [RFE] Added MAC Spoof check\n2021053 - Metallb operator presented as community operator\n2021067 - Extensive number of requests from storage version operator in cluster\n2021081 - Missing PolicyGenTemplate for configuring Local Storage Operator LocalVolumes\n2021135 - [azure-file-csi-driver] \"make unit-test\" returns non-zero code, but tests pass\n2021141 - Cluster should allow a fast rollout of kube-apiserver is failing on single node\n2021151 - Sometimes the DU node does not get the performance profile configuration applied and MachineConfigPool stays stuck in Updating\n2021152 - imagePullPolicy is \"Always\" for ptp operator images\n2021191 - Project admins should be able to list available network attachment defintions\n2021205 - Invalid URL in git import form causes validation to not happen on URL change\n2021322 - cluster-api-provider-azure should populate purchase plan information\n2021337 - Dynamic Plugins: ResourceLink doesn\u0027t render when passed a groupVersionKind\n2021364 - Installer requires invalid AWS permission s3:GetBucketReplication\n2021400 - Bump documentationBaseURL to 4.10\n2021405 - [e2e][automation] VM creation wizard Cloud Init editor\n2021433 - \"[sig-builds][Feature:Builds][pullsearch] docker build where the registry is not specified\" test fail permanently on disconnected\n2021466 - [e2e][automation] Windows guest tool mount\n2021544 - OCP 4.6.44 - Ingress VIP assigned as secondary IP in ovs-if-br-ex and added to resolv.conf as nameserver\n2021551 - Build is not recognizing the USER group from an s2i image\n2021607 - Unable to run openshift-install with a vcenter hostname that begins with a numeric character\n2021629 - api request counts for current hour are incorrect\n2021632 - [UI] Clicking on odf-operator breadcrumb from StorageCluster details page displays empty page\n2021693 - Modals assigned modal-lg class are no longer the correct width\n2021724 - Observe \u003e Dashboards: Graph lines are not visible when obscured by other lines\n2021731 - CCO occasionally down, reporting networksecurity.googleapis.com API as disabled\n2021936 - Kubelet version in RPMs should be using Dockerfile label instead of git tags\n2022050 - [BM][IPI] Failed during bootstrap - unable to read client-key /var/lib/kubelet/pki/kubelet-client-current.pem\n2022053 - dpdk application with vhost-net is not able to start\n2022114 - Console logging every proxy request\n2022144 - 1 of 3 ovnkube-master pods stuck in clbo after ipi bm deployment - dualstack  (Intermittent)\n2022251 - wait interval in case of a failed upload due to 403 is unnecessarily long\n2022399 - MON_DISK_LOW troubleshooting guide link when clicked, gives 404 error . \n2022447 - ServiceAccount in manifests conflicts with OLM\n2022502 - Patternfly tables with a checkbox column are not displaying correctly because of conflicting css rules. \n2022509 - getOverrideForManifest does not check manifest.GVK.Group\n2022536 - WebScale: duplicate ecmp next hop error caused by multiple of the same gateway IPs in ovnkube cache\n2022612 - no namespace field for \"Kubernetes / Compute Resources / Namespace (Pods)\" admin console dashboard\n2022627 - Machine object not picking up external FIP added to an openstack vm\n2022646 - configure-ovs.sh failure -  Error: unknown connection \u0027WARN:\u0027\n2022707 - Observe / monitoring dashboard shows forbidden errors on Dev Sandbox\n2022801 - Add Sprint 210 translations\n2022811 - Fix kubelet log rotation file handle leak\n2022812 - [SCALE] ovn-kube service controller executes unnecessary load balancer operations\n2022824 - Large number of sessions created by vmware-vsphere-csi-driver-operator during e2e tests\n2022880 - Pipeline renders with minor visual artifact with certain task dependencies\n2022886 - Incorrect URL in operator description\n2023042 - CRI-O filters custom runtime allowed annotation when both custom workload and custom runtime sections specified under the config\n2023060 - [e2e][automation] Windows VM with CDROM migration\n2023077 - [e2e][automation] Home Overview Virtualization status\n2023090 - [e2e][automation] Examples of Import URL for VM templates\n2023102 - [e2e][automation] Cloudinit disk of VM from custom template\n2023216 - ACL for a deleted egressfirewall still present on node join switch\n2023228 - Remove Tech preview badge on Trigger components 1.6 OSP on OCP 4.9\n2023238 - [sig-devex][Feature:ImageEcosystem][python][Slow] hot deploy for openshift python image  Django example should work with hot deploy\n2023342 - SCC admission should take ephemeralContainers into account\n2023356 - Devfiles can\u0027t be loaded in Safari on macOS (403 - Forbidden)\n2023434 - Update Azure Machine Spec API to accept Marketplace Images\n2023500 - Latency experienced while waiting for volumes to attach to node\n2023522 - can\u0027t remove package from index: database is locked\n2023560 - \"Network Attachment Definitions\" has no project field on the top in the list view\n2023592 - [e2e][automation] add mac spoof check for nad\n2023604 - ACL violation when deleting a provisioning-configuration resource\n2023607 - console returns blank page when normal user without any projects visit Installed Operators page\n2023638 - Downgrade support level for extended control plane integration to Dev Preview\n2023657 - inconsistent behaviours of adding ssh key on rhel node between 4.9 and 4.10\n2023675 - Changing CNV Namespace\n2023779 - Fix Patch 104847 in 4.9\n2023781 - initial hardware devices is not loading in wizard\n2023832 - CCO updates lastTransitionTime for non-Status changes\n2023839 - Bump recommended FCOS to 34.20211031.3.0\n2023865 - Console css overrides prevent dynamic plug-in PatternFly tables from displaying correctly\n2023950 - make test-e2e-operator on kubernetes-nmstate results in failure to pull image from \"registry:5000\" repository\n2023985 - [4.10] OVN idle service cannot be accessed after upgrade from 4.8\n2024055 - External DNS added extra prefix for the TXT record\n2024108 - Occasionally node remains in SchedulingDisabled state even after update has been completed sucessfully\n2024190 - e2e-metal UPI is permafailing with inability to find rhcos.json\n2024199 - 400 Bad Request error for some queries for the non admin user\n2024220 - Cluster monitoring checkbox flickers when installing Operator in all-namespace mode\n2024262 - Sample catalog is not displayed when one API call to the backend fails\n2024309 - cluster-etcd-operator: defrag controller needs to provide proper observability\n2024316 - modal about support displays wrong annotation\n2024328 - [oVirt / RHV] PV disks are lost when machine deleted while node is disconnected\n2024399 - Extra space is in the translated text of \"Add/Remove alternate service\" on Create Route page\n2024448 - When ssh_authorized_keys is empty in form view it should not appear in yaml view\n2024493 - Observe \u003e Alerting \u003e Alerting rules page throws error trying to destructure undefined\n2024515 - test-blocker: Ceph-storage-plugin tests failing\n2024535 - hotplug disk missing OwnerReference\n2024537 - WINDOWS_IMAGE_LINK does not refer to windows cloud image\n2024547 - Detail page is breaking for namespace store , backing store and bucket class. \n2024551 - KMS resources not getting created for IBM FlashSystem storage\n2024586 - Special Resource Operator(SRO) - Empty image in BuildConfig when using RT kernel\n2024613 - pod-identity-webhook starts without tls\n2024617 - vSphere CSI tests constantly failing with Rollout of the monitoring stack failed and is degraded\n2024665 - Bindable services are not shown on topology\n2024731 - linuxptp container: unnecessary checking of interfaces\n2024750 - i18n some remaining OLM items\n2024804 - gcp-pd-csi-driver does not use trusted-ca-bundle when cluster proxy configured\n2024826 - [RHOS/IPI] Masters are not joining a clusters when installing on OpenStack\n2024841 - test Keycloak with latest tag\n2024859 - Not able to deploy an existing image from private image registry using developer console\n2024880 - Egress IP breaks when network policies are applied\n2024900 - Operator upgrade kube-apiserver\n2024932 - console throws \"Unauthorized\" error after logging out\n2024933 - openshift-sync plugin does not sync existing secrets/configMaps on start up\n2025093 - Installer does not honour diskformat specified in storage policy and defaults to zeroedthick\n2025230 - ClusterAutoscalerUnschedulablePods should not be a warning\n2025266 - CreateResource route has exact prop which need to be removed\n2025301 - [e2e][automation] VM actions availability in different VM states\n2025304 - overwrite storage section of the DV spec instead of the pvc section\n2025431 - [RFE]Provide specific windows source link\n2025458 - [IPI-AWS] cluster-baremetal-operator pod in a crashloop state after patching from 4.7.21 to 4.7.36\n2025464 - [aws] openshift-install gather bootstrap collects logs for bootstrap and only one master node\n2025467 - [OVN-K][ETP=local] Host to service backed by ovn pods doesn\u0027t work for ExternalTrafficPolicy=local\n2025481 - Update VM Snapshots UI\n2025488 - [DOCS] Update the doc for nmstate operator installation\n2025592 - ODC 4.9 supports invalid devfiles only\n2025765 - It should not try to load from storageProfile after unchecking\"Apply optimized StorageProfile settings\"\n2025767 - VMs orphaned during machineset scaleup\n2025770 - [e2e] non-priv seems looking for v2v-vmware configMap in ns \"kubevirt-hyperconverged\" while using customize wizard\n2025788 - [IPI on azure]Pre-check on IPI Azure, should check VM Size\u2019s vCPUsAvailable instead of vCPUs for the sku. \n2025821 - Make \"Network Attachment Definitions\" available to regular user\n2025823 - The console nav bar ignores plugin separator in existing sections\n2025830 - CentOS capitalizaion is wrong\n2025837 - Warn users that the RHEL URL expire\n2025884 - External CCM deploys openstack-cloud-controller-manager from quay.io/openshift/origin-*\n2025903 - [UI] RoleBindings tab doesn\u0027t show correct rolebindings\n2026104 - [sig-imageregistry][Feature:ImageAppend] Image append should create images by appending them [Skipped:Disconnected] [Suite:openshift/conformance/parallel]\n2026178 - OpenShift Alerting Rules Style-Guide Compliance\n2026209 - Updation of task is getting failed (tekton hub integration)\n2026223 - Internal error occurred: failed calling webhook \"ptpconfigvalidationwebhook.openshift.io\"\n2026321 - [UPI on Azure] Shall we remove allowedValue about VMSize in ARM templates\n2026343 - [upgrade from 4.5 to 4.6] .status.connectionState.address of catsrc community-operators is not correct\n2026352 - Kube-Scheduler revision-pruner fail during install of new cluster\n2026374 - aws-pod-identity-webhook go.mod version out of sync with build environment\n2026383 - Error when rendering custom Grafana dashboard through ConfigMap\n2026387 - node tuning operator metrics endpoint serving old certificates after certificate rotation\n2026396 - Cachito Issues: sriov-network-operator Image build failure\n2026488 - openshift-controller-manager - delete event is repeating pathologically\n2026489 - ThanosRuleRuleEvaluationLatencyHigh alerts when a big quantity of alerts defined. \n2026560 - Cluster-version operator does not remove unrecognized volume mounts\n2026699 - fixed a bug with missing metadata\n2026813 - add Mellanox CX-6 Lx DeviceID 101f NIC support in SR-IOV Operator\n2026898 - Description/details are missing for Local Storage Operator\n2027132 - Use the specific icon for Fedora and CentOS template\n2027238 - \"Node Exporter / USE Method / Cluster\" CPU utilization graph shows incorrect legend\n2027272 - KubeMemoryOvercommit alert should be human readable\n2027281 - [Azure] External-DNS cannot find the private DNS zone in the resource group\n2027288 - Devfile samples can\u0027t be loaded after fixing it on Safari (redirect caching issue)\n2027299 - The status of checkbox component is not revealed correctly in code\n2027311 - K8s watch hooks do not work when fetching core resources\n2027342 - Alert ClusterVersionOperatorDown is firing on OpenShift Container Platform after ca certificate rotation\n2027363 - The azure-file-csi-driver and azure-file-csi-driver-operator don\u0027t use the downstream images\n2027387 - [IBMCLOUD] Terraform ibmcloud-provider buffers entirely the qcow2 image causing spikes of 5GB of RAM during installation\n2027498 - [IBMCloud] SG Name character length limitation\n2027501 - [4.10] Bootimage bump tracker\n2027524 - Delete Application doesn\u0027t delete Channels or Brokers\n2027563 - e2e/add-flow-ci.feature fix accessibility violations\n2027585 - CVO crashes when changing spec.upstream to a cincinnati graph which includes invalid conditional edges\n2027629 - Gather ValidatingWebhookConfiguration and MutatingWebhookConfiguration resource definitions\n2027685 - openshift-cluster-csi-drivers pods crashing on PSI\n2027745 - default samplesRegistry prevents the creation of imagestreams when registrySources.allowedRegistries is enforced\n2027824 - ovnkube-master CrashLoopBackoff: panic: Expected slice or struct but got string\n2027917 - No settings in hostfirmwaresettings and schema objects for masters\n2027927 - sandbox creation fails due to obsolete option in /etc/containers/storage.conf\n2027982 - nncp stucked at ConfigurationProgressing\n2028019 - Max pending serving CSRs allowed in cluster machine approver is not right for UPI clusters\n2028024 - After deleting a SpecialResource, the node is still tagged although the driver is removed\n2028030 - Panic detected in cluster-image-registry-operator pod\n2028042 - Desktop viewer for Windows VM shows \"no Service for the RDP (Remote Desktop Protocol) can be found\"\n2028054 - Cloud controller manager operator can\u0027t get leader lease when upgrading from 4.8 up to 4.9\n2028106 - [RFE] Use dynamic plugin actions for kubevirt plugin\n2028141 - Console tests doesn\u0027t pass on Node.js 15 and 16\n2028160 - Remove i18nKey in network-policy-peer-selectors.tsx\n2028162 - Add Sprint 210 translations\n2028170 - Remove leading and trailing whitespace\n2028174 - Add Sprint 210 part 2 translations\n2028187 - Console build doesn\u0027t pass on Node.js 16 because node-sass doesn\u0027t support it\n2028217 - Cluster-version operator does not default Deployment replicas to one\n2028240 - Multiple CatalogSources causing higher CPU use than necessary\n2028268 - Password parameters are listed in FirmwareSchema in spite that cannot and shouldn\u0027t be set in HostFirmwareSettings\n2028325 - disableDrain should be set automatically on SNO\n2028484 - AWS EBS CSI driver\u0027s livenessprobe does not respect operator\u0027s loglevel\n2028531 - Missing netFilter to the list of parameters when platform is OpenStack\n2028610 - Installer doesn\u0027t retry on GCP rate limiting\n2028685 - LSO repeatedly reports errors while diskmaker-discovery pod is starting\n2028695 - destroy cluster does not prune bootstrap instance profile\n2028731 - The containerruntimeconfig controller has wrong assumption regarding the number of containerruntimeconfigs\n2028802 - CRI-O panic due to invalid memory address or nil pointer dereference\n2028816 - VLAN IDs not released on failures\n2028881 - Override not working for the PerformanceProfile template\n2028885 - Console should show an error context if it logs an error object\n2028949 - Masthead dropdown item hover text color is incorrect\n2028963 - Whereabouts should reconcile stranded IP addresses\n2029034 - enabling ExternalCloudProvider leads to inoperative cluster\n2029178 - Create VM with wizard - page is not displayed\n2029181 - Missing CR from PGT\n2029273 - wizard is not able to use if project field is \"All Projects\"\n2029369 - Cypress tests github rate limit errors\n2029371 - patch pipeline--worker nodes unexpectedly reboot during scale out\n2029394 - missing empty text for hardware devices at wizard review\n2029414 - Alibaba Disk snapshots with XFS filesystem cannot be used\n2029416 - Alibaba Disk CSI driver does not use credentials provided by CCO / ccoctl\n2029521 - EFS CSI driver cannot delete volumes under load\n2029570 - Azure Stack Hub: CSI Driver does not use user-ca-bundle\n2029579 - Clicking on an Application which has a Helm Release in it causes an error\n2029644 - New resource FirmwareSchema - reset_required exists for Dell machines and doesn\u0027t for HPE\n2029645 - Sync upstream 1.15.0 downstream\n2029671 - VM action \"pause\" and \"clone\" should be disabled while VM disk is still being importing\n2029742 - [ovn] Stale lr-policy-list  and snat rules left for egressip\n2029750 - cvo keep restart due to it fail to get feature gate value during the initial start stage\n2029785 - CVO panic when an edge is included in both edges and conditionaledges\n2029843 - Downstream ztp-site-generate-rhel8 4.10 container image missing content(/home/ztp)\n2030003 - HFS CRD: Attempt to set Integer parameter to not-numeric string value - no error\n2030029 - [4.10][goroutine]Namespace stuck terminating: Failed to delete all resource types, 1 remaining: unexpected items still remain in namespace\n2030228 - Fix StorageSpec resources field to use correct API\n2030229 - Mirroring status card reflect wrong data\n2030240 - Hide overview page for non-privileged user\n2030305 - Export App job do not completes\n2030347 - kube-state-metrics exposes metrics about resource annotations\n2030364 - Shared resource CSI driver monitoring is not setup correctly\n2030488 - Numerous Azure CI jobs are Failing with Partially Rendered machinesets\n2030534 - Node selector/tolerations rules are evaluated too early\n2030539 - Prometheus is not highly available\n2030556 - Don\u0027t display Description or Message fields for alerting rules if those annotations are missing\n2030568 - Operator installation fails to parse operatorframework.io/initialization-resource annotation\n2030574 - console service uses older \"service.alpha.openshift.io\" for the service serving certificates. \n2030677 - BOND CNI: There is no option to configure MTU on a Bond interface\n2030692 - NPE in PipelineJobListener.upsertWorkflowJob\n2030801 - CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache\n2030806 - CVE-2021-44717 golang: syscall: don\u0027t close fd 0 on ForkExec error\n2030847 - PerformanceProfile API version should be v2\n2030961 - Customizing the OAuth server URL does not apply to upgraded cluster\n2031006 - Application name input field is not autofocused when user selects \"Create application\"\n2031012 - Services of type loadbalancer do not work if the traffic reaches the node from an interface different from br-ex\n2031040 - Error screen when open topology sidebar for a Serverless / knative service which couldn\u0027t be started\n2031049 - [vsphere upi] pod machine-config-operator cannot be started due to panic issue\n2031057 - Topology sidebar for Knative services shows a small pod ring with \"0 undefined\" as tooltip\n2031060 - Failing CSR Unit test due to expired test certificate\n2031085 - ovs-vswitchd running more threads than expected\n2031141 - Some pods not able to reach k8s api svc IP 198.223.0.1\n2031228 - CVE-2021-43813 grafana: directory traversal vulnerability\n2031502 - [RFE] New common templates crash the ui\n2031685 - Duplicated forward upstreams should be removed from the dns operator\n2031699 - The displayed ipv6 address of a dns upstream should be case sensitive\n2031797 - [RFE] Order and text of Boot source type input are wrong\n2031826 - CI tests needed to confirm driver-toolkit image contents\n2031831 - OCP Console - Global CSS overrides affecting dynamic plugins\n2031839 - Starting from Go 1.17 invalid certificates will render a cluster dysfunctional\n2031858 - GCP beta-level Role (was: CCO occasionally down, reporting networksecurity.googleapis.com API as disabled)\n2031875 - [RFE]: Provide online documentation for the SRO CRD (via oc explain)\n2031926 - [ipv6dualstack] After SVC conversion from single stack only to RequireDualStack, cannot curl NodePort from the node itself\n2032006 - openshift-gitops-application-controller-0 failed to schedule with sufficient node allocatable resource\n2032111 - arm64 cluster, create project and deploy the example deployment, pod is CrashLoopBackOff due to the image is built on linux+amd64\n2032141 - open the alertrule link in new tab, got empty page\n2032179 - [PROXY] external dns pod cannot reach to cloud API in the cluster behind a proxy\n2032296 - Cannot create machine with ephemeral disk on Azure\n2032407 - UI will show the default openshift template wizard for HANA template\n2032415 - Templates page - remove \"support level\" badge and add \"support level\" column which should not be hard coded\n2032421 - [RFE] UI integration with automatic updated images\n2032516 - Not able to import git repo with .devfile.yaml\n2032521 - openshift-installer intermittent failure on AWS with \"Error: Provider produced inconsistent result after apply\" when creating the aws_vpc_dhcp_options_association resource\n2032547 - hardware devices table have filter when table is empty\n2032565 - Deploying compressed files with a MachineConfig resource degrades the MachineConfigPool\n2032566 - Cluster-ingress-router does not support Azure Stack\n2032573 - Adopting enforces deploy_kernel/ramdisk which does not work with deploy_iso\n2032589 - DeploymentConfigs ignore resolve-names annotation\n2032732 - Fix styling conflicts due to recent console-wide CSS changes\n2032831 - Knative Services and Revisions are not shown when Service has no ownerReference\n2032851 - Networking is \"not available\" in Virtualization Overview\n2032926 - Machine API components should use K8s 1.23 dependencies\n2032994 - AddressPool IP is not allocated to service external IP wtih aggregationLength 24\n2032998 - Can not achieve 250 pods/node with OVNKubernetes in a multiple worker node cluster\n2033013 - Project dropdown in user preferences page is broken\n2033044 - Unable to change import strategy if devfile is invalid\n2033098 - Conjunction in ProgressiveListFooter.tsx is not translatable\n2033111 - IBM VPC operator library bump removed global CLI args\n2033138 - \"No model registered for Templates\" shows on customize wizard\n2033215 - Flaky CI: crud/other-routes.spec.ts fails sometimes with an cypress ace/a11y AssertionError: 1 accessibility violation was detected\n2033239 - [IPI on Alibabacloud] \u0027openshift-install\u0027 gets the wrong region (\u2018cn-hangzhou\u2019) selected\n2033257 - unable to use configmap for helm charts\n2033271 - [IPI on Alibabacloud] destroying cluster succeeded, but the resource group deletion wasn\u2019t triggered\n2033290 - Product builds for console are failing\n2033382 - MAPO is missing machine annotations\n2033391 - csi-driver-shared-resource-operator sets unused CVO-manifest annotations\n2033403 - Devfile catalog does not show provider information\n2033404 - Cloud event schema is missing source type and resource field is using wrong value\n2033407 - Secure route data is not pre-filled in edit flow form\n2033422 - CNO not allowing LGW conversion from SGW in runtime\n2033434 - Offer darwin/arm64 oc in clidownloads\n2033489 - CCM operator failing on baremetal platform\n2033518 - [aws-efs-csi-driver]Should not accept invalid FSType in sc for AWS EFS driver\n2033524 - [IPI on Alibabacloud] interactive installer cannot list existing base domains\n2033536 - [IPI on Alibabacloud] bootstrap complains invalid value for alibabaCloud.resourceGroupID when updating \"cluster-infrastructure-02-config.yml\" status, which leads to bootstrap failed and all master nodes NotReady\n2033538 - Gather Cost Management Metrics Custom Resource\n2033579 - SRO cannot update the special-resource-lifecycle ConfigMap if the data field is undefined\n2033587 - Flaky CI test project-dashboard.scenario.ts: Resource Quotas Card was not found on project detail page\n2033634 - list-style-type: disc is applied to the modal dropdowns\n2033720 - Update samples in 4.10\n2033728 - Bump OVS to 2.16.0-33\n2033729 - remove runtime request timeout restriction for azure\n2033745 - Cluster-version operator makes upstream update service / Cincinnati requests more frequently than intended\n2033749 - Azure Stack Terraform fails without Local Provider\n2033750 - Local volume should pull multi-arch image for kube-rbac-proxy\n2033751 - Bump kubernetes to 1.23\n2033752 - make verify fails due to missing yaml-patch\n2033784 - set kube-apiserver degraded=true if webhook matches a virtual resource\n2034004 - [e2e][automation] add tests for VM snapshot improvements\n2034068 - [e2e][automation] Enhance tests for 4.10 downstream\n2034087 - [OVN] EgressIP was assigned to the node which is not egress node anymore\n2034097 - [OVN] After edit EgressIP object, the status is not correct\n2034102 - [OVN] Recreate the  deleted EgressIP object got  InvalidEgressIP  warning\n2034129 - blank page returned when clicking \u0027Get started\u0027 button\n2034144 - [OVN AWS] ovn-kube egress IP monitoring cannot detect the failure on ovn-k8s-mp0\n2034153 - CNO does not verify MTU migration for OpenShiftSDN\n2034155 - [OVN-K] [Multiple External Gateways] Per pod SNAT is disabled\n2034170 - Use function.knative.dev for Knative Functions related labels\n2034190 - unable to add new VirtIO disks to VMs\n2034192 - Prometheus fails to insert reporting metrics when the sample limit is met\n2034243 - regular user cant load template list\n2034245 - installing a cluster on aws, gcp always fails with \"Error: Incompatible provider version\"\n2034248 - GPU/Host device modal is too small\n2034257 - regular user `Create VM` missing permissions alert\n2034285 - [sig-api-machinery] API data in etcd should be stored at the correct location and version for all resources [Serial] [Suite:openshift/conformance/serial]\n2034287 - do not block upgrades if we can\u0027t create storageclass in 4.10 in vsphere\n2034300 - Du validator policy is NonCompliant after DU configuration completed\n2034319 - Negation constraint is not validating packages\n2034322 - CNO doesn\u0027t pick up settings required when ExternalControlPlane topology\n2034350 - The CNO should implement the Whereabouts IP reconciliation cron job\n2034362 - update description of disk interface\n2034398 - The Whereabouts IPPools CRD should include the podref field\n2034409 - Default CatalogSources should be pointing to 4.10 index images\n2034410 - Metallb BGP, BFD:  prometheus is not scraping the frr metrics\n2034413 - cloud-network-config-controller fails to init with secret \"cloud-credentials\" not found in manual credential mode\n2034460 - Summary: cloud-network-config-controller does not account for different environment\n2034474 - Template\u0027s boot source is \"Unknown source\" before and after set enableCommonBootImageImport to true\n2034477 - [OVN] Multiple EgressIP objects configured, EgressIPs weren\u0027t working properly\n2034493 - Change cluster version operator log level\n2034513 - [OVN] After update one EgressIP in EgressIP object, one internal IP lost from lr-policy-list\n2034527 - IPI deployment fails \u0027timeout reached while inspecting the node\u0027 when provisioning network ipv6\n2034528 - [IBM VPC] volumeBindingMode should be WaitForFirstConsumer\n2034534 - Update ose-machine-api-provider-openstack images to be consistent with ART\n2034537 - Update team\n2034559 - KubeAPIErrorBudgetBurn firing outside recommended latency thresholds\n2034563 - [Azure] create machine with wrong ephemeralStorageLocation value success\n2034577 - Current OVN gateway mode should be reflected on node annotation as well\n2034621 - context menu not popping up for application group\n2034622 - Allow volume expansion by default in vsphere CSI storageclass 4.10\n2034624 - Warn about unsupported CSI driver in vsphere operator\n2034647 - missing volumes list in snapshot modal\n2034648 - Rebase openshift-controller-manager to 1.23\n2034650 - Rebase openshift/builder to 1.23\n2034705 - vSphere: storage e2e tests logging configuration data\n2034743 - EgressIP: assigning the same egress IP to a second EgressIP object after a ovnkube-master restart does not fail. \n2034766 - Special Resource Operator(SRO) -  no cert-manager pod created in dual stack environment\n2034785 - ptpconfig with summary_interval cannot be applied\n2034823 - RHEL9 should be starred in template list\n2034838 - An external router can inject routes if no service is added\n2034839 - Jenkins sync plugin does not synchronize ConfigMap having label role=jenkins-agent\n2034879 - Lifecycle hook\u0027s name and owner shouldn\u0027t be allowed to be empty\n2034881 - Cloud providers components should use K8s 1.23 dependencies\n2034884 - ART cannot build the image because it tries to download controller-gen\n2034889 - `oc adm prune deployments` does not work\n2034898 - Regression in recently added Events feature\n2034957 - update openshift-apiserver to kube 1.23.1\n2035015 - ClusterLogForwarding CR remains stuck remediating forever\n2035093 - openshift-cloud-network-config-controller never runs on Hypershift cluster\n2035141 - [RFE] Show GPU/Host devices in template\u0027s details tab\n2035146 - \"kubevirt-plugin~PVC cannot be empty\" shows on add-disk modal while adding existing PVC\n2035167 - [cloud-network-config-controller] unable to deleted cloudprivateipconfig when deleting\n2035199 - IPv6 support in mtu-migration-dispatcher.yaml\n2035239 - e2e-metal-ipi-virtualmedia tests are permanently failing\n2035250 - Peering with ebgp peer over multi-hops doesn\u0027t work\n2035264 - [RFE] Provide a proper message for nonpriv user who not able to add PCI devices\n2035315 - invalid test cases for AWS passthrough mode\n2035318 - Upgrade management workflow needs to allow custom upgrade graph path for disconnected env\n2035321 - Add Sprint 211 translations\n2035326 - [ExternalCloudProvider] installation with additional network on workers fails\n2035328 - Ccoctl does not ignore credentials request manifest marked for deletion\n2035333 - Kuryr orphans ports on 504 errors from Neutron\n2035348 - Fix two grammar issues in kubevirt-plugin.json strings\n2035393 - oc set data --dry-run=server  makes persistent changes to configmaps and secrets\n2035409 - OLM E2E test depends on operator package that\u0027s no longer published\n2035439 - SDN  Automatic assignment EgressIP on GCP returned node IP adress not egressIP address\n2035453 - [IPI on Alibabacloud] 2 worker machines stuck in Failed phase due to connection to \u0027ecs-cn-hangzhou.aliyuncs.com\u0027 timeout, although the specified region is \u0027us-east-1\u0027\n2035454 - [IPI on Alibabacloud] the OSS bucket created during installation for image registry is not deleted after destroying the cluster\n2035467 - UI: Queried metrics can\u0027t be ordered on Oberve-\u003eMetrics page\n2035494 - [SDN Migration]ovnkube-node pods CrashLoopBackOff after sdn migrated to ovn for RHEL workers\n2035515 - [IBMCLOUD] allowVolumeExpansion should be true in storage class\n2035602 - [e2e][automation] add tests for Virtualization Overview page cards\n2035703 - Roles -\u003e RoleBindings tab doesn\u0027t show RoleBindings correctly\n2035704 - RoleBindings list page filter doesn\u0027t apply\n2035705 - Azure \u0027Destroy cluster\u0027 get stuck when the cluster resource group is already not existing. \n2035757 - [IPI on Alibabacloud] one master node turned NotReady which leads to installation failed\n2035772 - AccessMode and VolumeMode is not reserved for customize wizard\n2035847 - Two dashes in the Cronjob / Job pod name\n2035859 - the output of opm render doesn\u0027t contain  olm.constraint which is defined in dependencies.yaml\n2035882 - [BIOS setting values] Create events for all invalid settings in spec\n2035903 - One redundant capi-operator credential requests in \u201coc adm extract --credentials-requests\u201d\n2035910 - [UI] Manual approval options are missing after ODF 4.10 installation starts when Manual Update approval is chosen\n2035927 - Cannot enable HighNodeUtilization scheduler profile\n2035933 - volume mode and access mode are empty in customize wizard review tab\n2035969 - \"ip a \" shows \"Error: Peer netns reference is invalid\" after create test pods\n2035986 - Some pods under kube-scheduler/kube-controller-manager are using the deprecated annotation\n2036006 - [BIOS setting values] Attempt to set Integer parameter results in preparation error\n2036029 - New added cloud-network-config operator doesn\u2019t supported aws sts format credential\n2036096 - [azure-file-csi-driver] there are no e2e tests for NFS backend\n2036113 - cluster scaling new nodes ovs-configuration fails on all new nodes\n2036567 - [csi-driver-nfs] Upstream merge: Bump k8s libraries to 1.23\n2036569 - [cloud-provider-openstack] Upstream merge: Bump k8s libraries to 1.23\n2036577 - OCP 4.10 nightly builds from 4.10.0-0.nightly-s390x-2021-12-18-034912 to 4.10.0-0.nightly-s390x-2022-01-11-233015 fail to upgrade from OCP 4.9.11 and 4.9.12 for network type OVNKubernetes for zVM hypervisor environments\n2036622 - sdn-controller crashes when restarted while a previous egress IP assignment exists\n2036717 - Valid AlertmanagerConfig custom resource with valid a mute time interval definition is rejected\n2036826 - `oc adm prune deployments` can prune the RC/RS\n2036827 - The ccoctl still accepts CredentialsRequests without ServiceAccounts on GCP platform\n2036861 - kube-apiserver is degraded while enable multitenant\n2036937 - Command line tools page shows wrong download ODO link\n2036940 - oc registry login fails if the file is empty or stdout\n2036951 - [cluster-csi-snapshot-controller-operator] proxy settings is being injected in container\n2036989 - Route URL copy to clipboard button wraps to a separate line by itself\n2036990 - ZTP \"DU Done inform policy\" never becomes compliant on multi-node clusters\n2036993 - Machine API components should use Go lang version 1.17\n2037036 - The tuned profile goes into degraded status and ksm.service is displayed in the log. \n2037061 - aws and gcp CredentialsRequest manifests missing ServiceAccountNames list for cluster-api\n2037073 - Alertmanager container fails to start because of startup probe never being successful\n2037075 - Builds do not support CSI volumes\n2037167 - Some log level in ibm-vpc-block-csi-controller are hard code\n2037168 - IBM-specific Deployment manifest for package-server-manager should be excluded on non-IBM cluster-profiles\n2037182 - PingSource badge color is not matched with knativeEventing color\n2037203 - \"Running VMs\" card is too small in Virtualization Overview\n2037209 - [IPI on Alibabacloud] worker nodes are put in the default resource group unexpectedly\n2037237 - Add \"This is a CD-ROM boot source\" to customize wizard\n2037241 - default TTL for noobaa cache buckets should be 0\n2037246 - Cannot customize auto-update boot source\n2037276 - [IBMCLOUD] vpc-node-label-updater may fail to label nodes appropriately\n2037288 - Remove stale image reference\n2037331 - Ensure the ccoctl behaviors are similar between aws and gcp on the existing resources\n2037483 - Rbacs for Pods within the CBO should be more restrictive\n2037484 - Bump dependencies to k8s 1.23\n2037554 - Mismatched wave number error message should include the wave numbers that are in conflict\n2037622 - [4.10-Alibaba CSI driver][Restore size for volumesnapshot/volumesnapshotcontent is showing as 0 in Snapshot feature for Alibaba platform]\n2037635 - impossible to configure custom certs for default console route in ingress config\n2037637 - configure custom certificate for default console route doesn\u0027t take effect for OCP \u003e= 4.8\n2037638 - Builds do not support CSI volumes as volume sources\n2037664 - text formatting issue in Installed Operators list table\n2037680 - [IPI on Alibabacloud] sometimes operator \u0027cloud-controller-manager\u0027 tells empty VERSION, due to conflicts on listening tcp :8080\n2037689 - [IPI on Alibabacloud] sometimes operator \u0027cloud-controller-manager\u0027 tells empty VERSION, due to conflicts on listening tcp :8080\n2037801 - Serverless installation is failing on CI jobs for e2e tests\n2037813 - Metal Day 1 Networking -  networkConfig Field Only Accepts String Format\n2037856 - use lease for leader election\n2037891 - 403 Forbidden error shows for all the graphs in each grafana dashboard after upgrade from 4.9 to 4.10\n2037903 - Alibaba Cloud: delete-ram-user requires the credentials-requests\n2037904 - upgrade operator deployment failed due to memory limit too low for manager container\n2038021 - [4.10-Alibaba CSI driver][Default volumesnapshot class is not added/present after successful cluster installation]\n2038034 - non-privileged user cannot see auto-update boot source\n2038053 - Bump dependencies to k8s 1.23\n2038088 - Remove ipa-downloader references\n2038160 - The `default` project missed the annotation : openshift.io/node-selector: \"\"\n2038166 - Starting from Go 1.17 invalid certificates will render a cluster non-functional\n2038196 - must-gather is missing collecting some metal3 resources\n2038240 - Error when configuring a file using permissions bigger than decimal 511 (octal 0777)\n2038253 - Validator Policies are long lived\n2038272 - Failures to build a PreprovisioningImage are not reported\n2038384 - Azure Default Instance Types are Incorrect\n2038389 - Failing test: [sig-arch] events should not repeat pathologically\n2038412 - Import page calls the git file list unnecessarily twice from GitHub/GitLab/Bitbucket\n2038465 - Upgrade chromedriver to 90.x to support Mac M1 chips\n2038481 - kube-controller-manager-guard and openshift-kube-scheduler-guard pods being deleted and restarted on a cordoned node when drained\n2038596 - Auto egressIP for OVN cluster on GCP: After egressIP object is deleted, egressIP still takes effect\n2038663 - update kubevirt-plugin OWNERS\n2038691 - [AUTH-8] Panic on user login when the user belongs to a group in the IdP side and the group already exists via \"oc adm groups new\"\n2038705 - Update ptp reviewers\n2038761 - Open Observe-\u003eTargets page, wait for a while, page become blank\n2038768 - All the filters on the Observe-\u003eTargets page can\u0027t work\n2038772 - Some monitors failed to display on Observe-\u003eTargets page\n2038793 - [SDN EgressIP] After reboot egress node, the egressip was lost from egress node\n2038827 - should add user containers in /etc/subuid and /etc/subgid to support run pods in user namespaces\n2038832 - New templates for centos stream8 are missing registry suggestions in create vm wizard\n2038840 - [SDN EgressIP]cloud-network-config-controller pod was CrashLoopBackOff after some operation\n2038864 - E2E tests fail because multi-hop-net was not created\n2038879 - All Builds are getting listed in DeploymentConfig under workloads on OpenShift Console\n2038934 - CSI driver operators should use the trusted CA bundle when cluster proxy is configured\n2038968 - Move feature gates from a carry patch to openshift/api\n2039056 - Layout issue with breadcrumbs on API explorer page\n2039057 - Kind column is not wide enough in API explorer page\n2039064 - Bulk Import e2e test flaking at a high rate\n2039065 - Diagnose and fix Bulk Import e2e test that was previously disabled\n2039085 - Cloud credential operator configuration failing to apply in hypershift/ROKS clusters\n2039099 - [OVN EgressIP GCP] After reboot egress node, egressip that was previously assigned got lost\n2039109 - [FJ OCP4.10 Bug]: startironic.sh failed to pull the image of image-customization container when behind a proxy\n2039119 - CVO hotloops on Service openshift-monitoring/cluster-monitoring-operator\n2039170 - [upgrade]Error shown on registry operator \"missing the cloud-provider-config configmap\" after upgrade\n2039227 - Improve image customization server parameter passing during installation\n2039241 - Improve image customization server parameter passing during installation\n2039244 - Helm Release revision history page crashes the UI\n2039294 - SDN controller metrics cannot be consumed correctly by prometheus\n2039311 - oc Does Not Describe Build CSI Volumes\n2039315 - Helm release list page should only fetch secrets for deployed charts\n2039321 - SDN controller metrics are not being consumed by prometheus\n2039330 - Create NMState button doesn\u0027t work in OperatorHub web console\n2039339 - cluster-ingress-operator should report Unupgradeable if user has modified the aws resources annotations\n2039345 - CNO does not verify the minimum MTU value for IPv6/dual-stack clusters. \n2039359 - `oc adm prune deployments` can\u0027t prune the RS  where the associated Deployment no longer exists\n2039382 - gather_metallb_logs does not have execution permission\n2039406 - logout from rest session after vsphere operator sync is finished\n2039408 - Add GCP region northamerica-northeast2 to allowed regions\n2039414 - Cannot see the weights increased for NodeAffinity, InterPodAffinity, TaintandToleration\n2039425 - No need to set KlusterletAddonConfig CR applicationManager-\u003eenabled: true in RAN ztp deployment\n2039491 - oc - git:// protocol used in unit tests\n2039516 - Bump OVN to ovn21.12-21.12.0-25\n2039529 - Project Dashboard Resource Quotas Card empty state test flaking at a high rate\n2039534 - Diagnose and fix Project Dashboard Resource Quotas Card test that was previously disabled\n2039541 - Resolv-prepender script duplicating entries\n2039586 - [e2e] update centos8 to centos stream8\n2039618 - VM created from SAP HANA template leads to 404 page if leave one network parameter empty\n2039619 - [AWS] In tree provisioner storageclass aws disk type should contain \u0027gp3\u0027 and csi provisioner storageclass default aws disk type should be \u0027gp3\u0027\n2039670 - Create PDBs for control plane components\n2039678 - Page goes blank when create image pull secret\n2039689 - [IPI on Alibabacloud] Pay-by-specification NAT is no longer supported\n2039743 - React missing key warning when open operator hub detail page (and maybe others as well)\n2039756 - React missing key warning when open KnativeServing details\n2039770 - Observe dashboard doesn\u0027t react on time-range changes after browser reload when perspective is changed in another tab\n2039776 - Observe dashboard shows nothing if the URL links to an non existing dashboard\n2039781 - [GSS] OBC is not visible by admin of a Project on Console\n2039798 - Contextual binding with Operator backed service creates visual connector instead of Service binding connector\n2039868 - Insights Advisor widget is not in the disabled state when the Insights Operator is disabled\n2039880 - Log level too low for control plane metrics\n2039919 - Add E2E test for router compression feature\n2039981 - ZTP for standard clusters installs stalld on master nodes\n2040132 - Flag --port has been deprecated, This flag has no effect now and will be removed in v1.24. You can use --secure-port instead\n2040136 - external-dns-operator pod keeps restarting and reports error: timed out waiting for cache to be synced\n2040143 - [IPI on Alibabacloud] suggest to remove region \"cn-nanjing\" or provide better error message\n2040150 - Update ConfigMap keys for IBM HPCS\n2040160 - [IPI on Alibabacloud] installation fails when region does not support pay-by-bandwidth\n2040285 - Bump build-machinery-go for console-operator to pickup change in yaml-patch repository\n2040357 - bump OVN to ovn-2021-21.12.0-11.el8fdp\n2040376 - \"unknown instance type\" error for supported m6i.xlarge instance\n2040394 - Controller: enqueue the failed configmap till services update\n2040467 - Cannot build ztp-site-generator container image\n2040504 - Change AWS EBS GP3 IOPS in MachineSet doesn\u0027t take affect in OpenShift 4\n2040521 - RouterCertsDegraded certificate could not validate route hostname v4-0-config-system-custom-router-certs.apps\n2040535 - Auto-update boot source is not available in customize wizard\n2040540 - ovs hardware offload: ovsargs format error when adding vf netdev name\n2040603 - rhel worker scaleup playbook failed because missing some dependency of podman\n2040616 - rolebindings page doesn\u0027t load for normal users\n2040620 - [MAPO] Error pulling MAPO image on installation\n2040653 - Topology sidebar warns that another component is updated while rendering\n2040655 - User settings update fails when selecting application in topology sidebar\n2040661 - Different react warnings about updating state on unmounted components when leaving topology\n2040670 - Permafailing CI job: periodic-ci-openshift-release-master-nightly-4.10-e2e-gcp-libvirt-cert-rotation\n2040671 - [Feature:IPv6DualStack] most tests are failing in dualstack ipi\n2040694 - Three upstream HTTPClientConfig struct fields missing in the operator\n2040705 - Du policy for standard cluster runs the PTP daemon on masters and workers\n2040710 - cluster-baremetal-operator cannot update BMC subscription CR\n2040741 - Add CI test(s) to ensure that metal3 components are deployed in vSphere, OpenStack and None platforms\n2040782 - Import YAML page blocks input with more then one generateName attribute\n2040783 - The Import from YAML summary page doesn\u0027t show the resource name if created via generateName attribute\n2040791 - Default PGT policies must be \u0027inform\u0027 to integrate with the Lifecycle Operator\n2040793 - Fix snapshot e2e failures\n2040880 - do not block upgrades if we can\u0027t connect to vcenter\n2041087 - MetalLB: MetalLB CR is not upgraded automatically from 4.9 to 4.10\n2041093 - autounattend.xml missing\n2041204 - link to templates in virtualization-cluster-overview inventory card is to all templates\n2041319 - [IPI on Alibabacloud] installation in region \"cn-shanghai\" failed, due to \"Resource alicloud_vswitch CreateVSwitch Failed...InvalidCidrBlock.Overlapped\"\n2041326 - Should bump cluster-kube-descheduler-operator to kubernetes version V1.23\n2041329 - aws and gcp CredentialsRequest manifests missing ServiceAccountNames list for cloud-network-config-controller\n2041361 - [IPI on Alibabacloud] Disable session persistence and removebBandwidth peak of listener\n2041441 - Provision volume with size 3000Gi even if sizeRange: \u0027[10-2000]GiB\u0027 in storageclass on IBM cloud\n2041466 - Kubedescheduler version is missing from the operator logs\n2041475 - React components should have a (mostly) unique name in react dev tools to simplify code analyses\n2041483 - MetallB: quay.io/openshift/origin-kube-rbac-proxy:4.10 deploy Metallb CR  is missing (controller and speaker pods)\n2041492 - Spacing between resources in inventory card is too small\n2041509 - GCP Cloud provider components should use K8s 1.23 dependencies\n2041510 - cluster-baremetal-operator doesn\u0027t run baremetal-operator\u0027s subscription webhook\n2041541 - audit: ManagedFields are dropped using API not annotation\n2041546 - ovnkube: set election timer at RAFT cluster creation time\n2041554 - use lease for leader election\n2041581 - KubeDescheduler operator log shows \"Use of insecure cipher detected\"\n2041583 - etcd and api server cpu mask interferes with a guaranteed workload\n2041598 - Including CA bundle in Azure Stack cloud config causes MCO failure\n2041605 - Dynamic Plugins: discrepancy in proxy alias documentation/implementation\n2041620 - bundle CSV alm-examples does not parse\n2041641 - Fix inotify leak and kubelet retaining memory\n2041671 - Delete templates leads to 404 page\n2041694 - [IPI on Alibabacloud] installation fails when region does not support the cloud_essd disk category\n2041734 - ovs hwol: VFs are unbind when switchdev mode is enabled\n2041750 - [IPI on Alibabacloud] trying \"create install-config\" with region \"cn-wulanchabu (China (Ulanqab))\" (or \"ap-southeast-6 (Philippines (Manila))\", \"cn-guangzhou (China (Guangzhou))\") failed due to invalid endpoint\n2041763 - The Observe \u003e Alerting pages no longer have their default sort order applied\n2041830 - CI: ovn-kubernetes-master-e2e-aws-ovn-windows is broken\n2041854 - Communities / Local prefs are applied to all the services regardless of the pool, and only one community is applied\n2041882 - cloud-network-config operator can\u0027t work normal on GCP workload identity cluster\n2041888 - Intermittent incorrect build to run correlation, leading to run status updates applied to wrong build, builds stuck in non-terminal phases\n2041926 - [IPI on Alibabacloud] Installer ignores public zone when it does not exist\n2041971 - [vsphere] Reconciliation of mutating webhooks didn\u0027t happen\n2041989 - CredentialsRequest manifests being installed for ibm-cloud-managed profile\n2041999 - [PROXY] external dns pod cannot recognize custom proxy CA\n2042001 - unexpectedly found multiple load balancers\n2042029 - kubedescheduler fails to install completely\n2042036 - [IBMCLOUD] \"openshift-install explain installconfig.platform.ibmcloud\" contains not yet supported custom vpc parameters\n2042049 - Seeing warning related to unrecognized feature gate in kubescheduler \u0026 KCM logs\n2042059 - update discovery burst to reflect lots of CRDs on openshift clusters\n2042069 - Revert toolbox to rhcos-toolbox\n2042169 - Can not delete egressnetworkpolicy in Foreground propagation\n2042181 - MetalLB: User should not be allowed add same bgp advertisement twice in BGP address pool\n2042265 - [IBM]\"--scale-down-utilization-threshold\" doesn\u0027t work on IBMCloud\n2042274 - Storage API should be used when creating a PVC\n2042315 - Baremetal IPI deployment with IPv6 control plane and disabled provisioning network fails as the nodes do not pass introspection\n2042366 - Lifecycle hooks should be independently managed\n2042370 - [IPI on Alibabacloud] installer panics when the zone does not have an enhanced NAT gateway\n2042382 - [e2e][automation] CI takes more then 2 hours to run\n2042395 - Add prerequisites for active health checks test\n2042438 - Missing rpms in openstack-installer image\n2042466 - Selection does not happen when switching from Topology Graph to List View\n2042493 - No way to verify if IPs with leading zeros are still valid in the apiserver\n2042567 - insufficient info on CodeReady Containers configuration\n2042600 - Alone, the io.kubernetes.cri-o.Devices option poses a security risk\n2042619 - Overview page of the console is broken for hypershift clusters\n2042655 - [IPI on Alibabacloud] cluster becomes unusable if there is only one kube-apiserver pod running\n2042711 - [IBMCloud] Machine Deletion Hook cannot work on IBMCloud\n2042715 - [AliCloud] Machine Deletion Hook cannot work on AliCloud\n2042770 - [IPI on Alibabacloud] with vpcID \u0026 vswitchIDs specified, the installer would still try creating NAT gateway unexpectedly\n2042829 - Topology performance: HPA was fetched for each Deployment (Pod Ring)\n2042851 - Create template from SAP HANA template flow - VM is created instead of a new template\n2042906 - Edit machineset with same machine deletion hook name succeed\n2042960 - azure-file CI fails with \"gid(0) in storageClass and pod fsgroup(1000) are not equal\"\n2043003 - [IPI on Alibabacloud] \u0027destroy cluster\u0027 of a failed installation (bug2041694) stuck after \u0027stage=Nat gateways\u0027\n2043042 - [Serial] [sig-auth][Feature:OAuthServer] [RequestHeaders] [IdP] test RequestHeaders IdP [Suite:openshift/conformance/serial]\n2043043 - Cluster Autoscaler should use K8s 1.23 dependencies\n2043064 - Topology performance: Unnecessary rerenderings in topology nodes (unchanged mobx props)\n2043078 - Favorite system projects not visible in the project selector after toggling \"Show default projects\". \n2043117 - Recommended operators links are erroneously treated as external\n2043130 - Update CSI sidecars to the latest release for 4.10\n2043234 - Missing validation when creating several BGPPeers with the same peerAddress\n2043240 - Sync openshift/descheduler with sigs.k8s.io/descheduler\n2043254 - crio does not bind the security profiles directory\n2043296 - Ignition fails when reusing existing statically-keyed LUKS volume\n2043297 - [4.10] Bootimage bump tracker\n2043316 - RHCOS VM fails to boot on Nutanix AOS\n2043446 - Rebase aws-efs-utils to the latest upstream version. \n2043556 - Add proper ci-operator configuration to ironic and ironic-agent images\n2043577 - DPU network operator\n2043651 - Fix bug with exp. backoff working correcly when setting nextCheck in vsphere operator\n2043675 - Too many machines deleted by cluster autoscaler when scaling down\n2043683 - Revert bug 2039344 Ignoring IPv6 addresses against etcd cert validation\n2043709 - Logging flags no longer being bound to command line\n2043721 - Installer bootstrap hosts using outdated kubelet containing bugs\n2043731 - [IBMCloud] terraform outputs missing for ibmcloud bootstrap and worker ips for must-gather\n2043759 - Bump cluster-ingress-operator to k8s.io/api 1.23\n2043780 - Bump router to k8s.io/api 1.23\n2043787 - Bump cluster-dns-operator to k8s.io/api 1.23\n2043801 - Bump CoreDNS to k8s.io/api 1.23\n2043802 - EgressIP stopped working after single egressIP for a netnamespace is switched to the other node of HA pair after the first egress node is shutdown\n2043961 - [OVN-K] If pod creation fails, retry doesn\u0027t work as expected. \n2044201 - Templates golden image parameters names should be supported\n2044244 - Builds are failing after upgrading the cluster with builder image [jboss-webserver-5/jws56-openjdk8-openshift-rhel8]\n2044248 - [IBMCloud][vpc.block.csi.ibm.io]Cluster common user use the storageclass without parameter \u201ccsi.storage.k8s.io/fstype\u201d create pvc,pod successfully but write data to the pod\u0027s volume failed of \"Permission denied\"\n2044303 - [ovn][cloud-network-config-controller] cloudprivateipconfigs ips were left after deleting egressip objects\n2044347 - Bump to kubernetes 1.23.3\n2044481 - collect sharedresource cluster scoped instances with must-gather\n2044496 - Unable to create hardware events subscription - failed to add finalizers\n2044628 - CVE-2022-21673 grafana: Forward OAuth Identity Token can allow users to access some data sources\n2044680 - Additional libovsdb performance and resource consumption fixes\n2044704 - Observe \u003e Alerting pages should not show runbook links in 4.10\n2044717 - [e2e] improve tests for upstream test environment\n2044724 - Remove namespace column on VM list page when a project is selected\n2044745 - Upgrading cluster from 4.9 to 4.10 on Azure (ARO) causes the cloud-network-config-controller pod to CrashLoopBackOff\n2044808 - machine-config-daemon-pull.service: use `cp` instead of `cat` when extracting MCD in OKD\n2045024 - CustomNoUpgrade alerts should be ignored\n2045112 - vsphere-problem-detector has missing rbac rules for leases\n2045199 - SnapShot with Disk Hot-plug hangs\n2045561 - Cluster Autoscaler should use the same default Group value as Cluster API\n2045591 - Reconciliation of aws pod identity mutating webhook did not happen\n2045849 - Add Sprint 212 translations\n2045866 - MCO Operator pod spam \"Error creating event\" warning messages in 4.10\n2045878 - Sync upstream 1.16.0 downstream; includes hybrid helm plugin\n2045916 - [IBMCloud] Default machine profile in installer is unreliable\n2045927 - [FJ OCP4.10 Bug]: Podman failed to pull the IPA image due to the loss of proxy environment\n2046025 - [IPI on Alibabacloud] pre-configured alicloud DNS private zone is deleted after destroying cluster, please clarify\n2046137 - oc output for unknown commands is not human readable\n2046296 - When creating multiple consecutive egressIPs on GCP not all of them get assigned to the instance\n2046297 - Bump DB reconnect timeout\n2046517 - In Notification drawer, the \"Recommendations\" header shows when there isn\u0027t any recommendations\n2046597 - Observe \u003e Targets page may show the wrong service monitor is multiple monitors have the same namespace \u0026 label selectors\n2046626 - Allow setting custom metrics for Ansible-based Operators\n2046683 - [AliCloud]\"--scale-down-utilization-threshold\" doesn\u0027t work on AliCloud\n2047025 - Installation fails because of Alibaba CSI driver operator is degraded\n2047190 - Bump Alibaba CSI driver for 4.10\n2047238 - When using communities and localpreferences together, only localpreference gets applied\n2047255 - alibaba: resourceGroupID not found\n2047258 - [aws-usgov] fatal error occurred if AMI is not provided for AWS GovCloud regions\n2047317 - Update HELM OWNERS files under Dev Console\n2047455 - [IBM Cloud] Update custom image os type\n2047496 - Add image digest feature\n2047779 - do not degrade cluster if storagepolicy creation fails\n2047927 - \u0027oc get project\u0027 caused \u0027Observed a panic: cannot deep copy core.NamespacePhase\u0027 when AllRequestBodies is used\n2047929 - use lease for leader election\n2047975 - [sig-network][Feature:Router] The HAProxy router should override the route host for overridden domains with a custom value [Skipped:Disconnected] [Suite:openshift/conformance/parallel]\n2048046 - New route annotation to show another URL or hide topology URL decorator doesn\u0027t work for Knative Services\n2048048 - Application tab in User Preferences dropdown menus are too wide. \n2048050 - Topology list view items are not highlighted on keyboard navigation\n2048117 - [IBM]Shouldn\u0027t change status.storage.bucket and status.storage.resourceKeyCRN when update sepc.stroage,ibmcos with invalid value\n2048413 - Bond CNI: Failed to  attach Bond NAD to pod\n2048443 - Image registry operator panics when finalizes config deletion\n2048478 - [alicloud] CCM deploys alibaba-cloud-controller-manager from quay.io/openshift/origin-*\n2048484 - SNO: cluster-policy-controller failed to start due to missing serving-cert/tls.crt\n2048598 - Web terminal view is broken\n2048836 - ovs-configure mis-detecting the ipv6 status on IPv4 only cluster causing Deployment failure\n2048891 - Topology page is crashed\n2049003 - 4.10: [IBMCloud] ibm-vpc-block-csi-node does not specify an update strategy, only resource requests, or priority class\n2049043 - Cannot create VM from template\n2049156 - \u0027oc get project\u0027 caused \u0027Observed a panic: cannot deep copy core.NamespacePhase\u0027 when AllRequestBodies is used\n2049886 - Placeholder bug for OCP 4.10.0 metadata release\n2049890 - Warning annotation for pods with cpu requests or limits on single-node OpenShift cluster without workload partitioning\n2050189 - [aws-efs-csi-driver] Merge upstream changes since v1.3.2\n2050190 - [aws-ebs-csi-driver] Merge upstream changes since v1.2.0\n2050227 - Installation on PSI fails with: \u0027openstack platform does not have the required standard-attr-tag network extension\u0027\n2050247 - Failing test in periodics: [sig-network] Services should respect internalTrafficPolicy=Local Pod and Node, to Pod (hostNetwork: true) [Feature:ServiceInternalTrafficPolicy] [Skipped:Network/OVNKubernetes] [Suite:openshift/conformance/parallel] [Suite:k8s]\n2050250 - Install fails to bootstrap, complaining about DefragControllerDegraded and sad members\n2050310 - ContainerCreateError when trying to launch large (\u003e500) numbers of pods across nodes\n2050370 - alert data for burn budget needs to be updated to prevent regression\n2050393 - ZTP missing support for local image registry and custom machine config\n2050557 - Can not push images to image-registry when enabling KMS encryption in AlibabaCloud\n2050737 - Remove metrics and events for master port offsets\n2050801 - Vsphere upi tries to access vsphere during manifests generation phase\n2050883 - Logger object in LSO does not log source location accurately\n2051692 - co/image-registry is degrade because ImagePrunerDegraded: Job has reached the specified backoff limit\n2052062 - Whereabouts should implement client-go 1.22+\n2052125 - [4.10] Crio appears to be coredumping in some scenarios\n2052210 - [aws-c2s] kube-apiserver crashloops due to missing cloud config\n2052339 - Failing webhooks will block an upgrade to 4.10 mid-way through the upgrade. \n2052458 - [IBM Cloud] ibm-vpc-block-csi-controller does not specify an update strategy, priority class, or only resource requests\n2052598 - kube-scheduler should use configmap lease\n2052599 - kube-controller-manger should use configmap lease\n2052600 - Failed to scaleup RHEL machine against OVN cluster due to jq tool is required by configure-ovs.sh\n2052609 - [vSphere CSI driver Operator] RWX volumes counts metrics `vsphere_rwx_volumes_total` not valid\n2052611 - MetalLB: BGPPeer object does not have ability to set ebgpMultiHop\n2052612 - MetalLB: Webhook Validation: Two BGPPeers instances can have different router ID set. \n2052644 - Infinite OAuth redirect loop post-upgrade to 4.10.0-rc.1\n2052666 - [4.10.z] change gitmodules to rhcos-4.10 branch\n2052756 - [4.10] PVs are not being cleaned up after PVC deletion\n2053175 - oc adm catalog mirror throws \u0027missing signature key\u0027 error when using file://local/index\n2053218 - ImagePull fails with error  \"unable to pull manifest from example.com/busy.box:v5  invalid reference format\"\n2053252 - Sidepanel for Connectors/workloads in topology shows invalid tabs\n2053268 - inability to detect static lifecycle failure\n2053314 - requestheader IDP test doesn\u0027t wait for cleanup, causing high failure rates\n2053323 - OpenShift-Ansible BYOH Unit Tests are Broken\n2053339 - Remove dev preview badge from IBM FlashSystem deployment windows\n2053751 - ztp-site-generate container is missing convenience entrypoint\n2053945 - [4.10] Failed to apply sriov policy on intel nics\n2054109 - Missing \"app\" label\n2054154 - RoleBinding in project without subject is causing \"Project access\" page to fail\n2054244 - Latest pipeline run should be listed on the top of the pipeline run list\n2054288 - console-master-e2e-gcp-console is broken\n2054562 - DPU network operator 4.10 branch need to sync with master\n2054897 - Unable to deploy hw-event-proxy operator\n2055193 - e2e-metal-ipi-serial-ovn-ipv6 is failing frequently\n2055358 - Summary Interval Hardcoded in PTP Operator if Set in the Global Body Instead of Command Line\n2055371 - Remove Check which enforces summary_interval must match logSyncInterval\n2055689 - [ibm]Operator storage PROGRESSING and DEGRADED is true during fresh install for ocp4.11\n2055894 - CCO mint mode will not work for Azure after sunsetting of Active Directory Graph API\n2056441 - AWS EFS CSI driver should use the trusted CA bundle when cluster proxy is configured\n2056479 - ovirt-csi-driver-node pods are crashing intermittently\n2056572 - reconcilePrecaching error: cannot list resource \"clusterserviceversions\" in API group \"operators.coreos.com\" at the cluster scope\"\n2056629 - [4.10] EFS CSI driver can\u0027t unmount volumes with \"wait: no child processes\"\n2056878 - (dummy bug) ovn-kubernetes ExternalTrafficPolicy still SNATs\n2056928 - Ingresscontroller LB scope change behaviour differs for different values of aws-load-balancer-internal annotation\n2056948 - post 1.23 rebase: regression in service-load balancer reliability\n2057438 - Service Level Agreement (SLA) always show \u0027Unknown\u0027\n2057721 - Fix Proxy support in RHACM 2.4.2\n2057724 - Image creation fails when NMstateConfig CR is empty\n2058641 - [4.10] Pod density test causing problems when using kube-burner\n2059761 - 4.9.23-s390x-machine-os-content manifest invalid when mirroring content for disconnected install\n2060610 - Broken access to public images: Unable to connect to the server: no basic auth credentials\n2060956 - service domain can\u0027t be resolved when networkpolicy is used in OCP 4.10-rc\n\n5. References:\n\nhttps://access.redhat.com/security/cve/CVE-2014-3577\nhttps://access.redhat.com/security/cve/CVE-2016-10228\nhttps://access.redhat.com/security/cve/CVE-2017-14502\nhttps://access.redhat.com/security/cve/CVE-2018-20843\nhttps://access.redhat.com/security/cve/CVE-2018-1000858\nhttps://access.redhat.com/security/cve/CVE-2019-8625\nhttps://access.redhat.com/security/cve/CVE-2019-8710\nhttps://access.redhat.com/security/cve/CVE-2019-8720\nhttps://access.redhat.com/security/cve/CVE-2019-8743\nhttps://access.redhat.com/security/cve/CVE-2019-8764\nhttps://access.redhat.com/security/cve/CVE-2019-8766\nhttps://access.redhat.com/security/cve/CVE-2019-8769\nhttps://access.redhat.com/security/cve/CVE-2019-8771\nhttps://access.redhat.com/security/cve/CVE-2019-8782\nhttps://access.redhat.com/security/cve/CVE-2019-8783\nhttps://access.redhat.com/security/cve/CVE-2019-8808\nhttps://access.redhat.com/security/cve/CVE-2019-8811\nhttps://access.redhat.com/security/cve/CVE-2019-8812\nhttps://access.redhat.com/security/cve/CVE-2019-8813\nhttps://access.redhat.com/security/cve/CVE-2019-8814\nhttps://access.redhat.com/security/cve/CVE-2019-8815\nhttps://access.redhat.com/security/cve/CVE-2019-8816\nhttps://access.redhat.com/security/cve/CVE-2019-8819\nhttps://access.redhat.com/security/cve/CVE-2019-8820\nhttps://access.redhat.com/security/cve/CVE-2019-8823\nhttps://access.redhat.com/security/cve/CVE-2019-8835\nhttps://access.redhat.com/security/cve/CVE-2019-8844\nhttps://access.redhat.com/security/cve/CVE-2019-8846\nhttps://access.redhat.com/security/cve/CVE-2019-9169\nhttps://access.redhat.com/security/cve/CVE-2019-13050\nhttps://access.redhat.com/security/cve/CVE-2019-13627\nhttps://access.redhat.com/security/cve/CVE-2019-14889\nhttps://access.redhat.com/security/cve/CVE-2019-15903\nhttps://access.redhat.com/security/cve/CVE-2019-19906\nhttps://access.redhat.com/security/cve/CVE-2019-20454\nhttps://access.redhat.com/security/cve/CVE-2019-20807\nhttps://access.redhat.com/security/cve/CVE-2019-25013\nhttps://access.redhat.com/security/cve/CVE-2020-1730\nhttps://access.redhat.com/security/cve/CVE-2020-3862\nhttps://access.redhat.com/security/cve/CVE-2020-3864\nhttps://access.redhat.com/security/cve/CVE-2020-3865\nhttps://access.redhat.com/security/cve/CVE-2020-3867\nhttps://access.redhat.com/security/cve/CVE-2020-3868\nhttps://access.redhat.com/security/cve/CVE-2020-3885\nhttps://access.redhat.com/security/cve/CVE-2020-3894\nhttps://access.redhat.com/security/cve/CVE-2020-3895\nhttps://access.redhat.com/security/cve/CVE-2020-3897\nhttps://access.redhat.com/security/cve/CVE-2020-3899\nhttps://access.redhat.com/security/cve/CVE-2020-3900\nhttps://access.redhat.com/security/cve/CVE-2020-3901\nhttps://access.redhat.com/security/cve/CVE-2020-3902\nhttps://access.redhat.com/security/cve/CVE-2020-8927\nhttps://access.redhat.com/security/cve/CVE-2020-9802\nhttps://access.redhat.com/security/cve/CVE-2020-9803\nhttps://access.redhat.com/security/cve/CVE-2020-9805\nhttps://access.redhat.com/security/cve/CVE-2020-9806\nhttps://access.redhat.com/security/cve/CVE-2020-9807\nhttps://access.redhat.com/security/cve/CVE-2020-9843\nhttps://access.redhat.com/security/cve/CVE-2020-9850\nhttps://access.redhat.com/security/cve/CVE-2020-9862\nhttps://access.redhat.com/security/cve/CVE-2020-9893\nhttps://access.redhat.com/security/cve/CVE-2020-9894\nhttps://access.redhat.com/security/cve/CVE-2020-9895\nhttps://access.redhat.com/security/cve/CVE-2020-9915\nhttps://access.redhat.com/security/cve/CVE-2020-9925\nhttps://access.redhat.com/security/cve/CVE-2020-9952\nhttps://access.redhat.com/security/cve/CVE-2020-10018\nhttps://access.redhat.com/security/cve/CVE-2020-11793\nhttps://access.redhat.com/security/cve/CVE-2020-13434\nhttps://access.redhat.com/security/cve/CVE-2020-14391\nhttps://access.redhat.com/security/cve/CVE-2020-15358\nhttps://access.redhat.com/security/cve/CVE-2020-15503\nhttps://access.redhat.com/security/cve/CVE-2020-25660\nhttps://access.redhat.com/security/cve/CVE-2020-25677\nhttps://access.redhat.com/security/cve/CVE-2020-27618\nhttps://access.redhat.com/security/cve/CVE-2020-27781\nhttps://access.redhat.com/security/cve/CVE-2020-29361\nhttps://access.redhat.com/security/cve/CVE-2020-29362\nhttps://access.redhat.com/security/cve/CVE-2020-29363\nhttps://access.redhat.com/security/cve/CVE-2021-3121\nhttps://access.redhat.com/security/cve/CVE-2021-3326\nhttps://access.redhat.com/security/cve/CVE-2021-3449\nhttps://access.redhat.com/security/cve/CVE-2021-3450\nhttps://access.redhat.com/security/cve/CVE-2021-3516\nhttps://access.redhat.com/security/cve/CVE-2021-3517\nhttps://access.redhat.com/security/cve/CVE-2021-3518\nhttps://access.redhat.com/security/cve/CVE-2021-3520\nhttps://access.redhat.com/security/cve/CVE-2021-3521\nhttps://access.redhat.com/security/cve/CVE-2021-3537\nhttps://access.redhat.com/security/cve/CVE-2021-3541\nhttps://access.redhat.com/security/cve/CVE-2021-3733\nhttps://access.redhat.com/security/cve/CVE-2021-3749\nhttps://access.redhat.com/security/cve/CVE-2021-20305\nhttps://access.redhat.com/security/cve/CVE-2021-21684\nhttps://access.redhat.com/security/cve/CVE-2021-22946\nhttps://access.redhat.com/security/cve/CVE-2021-22947\nhttps://access.redhat.com/security/cve/CVE-2021-25215\nhttps://access.redhat.com/security/cve/CVE-2021-27218\nhttps://access.redhat.com/security/cve/CVE-2021-30666\nhttps://access.redhat.com/security/cve/CVE-2021-30761\nhttps://access.redhat.com/security/cve/CVE-2021-30762\nhttps://access.redhat.com/security/cve/CVE-2021-33928\nhttps://access.redhat.com/security/cve/CVE-2021-33929\nhttps://access.redhat.com/security/cve/CVE-2021-33930\nhttps://access.redhat.com/security/cve/CVE-2021-33938\nhttps://access.redhat.com/security/cve/CVE-2021-36222\nhttps://access.redhat.com/security/cve/CVE-2021-37750\nhttps://access.redhat.com/security/cve/CVE-2021-39226\nhttps://access.redhat.com/security/cve/CVE-2021-41190\nhttps://access.redhat.com/security/cve/CVE-2021-43813\nhttps://access.redhat.com/security/cve/CVE-2021-44716\nhttps://access.redhat.com/security/cve/CVE-2021-44717\nhttps://access.redhat.com/security/cve/CVE-2022-0532\nhttps://access.redhat.com/security/cve/CVE-2022-21673\nhttps://access.redhat.com/security/cve/CVE-2022-24407\nhttps://access.redhat.com/security/updates/classification/#moderate\n\n6. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nb5PUYUBIZLc=\n=GUDA\n-----END PGP SIGNATURE-----\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. Description:\n\nRed Hat Advanced Cluster Management for Kubernetes 2.1.6 images\n\nRed Hat Advanced Cluster Management for Kubernetes provides the\ncapabilities to address common challenges that administrators and site\nreliability engineers face as they work across a range of public and\nprivate cloud environments. Clusters and applications are all visible and\nmanaged from a single console\u2014with security policy built in. \n\nBug fixes:\n\n* RHACM 2.1.6 images (BZ#1940581)\n\n* When generating the import cluster string, it can include unescaped\ncharacters (BZ#1934184)\n\n3. Bugs fixed (https://bugzilla.redhat.com/):\n\n1853652 - CVE-2020-14040 golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash\n1929338 - CVE-2020-35149 mquery: Code injection via merge or clone operation\n1934184 - When generating the import cluster string, it can include unescaped characters\n1940581 - RHACM 2.1.6 images\n\n5. Relevant releases/architectures:\n\nRed Hat JBoss Core Services on RHEL 7 Server - noarch, ppc64, x86_64\n\n3. Description:\n\nThis release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages\nthat are part of the JBoss Core Services offering. Refer to the Release Notes for information on the most\nsignificant bug fixes and enhancements included in this release. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1941547 - CVE-2021-3450 openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT\n1941554 - CVE-2021-3449 openssl: NULL pointer dereference in signature_algorithms processing\n\n6. Package List:\n\nRed Hat JBoss Core Services on RHEL 7 Server:\n\nSource:\njbcs-httpd24-httpd-2.4.37-70.jbcs.el7.src.rpm\njbcs-httpd24-mod_cluster-native-1.3.14-20.Final_redhat_2.jbcs.el7.src.rpm\njbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.src.rpm\njbcs-httpd24-mod_jk-1.2.48-13.redhat_1.jbcs.el7.src.rpm\njbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.src.rpm\njbcs-httpd24-mod_security-2.9.2-60.GA.jbcs.el7.src.rpm\njbcs-httpd24-nghttp2-1.39.2-37.jbcs.el7.src.rpm\njbcs-httpd24-openssl-1.1.1g-6.jbcs.el7.src.rpm\njbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.src.rpm\njbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.src.rpm\n\nnoarch:\njbcs-httpd24-httpd-manual-2.4.37-70.jbcs.el7.noarch.rpm\n\nppc64:\njbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.ppc64.rpm\njbcs-httpd24-mod_http2-debuginfo-1.15.7-14.jbcs.el7.ppc64.rpm\njbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.ppc64.rpm\njbcs-httpd24-mod_md-debuginfo-2.0.8-33.jbcs.el7.ppc64.rpm\njbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.ppc64.rpm\njbcs-httpd24-openssl-chil-debuginfo-1.0.0-5.jbcs.el7.ppc64.rpm\njbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.ppc64.rpm\njbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-20.jbcs.el7.ppc64.rpm\n\nx86_64:\njbcs-httpd24-httpd-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-httpd-debuginfo-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-httpd-devel-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-httpd-selinux-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-httpd-tools-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_cluster-native-1.3.14-20.Final_redhat_2.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_cluster-native-debuginfo-1.3.14-20.Final_redhat_2.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_http2-1.15.7-14.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_http2-debuginfo-1.15.7-14.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_jk-ap24-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_jk-debuginfo-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_jk-manual-1.2.48-13.redhat_1.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_ldap-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_md-2.0.8-33.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_md-debuginfo-2.0.8-33.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_proxy_html-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_security-2.9.2-60.GA.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_security-debuginfo-2.9.2-60.GA.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_session-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-mod_ssl-2.4.37-70.jbcs.el7.x86_64.rpm\njbcs-httpd24-nghttp2-1.39.2-37.jbcs.el7.x86_64.rpm\njbcs-httpd24-nghttp2-debuginfo-1.39.2-37.jbcs.el7.x86_64.rpm\njbcs-httpd24-nghttp2-devel-1.39.2-37.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-1.1.1g-6.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-chil-1.0.0-5.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-chil-debuginfo-1.0.0-5.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-debuginfo-1.1.1g-6.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-devel-1.1.1g-6.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-libs-1.1.1g-6.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-perl-1.1.1g-6.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-pkcs11-0.4.10-20.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-pkcs11-debuginfo-0.4.10-20.jbcs.el7.x86_64.rpm\njbcs-httpd24-openssl-static-1.1.1g-6.jbcs.el7.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. Description:\n\nRed Hat JBoss Web Server is a fully integrated and certified set of\ncomponents for hosting Java web applications. It is comprised of the Apache\nHTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector\n(mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat\nNative library. ==========================================================================\nUbuntu Security Notice USN-5038-1\nAugust 12, 2021\n\npostgresql-10, postgresql-12, postgresql-13 vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 21.04\n- Ubuntu 20.04 LTS\n- Ubuntu 18.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in PostgreSQL. \n\nSoftware Description:\n- postgresql-13: Object-relational SQL database\n- postgresql-12: Object-relational SQL database\n- postgresql-10: Object-relational SQL database\n\nDetails:\n\nIt was discovered that the PostgresQL planner could create incorrect plans\nin certain circumstances. A remote attacker could use this issue to cause\nPostgreSQL to crash, resulting in a denial of service, or possibly obtain\nsensitive information from memory. (CVE-2021-3677)\n\nIt was discovered that PostgreSQL incorrectly handled certain SSL\nrenegotiation ClientHello messages from clients. A remote attacker could\npossibly use this issue to cause PostgreSQL to crash, resulting in a denial\nof service. (CVE-2021-3449)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 21.04:\n  postgresql-13                   13.4-0ubuntu0.21.04.1\n\nUbuntu 20.04 LTS:\n  postgresql-12                   12.8-0ubuntu0.20.04.1\n\nUbuntu 18.04 LTS:\n  postgresql-10                   10.18-0ubuntu0.18.04.1\n\nThis update uses a new upstream release, which includes additional bug\nfixes. After a standard system update you need to restart PostgreSQL to\nmake all the necessary changes",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449"
          },
          {
            "db": "PACKETSTORM",
            "id": "162383"
          },
          {
            "db": "PACKETSTORM",
            "id": "162183"
          },
          {
            "db": "PACKETSTORM",
            "id": "166279"
          },
          {
            "db": "PACKETSTORM",
            "id": "162337"
          },
          {
            "db": "PACKETSTORM",
            "id": "162196"
          },
          {
            "db": "PACKETSTORM",
            "id": "162201"
          },
          {
            "db": "PACKETSTORM",
            "id": "163815"
          }
        ],
        "trust": 2.43
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-3449",
            "trust": 2.7
          },
          {
            "db": "TENABLE",
            "id": "TNS-2021-06",
            "trust": 1.2
          },
          {
            "db": "TENABLE",
            "id": "TNS-2021-09",
            "trust": 1.2
          },
          {
            "db": "TENABLE",
            "id": "TNS-2021-05",
            "trust": 1.2
          },
          {
            "db": "TENABLE",
            "id": "TNS-2021-10",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/03/28/3",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/03/27/2",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/03/28/4",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/03/27/1",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-772220",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-389290",
            "trust": 1.2
          },
          {
            "db": "PULSESECURE",
            "id": "SA44845",
            "trust": 1.2
          },
          {
            "db": "MCAFEE",
            "id": "SB10356",
            "trust": 1.2
          },
          {
            "db": "JVN",
            "id": "JVNVU92126369",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383",
            "trust": 0.8
          },
          {
            "db": "PACKETSTORM",
            "id": "162183",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "162383",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "162337",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "162196",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "162201",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "162197",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162114",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162076",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163257",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162350",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162041",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162013",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162699",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162151",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162189",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162172",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "161984",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162307",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "162200",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-99170",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-388130",
            "trust": 0.1
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-104-05",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166279",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163815",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449"
          },
          {
            "db": "PACKETSTORM",
            "id": "162383"
          },
          {
            "db": "PACKETSTORM",
            "id": "162183"
          },
          {
            "db": "PACKETSTORM",
            "id": "166279"
          },
          {
            "db": "PACKETSTORM",
            "id": "162337"
          },
          {
            "db": "PACKETSTORM",
            "id": "162196"
          },
          {
            "db": "PACKETSTORM",
            "id": "162201"
          },
          {
            "db": "PACKETSTORM",
            "id": "163815"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          }
        ]
      },
      "id": "VAR-202103-1464",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          }
        ],
        "trust": 0.6759960527272728
      },
      "last_update_date": "2026-04-10T22:31:43.638000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "hitachi-sec-2021-119 Software product security information",
            "trust": 0.8,
            "url": "https://www.debian.org/security/2021/dsa-4875"
          },
          {
            "title": "Debian Security Advisories: DSA-4875-1 openssl -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=b5207bd1e788bc6e8d94f410cf4801bc"
          },
          {
            "title": "Red Hat: CVE-2021-3449",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2021-3449"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1622",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1622"
          },
          {
            "title": "Arch Linux Issues: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2021-3449 log"
          },
          {
            "title": "Cisco: Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-openssl-2021-GHY28dJd"
          },
          {
            "title": "Hitachi Security Advisories: Vulnerability in JP1/Base and JP1/ File Transmission Server/FTP",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hitachi_security_advisories\u0026qid=hitachi-sec-2021-130"
          },
          {
            "title": "Tenable Security Advisories: [R1] Tenable.sc 5.18.0 Fixes One Third-party Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2021-06"
          },
          {
            "title": "Tenable Security Advisories: [R1] Nessus 8.13.2 Fixes Multiple Third-party Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2021-05"
          },
          {
            "title": "Hitachi Security Advisories: Multiple Vulnerabilities in Hitachi Ops Center Common Services",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hitachi_security_advisories\u0026qid=hitachi-sec-2021-117"
          },
          {
            "title": "Hitachi Security Advisories: Multiple Vulnerabilities in Hitachi Ops Center Analyzer viewpoint",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=hitachi_security_advisories\u0026qid=hitachi-sec-2021-119"
          },
          {
            "title": "Tenable Security Advisories: [R1] Nessus Network Monitor 5.13.1 Fixes Multiple Third-party Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2021-09"
          },
          {
            "title": "Tenable Security Advisories: [R1] LCE 6.0.9 Fixes Multiple Third-party Vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=tenable_security_advisories\u0026qid=TNS-2021-10"
          },
          {
            "title": "Red Hat: Moderate: OpenShift Container Platform 4.10.3 security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20220056 - Security Advisory"
          },
          {
            "title": "CVE-2021-3449 OpenSSL \u003c1.1.1k DoS exploit",
            "trust": 0.1,
            "url": "https://github.com/terorie/cve-2021-3449 "
          },
          {
            "title": "CVE-2021-3449 OpenSSL \u003c1.1.1k DoS exploit",
            "trust": 0.1,
            "url": "https://github.com/gitchangye/cve "
          },
          {
            "title": "NSAPool-PenTest",
            "trust": 0.1,
            "url": "https://github.com/AliceMongodin/NSAPool-PenTest "
          },
          {
            "title": "Analysis of attack vectors for embedded Linux",
            "trust": 0.1,
            "url": "https://github.com/FeFi7/attacking_embedded_linux "
          },
          {
            "title": "openssl-cve",
            "trust": 0.1,
            "url": "https://github.com/yonhan3/openssl-cve "
          },
          {
            "title": "CVE-Check",
            "trust": 0.1,
            "url": "https://github.com/falk-werner/cve-check "
          },
          {
            "title": "SEEKER_dataset",
            "trust": 0.1,
            "url": "https://github.com/SF4bin/SEEKER_dataset "
          },
          {
            "title": "Year of the Jellyfish (YotJF)",
            "trust": 0.1,
            "url": "https://github.com/rnbochsr/yr_of_the_jellyfish "
          },
          {
            "title": "https://github.com/tianocore-docs/ThirdPartySecurityAdvisories",
            "trust": 0.1,
            "url": "https://github.com/tianocore-docs/ThirdPartySecurityAdvisories "
          },
          {
            "title": "TASSL-1.1.1k",
            "trust": 0.1,
            "url": "https://github.com/jntass/TASSL-1.1.1k "
          },
          {
            "title": "Trivy by Aqua security\nRefer this official repository for explore  Trivy Action",
            "trust": 0.1,
            "url": "https://github.com/scholarnishu/Trivy-by-AquaSecurity "
          },
          {
            "title": "Trivy by Aqua security\nRefer this official repository for explore  Trivy Action",
            "trust": 0.1,
            "url": "https://github.com/thecyberbaby/Trivy-by-aquaSecurity "
          },
          {
            "title": "\ud83d\udc31 Catlin Vulnerability Scanner \ud83d\udc31",
            "trust": 0.1,
            "url": "https://github.com/vinamra28/tekton-image-scan-trivy "
          },
          {
            "title": "DEVOPS + ACR + TRIVY",
            "trust": 0.1,
            "url": "https://github.com/arindam0310018/04-Apr-2022-DevOps__Scan-Images-In-ACR-Using-Trivy "
          },
          {
            "title": "Trivy Demo",
            "trust": 0.1,
            "url": "https://github.com/fredrkl/trivy-demo "
          },
          {
            "title": "GitHub Actions CI App Pipeline",
            "trust": 0.1,
            "url": "https://github.com/isgo-golgo13/gokit-gorillakit-enginesvc "
          },
          {
            "title": "Awesome Stars",
            "trust": 0.1,
            "url": "https://github.com/taielab/awesome-hacking-lists "
          },
          {
            "title": "podcast-dl-gael",
            "trust": 0.1,
            "url": "https://github.com/GitHubForSnap/podcast-dl-gael "
          },
          {
            "title": "sec-tools",
            "trust": 0.1,
            "url": "https://github.com/matengfei000/sec-tools "
          },
          {
            "title": "sec-tools",
            "trust": 0.1,
            "url": "https://github.com/anquanscan/sec-tools "
          },
          {
            "title": "\u66f4\u65b0\u4e8e 2023-11-27 08:36:01\n\u5b89\u5168\n\u5f00\u53d1\n\u672a\u5206\u7c7b\n\u6742\u4e03\u6742\u516b",
            "trust": 0.1,
            "url": "https://github.com/20142995/sectool "
          },
          {
            "title": "Vulnerability",
            "trust": 0.1,
            "url": "https://github.com/tzwlhack/Vulnerability "
          },
          {
            "title": "OpenSSL-CVE-lib",
            "trust": 0.1,
            "url": "https://github.com/chnzzh/OpenSSL-CVE-lib "
          },
          {
            "title": "PoC in GitHub",
            "trust": 0.1,
            "url": "https://github.com/soosmile/POC "
          },
          {
            "title": "PoC in GitHub",
            "trust": 0.1,
            "url": "https://github.com/manas3c/CVE-POC "
          },
          {
            "title": "The Register",
            "trust": 0.1,
            "url": "https://www.theregister.co.uk/2021/03/25/openssl_bug_fix/"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-3449"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-476",
            "trust": 1.1
          },
          {
            "problemtype": "NULL Pointer dereference (CWE-476) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3449"
          },
          {
            "trust": 1.3,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-openssl-2021-ghy28djd"
          },
          {
            "trust": 1.3,
            "url": "https://www.debian.org/security/2021/dsa-4875"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://kb.pulsesecure.net/articles/pulse_security_advisories/sa44845"
          },
          {
            "trust": 1.2,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2021-0013"
          },
          {
            "trust": 1.2,
            "url": "https://security.netapp.com/advisory/ntap-20210326-0006/"
          },
          {
            "trust": 1.2,
            "url": "https://security.netapp.com/advisory/ntap-20210513-0002/"
          },
          {
            "trust": 1.2,
            "url": "https://www.openssl.org/news/secadv/20210325.txt"
          },
          {
            "trust": 1.2,
            "url": "https://www.tenable.com/security/tns-2021-05"
          },
          {
            "trust": 1.2,
            "url": "https://www.tenable.com/security/tns-2021-06"
          },
          {
            "trust": 1.2,
            "url": "https://www.tenable.com/security/tns-2021-09"
          },
          {
            "trust": 1.2,
            "url": "https://www.tenable.com/security/tns-2021-10"
          },
          {
            "trust": 1.2,
            "url": "https://security.gentoo.org/glsa/202103-03"
          },
          {
            "trust": 1.2,
            "url": "https://security.freebsd.org/advisories/freebsd-sa-21:07.openssl.asc"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com//security-alerts/cpujul2021.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpuapr2021.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
          },
          {
            "trust": 1.2,
            "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/03/27/1"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/03/27/2"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/03/28/3"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/03/28/4"
          },
          {
            "trust": 1.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=sb10356"
          },
          {
            "trust": 1.1,
            "url": "https://git.openssl.org/gitweb/?p=openssl.git%3ba=commitdiff%3bh=fb9fa6b51defd48157eeb207f52181f735d96148"
          },
          {
            "trust": 1.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ccbfllvqvilivgzmbjl3ixzgkwqisynp/"
          },
          {
            "trust": 1.0,
            "url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu92126369/"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/cve/cve-2021-3449"
          },
          {
            "trust": 0.6,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/cve/cve-2021-3450"
          },
          {
            "trust": 0.6,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3450"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2021-20305"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-27363"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_mana"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-20305"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-3347"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2020-28374"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-27364"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-26708"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-27365"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-0466"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2020-27152"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-27363"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-27152"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3347"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-27365"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2020-0466"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-27364"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-28374"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-26708"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-3121"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=fb9fa6b51defd48157eeb207f52181f735d96148"
          },
          {
            "trust": 0.1,
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026amp;id=sb10356"
          },
          {
            "trust": 0.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ccbfllvqvilivgzmbjl3ixzgkwqisynp/"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/476.html"
          },
          {
            "trust": 0.1,
            "url": "https://github.com/terorie/cve-2021-3449"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "https://www.cisa.gov/uscert/ics/advisories/icsa-22-104-05"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-23358"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-15586"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-28362"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-23358"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-16845"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-16845"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-28362"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-15586"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:1448"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:1196"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-14502"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-13050"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9925"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9802"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8771"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-30762"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33938"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8783"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-8927"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9895"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8625"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-44716"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8812"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8812"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3899"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8819"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-43813"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3867"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-20454"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8720"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9893"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33930"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8782"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8808"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3902"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-24407"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-25215"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3900"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-30761"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33928"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8743"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3537"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9805"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-19906"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8820"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9807"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8769"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8710"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-37750"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8813"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9850"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8710"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-27781"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8811"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8769"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0055"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-22947"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-27218"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9803"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8764"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9862"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-27618"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2014-3577"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-25013"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2014-3577"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3749"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3885"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-15503"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-20807"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-10228"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3326"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-41190"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.10/updating/updating-cluster-cli.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-10018"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-14889"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-25660"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8835"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2017-14502"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8764"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3733"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8844"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.10/release_notes/ocp-4-10-release-notes.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3865"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-1730"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3864"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-19906"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3520"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-15358"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-21684"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-13627"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-14391"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3541"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3862"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0056"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8811"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3901"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-39226"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8823"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3518"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8808"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-13434"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-1000858"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-15903"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3895"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-44717"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-11793"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-1000858"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-20454"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-20843"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-0532"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8720"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9894"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8816"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9843"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-13627"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8771"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-13050"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3897"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9806"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8814"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-25013"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-14889"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-20843"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8743"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33929"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9915"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-36222"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8815"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8813"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8625"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-8766"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8783"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-9169"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-20807"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-29362"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3516"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-29361"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-9952"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2016-10228"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3517"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-22946"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-21673"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-29363"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-15903"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8766"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3868"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8846"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-3894"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-25677"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-30666"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-8782"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3521"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-20218"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-20218"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3121"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:1369"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-35149"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-35149"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-14040"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14040"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:1199"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:1202"
          },
          {
            "trust": 0.1,
            "url": "https://ubuntu.com/security/notices/usn-5038-1"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3677"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/postgresql-10/10.18-0ubuntu0.18.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/postgresql-12/12.8-0ubuntu0.20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/postgresql-13/13.4-0ubuntu0.21.04.1"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-388130"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449"
          },
          {
            "db": "PACKETSTORM",
            "id": "162383"
          },
          {
            "db": "PACKETSTORM",
            "id": "162183"
          },
          {
            "db": "PACKETSTORM",
            "id": "166279"
          },
          {
            "db": "PACKETSTORM",
            "id": "162337"
          },
          {
            "db": "PACKETSTORM",
            "id": "162196"
          },
          {
            "db": "PACKETSTORM",
            "id": "162201"
          },
          {
            "db": "PACKETSTORM",
            "id": "163815"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULHUB",
            "id": "VHN-388130",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-3449",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "162383",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "162183",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166279",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "162337",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "162196",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "162201",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163815",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2021-3449",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-03-25T00:00:00",
            "db": "VULHUB",
            "id": "VHN-388130",
            "ident": null
          },
          {
            "date": "2021-03-25T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-3449",
            "ident": null
          },
          {
            "date": "2021-04-29T14:37:49",
            "db": "PACKETSTORM",
            "id": "162383",
            "ident": null
          },
          {
            "date": "2021-04-14T16:40:32",
            "db": "PACKETSTORM",
            "id": "162183",
            "ident": null
          },
          {
            "date": "2022-03-11T16:38:38",
            "db": "PACKETSTORM",
            "id": "166279",
            "ident": null
          },
          {
            "date": "2021-04-26T19:21:56",
            "db": "PACKETSTORM",
            "id": "162337",
            "ident": null
          },
          {
            "date": "2021-04-15T13:49:54",
            "db": "PACKETSTORM",
            "id": "162196",
            "ident": null
          },
          {
            "date": "2021-04-15T13:50:39",
            "db": "PACKETSTORM",
            "id": "162201",
            "ident": null
          },
          {
            "date": "2021-08-13T14:20:11",
            "db": "PACKETSTORM",
            "id": "163815",
            "ident": null
          },
          {
            "date": "2021-05-06T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001383",
            "ident": null
          },
          {
            "date": "2021-03-25T15:15:13.450000",
            "db": "NVD",
            "id": "CVE-2021-3449",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2022-08-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-388130",
            "ident": null
          },
          {
            "date": "2023-11-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-3449",
            "ident": null
          },
          {
            "date": "2021-09-13T07:43:00",
            "db": "JVNDB",
            "id": "JVNDB-2021-001383",
            "ident": null
          },
          {
            "date": "2024-11-21T06:21:33.050000",
            "db": "NVD",
            "id": "CVE-2021-3449",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163815"
          }
        ],
        "trust": 0.1
      },
      "title": {
        "_id": null,
        "data": "OpenSSL\u00a0 In \u00a0NULL\u00a0 Pointer dereference vulnerability",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2021-001383"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "code execution",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "162383"
          }
        ],
        "trust": 0.1
      }
    }

    VAR-202203-0043

    Vulnerability from variot - Updated: 2026-04-10 21:54

    A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. Linux Kernel Has an initialization vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state.

    CVE-2021-43976

    Zekun Shen and Brendan Dolan-Gavitt discovered a flaw in the
    mwifiex_usb_recv() function of the Marvell WiFi-Ex USB Driver.
    

    CVE-2022-24448

    Lyu Tao reported a flaw in the NFS implementation in the Linux
    kernel when handling requests to open a directory on a regular file,
    which could result in a information leak.
    

    CVE-2022-25258

    Szymon Heidrich reported the USB Gadget subsystem lacks certain
    validation of interface OS descriptor requests, resulting in memory
    corruption.
    

    CVE-2022-25375

    Szymon Heidrich reported that the RNDIS USB gadget lacks validation
    of the size of the RNDIS_MSG_SET command, resulting in information
    leak from kernel memory.
    

    For the stable distribution (bullseye), these problems have been fixed in version 5.10.92-2.

    For the detailed security status of linux please refer to its security tracker page at: https://security-tracker.debian.org/tracker/linux

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmImAChfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0TlAw/+MoL+9zYTlpPOcWp0YMuOkEUJU3WS7udSyTSZLNZsWuQTVmPQ6ed7Fxw/ b0j6OCX9HbrIl4nJdx+7D53ujWC6hS29TLgHCb8d/TEeluXPVI2+4Nt1FcZbSXTJ 6hBNIVVIiDUV9Wco8JUVbvk+y8VCsHxqDEePpEOTZVYLyDUUdti4V7+3ZyO8XQ4/ ePeCX8QQba5FApsz4jG7CkBCxBxyley6YswPV3Zz1FF6L/hGjgluYiKFbO4mLTlX vqwv/UIAZl2rutHzzxyBE5hIlPGXfgksPI7jTmSMRkWI99cIlJWTlziecYLQUiid 2NwOyu2vrut6ZVbtmI5WbTy64Aa9EKguQLd+SbBMuK790nfTLRySaZnU52/1j1MW 1/3Nwq+pDbZ/yAAeV/TS9oKl3mG3XVOO34EGpr9A5aZzCPetyb1TQj0jR5+mjCxy RTxYZuCrisnFvVXXRZLPc1vPcZW+ULXrPQFWEEvd2WKRa6iIkDHf5ef8pHRm36mk 9Yt0x6UmmVWLRRZp7UCbD03NB5p3oJKi+i1h3d+19jQGwU2bEhfOEADCADqlZLwc /6vFZ7TrA/74LXM8MOc5+VQbxL8nGetenPSHuxNwoeXw1ry4+x9KV6YHMqeqQ/qW jFpIOfWS1HQ9vC9t46V2eE0sfrOu2Jvdm4MixwRbXhjzs/REYTY= =MIhw -----END PGP SIGNATURE----- . This update provides security fixes, bug fixes, and updates the container images. Description:

    Red Hat Advanced Cluster Management for Kubernetes 2.4.3 images

    Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. See the following Release Notes documentation, which will be updated shortly for this release, for additional details about this release:

    https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.4/html/release_notes/

    Security updates:

    • golang.org/x/crypto: empty plaintext packet causes panic (CVE-2021-43565)

    • nats-server: misusing the "dynamically provisioned sandbox accounts" feature authenticated user can obtain the privileges of the System account (CVE-2022-24450)

    • nanoid: Information disclosure via valueOf() function (CVE-2021-23566)

    • nodejs-shelljs: improper privilege management (CVE-2022-0144)

    • search-ui-container: follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor (CVE-2022-0155)

    • node-fetch: exposure of sensitive information to an unauthorized actor (CVE-2022-0235)

    • follow-redirects: Exposure of Sensitive Information via Authorization Header leak (CVE-2022-0536)

    • openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (CVE-2022-0778)

    • imgcrypt: Unauthorized access to encryted container image on a shared system due to missing check in CheckAuthorization() code path (CVE-2022-24778)

    • golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)

    • opencontainers: OCI manifest and index parsing confusion (CVE-2021-41190)

    Related bugs:

    • RHACM 2.4.3 image files (BZ #2057249)

    • Observability - dashboard name contains / would cause error when generating dashboard cm (BZ #2032128)

    • ACM application placement fails after renaming the application name (BZ

    2033051)

    • Disable the obs metric collect should not impact the managed cluster upgrade (BZ #2039197)

    • Observability - cluster list should only contain OCP311 cluster on OCP311 dashboard (BZ #2039820)

    • The value of name label changed from clusterclaim name to cluster name (BZ #2042223)

    • VMWare Cluster creation does not accept ecdsa-sha2-nistp521 ssh keys (BZ

    2048500)

    • clusterSelector matchLabels spec are cleared when changing app name/namespace during creating an app in UI (BZ #2053211)

    • Application cluster status is not updated in UI after restoring (BZ

    2053279)

    • OpenStack cluster creation is using deprecated floating IP config for 4.7+ (BZ #2056610)

    • The value of Vendor reported by cluster metrics was Other even if the vendor label in managedcluster was Openshift (BZ #2059039)

    • Subscriptions stop reconciling after channel secrets are recreated (BZ

    2059954)

    • Placementrule is not reconciling on a new fresh environment (BZ #2074156)

    • The cluster claimed from clusterpool cannot auto imported (BZ #2074543)

    • Bugs fixed (https://bugzilla.redhat.com/):

    2024938 - CVE-2021-41190 opencontainers: OCI manifest and index parsing confusion 2030787 - CVE-2021-43565 golang.org/x/crypto: empty plaintext packet causes panic 2032128 - Observability - dashboard name contains / would cause error when generating dashboard cm 2033051 - ACM application placement fails after renaming the application name 2039197 - disable the obs metric collect should not impact the managed cluster upgrade 2039820 - Observability - cluster list should only contain OCP311 cluster on OCP311 dashboard 2042223 - the value of name label changed from clusterclaim name to cluster name 2043535 - CVE-2022-0144 nodejs-shelljs: improper privilege management 2044556 - CVE-2022-0155 follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor 2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor 2048500 - VMWare Cluster creation does not accept ecdsa-sha2-nistp521 ssh keys 2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function 2052573 - CVE-2022-24450 nats-server: misusing the "dynamically provisioned sandbox accounts" feature authenticated user can obtain the privileges of the System account 2053211 - clusterSelector matchLabels spec are cleared when changing app name/namespace during creating an app in UI 2053259 - CVE-2022-0536 follow-redirects: Exposure of Sensitive Information via Authorization Header leak 2053279 - Application cluster status is not updated in UI after restoring 2056610 - OpenStack cluster creation is using deprecated floating IP config for 4.7+ 2057249 - RHACM 2.4.3 images 2059039 - The value of Vendor reported by cluster metrics was Other even if the vendor label in managedcluster was Openshift 2059954 - Subscriptions stop reconciling after channel secrets are recreated 2062202 - CVE-2022-0778 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server 2069368 - CVE-2022-24778 imgcrypt: Unauthorized access to encryted container image on a shared system due to missing check in CheckAuthorization() code path 2074156 - Placementrule is not reconciling on a new fresh environment 2074543 - The cluster claimed from clusterpool can not auto imported

    1. See the following Release Notes documentation, which will be updated shortly for this release, for additional details about this release:

    https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.3/html/release_notes/

    Security updates:

    • nanoid: Information disclosure via valueOf() function (CVE-2021-23566)

    • nodejs-shelljs: improper privilege management (CVE-2022-0144)

    • follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor (CVE-2022-0155)

    • node-fetch: exposure of sensitive information to an unauthorized actor (CVE-2022-0235)

    • follow-redirects: Exposure of Sensitive Information via Authorization Header leak (CVE-2022-0536)

    Bug fix:

    • RHACM 2.3.8 images (Bugzilla #2062316)

    • Bugs fixed (https://bugzilla.redhat.com/):

    2043535 - CVE-2022-0144 nodejs-shelljs: improper privilege management 2044556 - CVE-2022-0155 follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor 2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor 2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function 2053259 - CVE-2022-0536 follow-redirects: Exposure of Sensitive Information via Authorization Header leak 2062316 - RHACM 2.3.8 images

    1. ========================================================================= Ubuntu Security Notice USN-5362-1 April 01, 2022

    linux-intel-5.13 vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 20.04 LTS

    Summary:

    Several security issues were fixed in the Linux kernel.

    Software Description: - linux-intel-5.13: Linux kernel for Intel IOTG

    Details:

    Nick Gregory discovered that the Linux kernel incorrectly handled network offload functionality. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-25636)

    Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by ARM to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information. (CVE-2022-23960)

    It was discovered that the BPF verifier in the Linux kernel did not properly restrict pointer types in certain situations. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2022-23222)

    Max Kellermann discovered that the Linux kernel incorrectly handled Unix pipes. A local attacker could potentially use this to modify any file that could be opened for reading. (CVE-2022-0847)

    Yiqi Sun and Kevin Wang discovered that the cgroups implementation in the Linux kernel did not properly restrict access to the cgroups v1 release_agent feature. A local attacker could use this to gain administrative privileges. (CVE-2022-0492)

    William Liu and Jamie Hill-Daniel discovered that the file system context functionality in the Linux kernel contained an integer underflow vulnerability, leading to an out-of-bounds write. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2022-0185)

    Enrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano Giuffrida discovered that hardware mitigations added by Intel to their processors to address Spectre-BTI were insufficient. A local attacker could potentially use this to expose sensitive information. (CVE-2022-0001)

    Jann Horn discovered a race condition in the Unix domain socket implementation in the Linux kernel that could result in a read-after-free. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-4083)

    It was discovered that the NFS server implementation in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-4090)

    Kirill Tkhai discovered that the XFS file system implementation in the Linux kernel did not calculate size correctly when pre-allocating space in some situations. A local attacker could use this to expose sensitive information. (CVE-2021-4155)

    It was discovered that the AMD Radeon GPU driver in the Linux kernel did not properly validate writes in the debugfs file system. A privileged attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-42327)

    Sushma Venkatesh Reddy discovered that the Intel i915 graphics driver in the Linux kernel did not perform a GPU TLB flush in some situations. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. (CVE-2022-0330)

    Samuel Page discovered that the Transparent Inter-Process Communication (TIPC) protocol implementation in the Linux kernel contained a stack-based buffer overflow. A remote attacker could use this to cause a denial of service (system crash) for systems that have a TIPC bearer configured. (CVE-2022-0435)

    It was discovered that the KVM implementation for s390 systems in the Linux kernel did not properly prevent memory operations on PVM guests that were in non-protected mode. A local attacker could use this to obtain unauthorized memory write access. (CVE-2022-0516)

    It was discovered that the ICMPv6 implementation in the Linux kernel did not properly deallocate memory in certain situations. A remote attacker could possibly use this to cause a denial of service (memory exhaustion). (CVE-2022-0742)

    It was discovered that the VMware Virtual GPU driver in the Linux kernel did not properly handle certain failure conditions, leading to a stale entry in the file descriptor table. A local attacker could use this to expose sensitive information or possibly gain administrative privileges. (CVE-2022-22942)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 20.04 LTS: linux-image-5.13.0-1010-intel 5.13.0-1010.10 linux-image-intel 5.13.0.1010.11

    After a standard system update you need to reboot your computer to make all the necessary changes.

    ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well.

    References: https://ubuntu.com/security/notices/USN-5362-1 CVE-2021-4083, CVE-2021-4090, CVE-2021-4155, CVE-2021-42327, CVE-2022-0001, CVE-2022-0185, CVE-2022-0330, CVE-2022-0435, CVE-2022-0492, CVE-2022-0516, CVE-2022-0742, CVE-2022-0847, CVE-2022-22942, CVE-2022-23222, CVE-2022-23960, CVE-2022-25636

    Package Information: https://launchpad.net/ubuntu/+source/linux-intel-5.13/5.13.0-1010.10 . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: kernel-rt security and bug fix update Advisory ID: RHSA-2022:0819-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2022:0819 Issue date: 2022-03-10 CVE Names: CVE-2021-0920 CVE-2021-4154 CVE-2022-0330 CVE-2022-0435 CVE-2022-0492 CVE-2022-0847 CVE-2022-22942 =====================================================================

    1. Summary:

    An update for kernel-rt is now available for Red Hat Enterprise Linux 8.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64 Red Hat Enterprise Linux for Real Time (v. 8) - x86_64

    1. Description:

    The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

    Security Fix(es):

    • kernel: improper initialization of the "flags" member of the new pipe_buffer (CVE-2022-0847)

    • kernel: Use After Free in unix_gc() which could result in a local privilege escalation (CVE-2021-0920)

    • kernel: local privilege escalation by exploiting the fsconfig syscall parameter leads to container breakout (CVE-2021-4154)

    • kernel: possible privileges escalation due to missing TLB flush (CVE-2022-0330)

    • kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS (CVE-2022-0435)

    • kernel: cgroups v1 release_agent feature may allow privilege escalation (CVE-2022-0492)

    • kernel: failing usercopy allows for use-after-free exploitation (CVE-2022-22942)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Bug Fix(es):

    • kernel symbol '__rt_mutex_init' is exported GPL-only in kernel 4.18.0-348.2.1.rt7.132.el8_5 (BZ#2038423)

    • kernel-rt: update RT source tree to the RHEL-8.5.z3 source tree (BZ#2045589)

    • Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    The system must be rebooted for this update to take effect.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    2031930 - CVE-2021-0920 kernel: Use After Free in unix_gc() which could result in a local privilege escalation 2034514 - CVE-2021-4154 kernel: local privilege escalation by exploiting the fsconfig syscall parameter leads to container breakout 2042404 - CVE-2022-0330 kernel: possible privileges escalation due to missing TLB flush 2044809 - CVE-2022-22942 kernel: failing usercopy allows for use-after-free exploitation 2048738 - CVE-2022-0435 kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS 2051505 - CVE-2022-0492 kernel: cgroups v1 release_agent feature may allow privilege escalation 2060795 - CVE-2022-0847 kernel: improper initialization of the "flags" member of the new pipe_buffer

    1. Package List:

    Red Hat Enterprise Linux Real Time for NFV (v. 8):

    Source: kernel-rt-4.18.0-348.20.1.rt7.150.el8_5.src.rpm

    x86_64: kernel-rt-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-kvm-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-kvm-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm

    Red Hat Enterprise Linux for Real Time (v. 8):

    Source: kernel-rt-4.18.0-348.20.1.rt7.150.el8_5.src.rpm

    x86_64: kernel-rt-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm kernel-rt-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYippFNzjgjWX9erEAQhDwRAAjsGfW6qXFI81H8xov/wQnw/PdsUOhzDl ISzJEeXALEQCloLH+UDcgo/wV1es00USfBo1H/SpDc5ahjBWP2pbo8QtIRKT6h/k ord4KsAMGjqWRI+zaGbaFoL0q4okMG9H6r731TnhX06CaLXLui8iUJrQLziHo02t /AihF9dW30/w4tXyKeMc73D1lKHImQQFfJo5xpIo8Mm7+6GFrkne8Z46SKXjjyfG IODAcU3wA0C93bbtR4EHEbenVyVVaE5Phn40vxxF00+AQTHoc5nYpOJbDLI3bi1F GbEKQ5pf0jkScwlfEHtHkmjPk92PA/wV41BhPoJw8oKshH4RRxml4Ps0KldI4NrQ ypmDLZ3CfJ+saFbNLN5BARCiqJavF5A4yszHZ5QuopmC1RJx6/rAuE79KkeB0JvW IOaXPzzc05dCqdyVBvNAu+XpVlTbe+XGBR0LalYYjYWxQSrEYAYQ005mcvEWOPRm QfPSM7eOaAzo9RGrMirTm0Gz9BJ0TbvNGiMmMTpLdb6akx1BQcQ5bpAjUCQN0O7j KIFri0FxflweqZswTchfdbW74VuUyTVaeFYKGhp5hFPV6lFkDUFEFC71ANvPaewE X1Z5Ae0gFMD8w5m5eePHqYuEaL6NHtYctHlBh0ef6mrvsKq9lmxJpdXrZUO+eP4w nEhPbkKSmMY= =CLN6 -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "h500s",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "35"
          },
          {
            "_id": null,
            "model": "h300e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux for real time",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "sma1000",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "12.4.2-02044"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.8"
          },
          {
            "_id": null,
            "model": "ovirt-engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ovirt",
            "version": "4.4.10.2"
          },
          {
            "_id": null,
            "model": "scalance lpe9403",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server for power little endian update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "enterprise linux for real time tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "h410s",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux for power little endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.16.11"
          },
          {
            "_id": null,
            "model": "enterprise linux server update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "h700s",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server for power little endian update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.15.25"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for real time for nfv tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.15"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "enterprise linux for real time for nfv",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8"
          },
          {
            "_id": null,
            "model": "codeready linux builder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": null
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.16"
          },
          {
            "_id": null,
            "model": "virtualization host",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux for real time tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "h410c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "h700e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux for power little endian",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.10.102"
          },
          {
            "_id": null,
            "model": "enterprise linux for power little endian eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux server update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "enterprise linux server for power little endian update services for sap solutions",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "h500e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux for real time for nfv tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "h300s",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "enterprise linux for ibm z systems",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": null,
            "trust": 0.8,
            "vendor": "fedora",
            "version": null
          },
          {
            "_id": null,
            "model": "sma1000",
            "scope": null,
            "trust": 0.8,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux eus",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "h300s",
            "scope": null,
            "trust": 0.8,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "ovirt-engine",
            "scope": null,
            "trust": 0.8,
            "vendor": "ovirt",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux for ibm z systems - extended update support",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux for ibm z systems",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": null,
            "trust": 0.8,
            "vendor": "linux",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "scalance lpe9403",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Siemens reported these vulnerabilities to CISA.",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2022-0847",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2022-0847",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.9,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2022-0847",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 2.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2022-0847",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "Low",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2022-0847",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2022-0847",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2022-0847",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202203-522",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2022-0847",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2022-0847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system. Linux Kernel Has an initialization vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. \n\nCVE-2021-43976\n\n    Zekun Shen and Brendan Dolan-Gavitt discovered a flaw in the\n    mwifiex_usb_recv() function of the Marvell WiFi-Ex USB Driver. \n\nCVE-2022-24448\n\n    Lyu Tao reported a flaw in the NFS implementation in the Linux\n    kernel when handling requests to open a directory on a regular file,\n    which could result in a information leak. \n\nCVE-2022-25258\n\n    Szymon Heidrich reported the USB Gadget subsystem lacks certain\n    validation of interface OS descriptor requests, resulting in memory\n    corruption. \n\nCVE-2022-25375\n\n    Szymon Heidrich reported that the RNDIS USB gadget lacks validation\n    of the size of the RNDIS_MSG_SET command, resulting in information\n    leak from kernel memory. \n\nFor the stable distribution (bullseye), these problems have been fixed in\nversion 5.10.92-2. \n\nFor the detailed security status of linux please refer to its security\ntracker page at:\nhttps://security-tracker.debian.org/tracker/linux\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\njFpIOfWS1HQ9vC9t46V2eE0sfrOu2Jvdm4MixwRbXhjzs/REYTY=\n=MIhw\n-----END PGP SIGNATURE-----\n. This update provides security fixes, bug\nfixes, and updates the container images. Description:\n\nRed Hat Advanced Cluster Management for Kubernetes 2.4.3 images\n\nRed Hat Advanced Cluster Management for Kubernetes provides the\ncapabilities to address common challenges that administrators and site\nreliability engineers face as they work across a range of public and\nprivate cloud environments. Clusters and applications are all visible and\nmanaged from a single console\u2014with security policy built in. \nSee the following Release Notes documentation, which will be updated\nshortly for this release, for additional details about this release:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.4/html/release_notes/\n\nSecurity updates:\n\n* golang.org/x/crypto: empty plaintext packet causes panic (CVE-2021-43565)\n\n* nats-server: misusing the \"dynamically provisioned sandbox accounts\"\nfeature authenticated user can obtain the privileges of the System account\n(CVE-2022-24450)\n\n* nanoid: Information disclosure via valueOf() function (CVE-2021-23566)\n\n* nodejs-shelljs: improper privilege management (CVE-2022-0144)\n\n* search-ui-container: follow-redirects: Exposure of Private Personal\nInformation to an Unauthorized Actor (CVE-2022-0155)\n\n* node-fetch: exposure of sensitive information to an unauthorized actor\n(CVE-2022-0235)\n\n* follow-redirects: Exposure of Sensitive Information via Authorization\nHeader leak (CVE-2022-0536)\n\n* openssl: Infinite loop in BN_mod_sqrt() reachable when parsing\ncertificates (CVE-2022-0778)\n\n* imgcrypt: Unauthorized access to encryted container image on a shared\nsystem due to missing check in CheckAuthorization() code path\n(CVE-2022-24778)\n\n* golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)\n\n* opencontainers: OCI manifest and index parsing confusion (CVE-2021-41190)\n\nRelated bugs:\n\n* RHACM 2.4.3 image files (BZ #2057249)\n\n* Observability - dashboard name contains `/` would cause error when\ngenerating dashboard cm (BZ #2032128)\n\n* ACM application placement fails after renaming the application name (BZ\n#2033051)\n\n* Disable the obs metric collect should not impact the managed cluster\nupgrade (BZ #2039197)\n\n* Observability - cluster list should only contain OCP311 cluster on OCP311\ndashboard (BZ #2039820)\n\n* The value of name label changed from clusterclaim name to cluster name\n(BZ #2042223)\n\n* VMWare Cluster creation does not accept ecdsa-sha2-nistp521 ssh keys (BZ\n#2048500)\n\n* clusterSelector matchLabels spec are cleared when changing app\nname/namespace during creating an app in UI (BZ #2053211)\n\n* Application cluster status is not updated in UI after restoring (BZ\n#2053279)\n\n* OpenStack cluster creation is using deprecated floating IP config for\n4.7+ (BZ #2056610)\n\n* The value of Vendor reported by cluster metrics was Other even if the\nvendor label in managedcluster was Openshift (BZ #2059039)\n\n* Subscriptions stop reconciling after channel secrets are recreated (BZ\n#2059954)\n\n* Placementrule is not reconciling on a new fresh environment (BZ #2074156)\n\n* The cluster claimed from clusterpool cannot auto imported (BZ #2074543)\n\n3. Bugs fixed (https://bugzilla.redhat.com/):\n\n2024938 - CVE-2021-41190 opencontainers: OCI manifest and index parsing confusion\n2030787 - CVE-2021-43565 golang.org/x/crypto: empty plaintext packet causes panic\n2032128 - Observability - dashboard name contains `/` would cause error when generating dashboard cm\n2033051 - ACM application placement fails after renaming the application name\n2039197 - disable the obs metric collect should not impact the managed cluster upgrade\n2039820 - Observability - cluster list should only contain OCP311 cluster on OCP311 dashboard\n2042223 - the value of name label changed from clusterclaim name to cluster name\n2043535 - CVE-2022-0144 nodejs-shelljs: improper privilege management\n2044556 - CVE-2022-0155 follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor\n2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor\n2048500 - VMWare Cluster creation does not accept ecdsa-sha2-nistp521 ssh keys\n2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function\n2052573 - CVE-2022-24450 nats-server: misusing the \"dynamically provisioned sandbox accounts\" feature  authenticated user can obtain the privileges of the System account\n2053211 - clusterSelector matchLabels spec are cleared when changing app name/namespace during creating an app in UI\n2053259 - CVE-2022-0536 follow-redirects: Exposure of Sensitive Information via Authorization Header leak\n2053279 - Application cluster status is not updated in UI after restoring\n2056610 - OpenStack cluster creation is using deprecated floating IP config for 4.7+\n2057249 - RHACM 2.4.3 images\n2059039 - The value of Vendor reported by cluster metrics was Other even if the vendor label in managedcluster was Openshift\n2059954 - Subscriptions stop reconciling after channel secrets are recreated\n2062202 - CVE-2022-0778 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates\n2064702 - CVE-2022-27191 golang: crash in a golang.org/x/crypto/ssh server\n2069368 - CVE-2022-24778 imgcrypt: Unauthorized access to encryted container image on a shared system due to missing check in CheckAuthorization() code path\n2074156 - Placementrule is not reconciling on a new fresh environment\n2074543 - The cluster claimed from clusterpool can not auto imported\n\n5. See the following\nRelease Notes documentation, which will be updated shortly for this\nrelease, for additional details about this release:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.3/html/release_notes/\n\nSecurity updates:\n\n* nanoid: Information disclosure via valueOf() function (CVE-2021-23566)\n\n* nodejs-shelljs: improper privilege management (CVE-2022-0144)\n\n* follow-redirects: Exposure of Private Personal Information to an\nUnauthorized Actor (CVE-2022-0155)\n\n* node-fetch: exposure of sensitive information to an unauthorized actor\n(CVE-2022-0235)\n\n* follow-redirects: Exposure of Sensitive Information via Authorization\nHeader leak (CVE-2022-0536)\n\nBug fix:\n\n* RHACM 2.3.8 images (Bugzilla #2062316)\n\n3. Bugs fixed (https://bugzilla.redhat.com/):\n\n2043535 - CVE-2022-0144 nodejs-shelljs: improper privilege management\n2044556 - CVE-2022-0155 follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor\n2044591 - CVE-2022-0235 node-fetch: exposure of sensitive information to an unauthorized actor\n2050853 - CVE-2021-23566 nanoid: Information disclosure via valueOf() function\n2053259 - CVE-2022-0536 follow-redirects: Exposure of Sensitive Information via Authorization Header leak\n2062316 - RHACM 2.3.8 images\n\n5. =========================================================================\nUbuntu Security Notice USN-5362-1\nApril 01, 2022\n\nlinux-intel-5.13 vulnerabilities\n=========================================================================\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 20.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in the Linux kernel. \n\nSoftware Description:\n- linux-intel-5.13: Linux kernel for Intel IOTG\n\nDetails:\n\nNick Gregory discovered that the Linux kernel incorrectly handled network\noffload functionality. A local attacker could use this to cause a denial of\nservice or possibly execute arbitrary code. (CVE-2022-25636)\n\nEnrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano\nGiuffrida discovered that hardware mitigations added by ARM to their\nprocessors to address Spectre-BTI were insufficient. A local attacker could\npotentially use this to expose sensitive information. (CVE-2022-23960)\n\nIt was discovered that the BPF verifier in the Linux kernel did not\nproperly restrict pointer types in certain situations. A local attacker\ncould use this to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2022-23222)\n\nMax Kellermann discovered that the Linux kernel incorrectly handled Unix\npipes. A local attacker could potentially use this to modify any file that\ncould be opened for reading. (CVE-2022-0847)\n\nYiqi Sun and Kevin Wang discovered that the cgroups implementation in the\nLinux kernel did not properly restrict access to the cgroups v1\nrelease_agent feature. A local attacker could use this to gain\nadministrative privileges. (CVE-2022-0492)\n\nWilliam Liu and Jamie Hill-Daniel discovered that the file system context\nfunctionality in the Linux kernel contained an integer underflow\nvulnerability, leading to an out-of-bounds write. A local attacker could\nuse this to cause a denial of service (system crash) or execute arbitrary\ncode. (CVE-2022-0185)\n\nEnrico Barberis, Pietro Frigo, Marius Muench, Herbert Bos, and Cristiano\nGiuffrida discovered that hardware mitigations added by Intel to their\nprocessors to address Spectre-BTI were insufficient. A local attacker could\npotentially use this to expose sensitive information. (CVE-2022-0001)\n\nJann Horn discovered a race condition in the Unix domain socket\nimplementation in the Linux kernel that could result in a read-after-free. \nA local attacker could use this to cause a denial of service (system crash)\nor possibly execute arbitrary code. (CVE-2021-4083)\n\nIt was discovered that the NFS server implementation in the Linux kernel\ncontained an out-of-bounds write vulnerability. A local attacker could use\nthis to cause a denial of service (system crash) or possibly execute\narbitrary code. (CVE-2021-4090)\n\nKirill Tkhai discovered that the XFS file system implementation in the\nLinux kernel did not calculate size correctly when pre-allocating space in\nsome situations. A local attacker could use this to expose sensitive\ninformation. (CVE-2021-4155)\n\nIt was discovered that the AMD Radeon GPU driver in the Linux kernel did\nnot properly validate writes in the debugfs file system. A privileged\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2021-42327)\n\nSushma Venkatesh Reddy discovered that the Intel i915 graphics driver in\nthe Linux kernel did not perform a GPU TLB flush in some situations. A\nlocal attacker could use this to cause a denial of service or possibly\nexecute arbitrary code. (CVE-2022-0330)\n\nSamuel Page discovered that the Transparent Inter-Process Communication\n(TIPC) protocol implementation in the Linux kernel contained a stack-based\nbuffer overflow. A remote attacker could use this to cause a denial of\nservice (system crash) for systems that have a TIPC bearer configured. \n(CVE-2022-0435)\n\nIt was discovered that the KVM implementation for s390 systems in the Linux\nkernel did not properly prevent memory operations on PVM guests that were\nin non-protected mode. A local attacker could use this to obtain\nunauthorized memory write access. (CVE-2022-0516)\n\nIt was discovered that the ICMPv6 implementation in the Linux kernel did\nnot properly deallocate memory in certain situations. A remote attacker\ncould possibly use this to cause a denial of service (memory exhaustion). \n(CVE-2022-0742)\n\nIt was discovered that the VMware Virtual GPU driver in the Linux kernel\ndid not properly handle certain failure conditions, leading to a stale\nentry in the file descriptor table. A local attacker could use this to\nexpose sensitive information or possibly gain administrative privileges. \n(CVE-2022-22942)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 20.04 LTS:\n  linux-image-5.13.0-1010-intel   5.13.0-1010.10\n  linux-image-intel               5.13.0.1010.11\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. \n\nATTENTION: Due to an unavoidable ABI change the kernel updates have\nbeen given a new version number, which requires you to recompile and\nreinstall all third party kernel modules you might have installed. \nUnless you manually uninstalled the standard kernel metapackages\n(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,\nlinux-powerpc), a standard system upgrade will automatically perform\nthis as well. \n\nReferences:\n  https://ubuntu.com/security/notices/USN-5362-1\n  CVE-2021-4083, CVE-2021-4090, CVE-2021-4155, CVE-2021-42327,\n  CVE-2022-0001, CVE-2022-0185, CVE-2022-0330, CVE-2022-0435,\n  CVE-2022-0492, CVE-2022-0516, CVE-2022-0742, CVE-2022-0847,\n  CVE-2022-22942, CVE-2022-23222, CVE-2022-23960, CVE-2022-25636\n\nPackage Information:\n  https://launchpad.net/ubuntu/+source/linux-intel-5.13/5.13.0-1010.10\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: kernel-rt security and bug fix update\nAdvisory ID:       RHSA-2022:0819-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2022:0819\nIssue date:        2022-03-10\nCVE Names:         CVE-2021-0920 CVE-2021-4154 CVE-2022-0330 \n                   CVE-2022-0435 CVE-2022-0492 CVE-2022-0847 \n                   CVE-2022-22942 \n=====================================================================\n\n1. Summary:\n\nAn update for kernel-rt is now available for Red Hat Enterprise Linux 8. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Real Time for NFV (v. 8) - x86_64\nRed Hat Enterprise Linux for Real Time (v. 8) - x86_64\n\n3. Description:\n\nThe kernel-rt packages provide the Real Time Linux Kernel, which enables\nfine-tuning for systems with extremely high determinism requirements. \n\nSecurity Fix(es):\n\n* kernel: improper initialization of the \"flags\" member of the new\npipe_buffer (CVE-2022-0847)\n\n* kernel: Use After Free in unix_gc() which could result in a local\nprivilege escalation (CVE-2021-0920)\n\n* kernel: local privilege escalation by exploiting the fsconfig syscall\nparameter leads to container breakout (CVE-2021-4154)\n\n* kernel: possible privileges escalation due to missing TLB flush\n(CVE-2022-0330)\n\n* kernel: remote stack overflow via kernel panic on systems using TIPC may\nlead to DoS (CVE-2022-0435)\n\n* kernel: cgroups v1 release_agent feature may allow privilege escalation\n(CVE-2022-0492)\n\n* kernel: failing usercopy allows for use-after-free exploitation\n(CVE-2022-22942)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nBug Fix(es):\n\n* kernel symbol \u0027__rt_mutex_init\u0027 is exported GPL-only in kernel\n4.18.0-348.2.1.rt7.132.el8_5 (BZ#2038423)\n\n* kernel-rt: update RT source tree to the RHEL-8.5.z3 source tree\n(BZ#2045589)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n2031930 - CVE-2021-0920 kernel: Use After Free in unix_gc() which could result in a local privilege escalation\n2034514 - CVE-2021-4154 kernel: local privilege escalation by exploiting the fsconfig syscall parameter leads to container breakout\n2042404 - CVE-2022-0330 kernel: possible privileges escalation due to missing TLB flush\n2044809 - CVE-2022-22942 kernel: failing usercopy allows for use-after-free exploitation\n2048738 - CVE-2022-0435 kernel: remote stack overflow via kernel panic on systems using TIPC may lead to DoS\n2051505 - CVE-2022-0492 kernel: cgroups v1 release_agent feature may allow privilege escalation\n2060795 - CVE-2022-0847 kernel: improper initialization of the \"flags\" member of the new pipe_buffer\n\n6. Package List:\n\nRed Hat Enterprise Linux Real Time for NFV (v. 8):\n\nSource:\nkernel-rt-4.18.0-348.20.1.rt7.150.el8_5.src.rpm\n\nx86_64:\nkernel-rt-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-kvm-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debuginfo-common-x86_64-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-kvm-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\n\nRed Hat Enterprise Linux for Real Time (v. 8):\n\nSource:\nkernel-rt-4.18.0-348.20.1.rt7.150.el8_5.src.rpm\n\nx86_64:\nkernel-rt-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-core-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debug-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debuginfo-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-debuginfo-common-x86_64-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-devel-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-modules-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\nkernel-rt-modules-extra-4.18.0-348.20.1.rt7.150.el8_5.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nnEhPbkKSmMY=\n=CLN6\n-----END PGP SIGNATURE-----\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-0847"
          },
          {
            "db": "PACKETSTORM",
            "id": "169268"
          },
          {
            "db": "PACKETSTORM",
            "id": "166812"
          },
          {
            "db": "PACKETSTORM",
            "id": "166516"
          },
          {
            "db": "PACKETSTORM",
            "id": "166569"
          },
          {
            "db": "PACKETSTORM",
            "id": "166241"
          },
          {
            "db": "PACKETSTORM",
            "id": "166280"
          },
          {
            "db": "PACKETSTORM",
            "id": "166265"
          },
          {
            "db": "PACKETSTORM",
            "id": "166264"
          }
        ],
        "trust": 2.43
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2022-0847",
            "trust": 4.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166229",
            "trust": 2.4
          },
          {
            "db": "PACKETSTORM",
            "id": "166258",
            "trust": 2.4
          },
          {
            "db": "PACKETSTORM",
            "id": "166230",
            "trust": 2.4
          },
          {
            "db": "SIEMENS",
            "id": "SSA-222547",
            "trust": 1.6
          },
          {
            "db": "ICS CERT",
            "id": "ICSA-22-167-09",
            "trust": 1.4
          },
          {
            "db": "PACKETSTORM",
            "id": "176534",
            "trust": 1.0
          },
          {
            "db": "JVN",
            "id": "JVNVU99030761",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117",
            "trust": 0.8
          },
          {
            "db": "PACKETSTORM",
            "id": "166812",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166516",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166569",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166241",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166280",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166305",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022032843",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031421",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022030808",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022042576",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031308",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022031036",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1027",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0965",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.2981",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1677",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1405",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.1064",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0944",
            "trust": 0.6
          },
          {
            "db": "CXSECURITY",
            "id": "WLB-2022030042",
            "trust": 0.6
          },
          {
            "db": "CXSECURITY",
            "id": "WLB-2022030060",
            "trust": 0.6
          },
          {
            "db": "EXPLOIT-DB",
            "id": "50808",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2022-0847",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "169268",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166265",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166264",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2022-0847"
          },
          {
            "db": "PACKETSTORM",
            "id": "169268"
          },
          {
            "db": "PACKETSTORM",
            "id": "166812"
          },
          {
            "db": "PACKETSTORM",
            "id": "166516"
          },
          {
            "db": "PACKETSTORM",
            "id": "166569"
          },
          {
            "db": "PACKETSTORM",
            "id": "166241"
          },
          {
            "db": "PACKETSTORM",
            "id": "166280"
          },
          {
            "db": "PACKETSTORM",
            "id": "166265"
          },
          {
            "db": "PACKETSTORM",
            "id": "166264"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          }
        ]
      },
      "id": "VAR-202203-0043",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.26739928
      },
      "last_update_date": "2026-04-10T21:54:57.588000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Bug\u00a02060795",
            "trust": 0.8,
            "url": "https://fedoraproject.org/"
          },
          {
            "title": "Linux kernel Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=184957"
          },
          {
            "title": "Red Hat: Important: kernel-rt security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20220822 - Security Advisory"
          },
          {
            "title": "Red Hat: Important: kernel security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20220831 - Security Advisory"
          },
          {
            "title": "Red Hat: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2022-0847"
          },
          {
            "title": "Arch Linux Issues: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2022-0847"
          },
          {
            "title": "Dirty-Pipe-Oneshot",
            "trust": 0.1,
            "url": "https://github.com/badboy-sft/Dirty-Pipe-Oneshot "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2022-0847"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-665",
            "trust": 1.0
          },
          {
            "problemtype": "Improper initialization (CWE-665) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.0,
            "url": "http://packetstormsecurity.com/files/166258/dirty-pipe-local-privilege-escalation.html"
          },
          {
            "trust": 3.0,
            "url": "http://packetstormsecurity.com/files/166229/dirty-pipe-linux-privilege-escalation.html"
          },
          {
            "trust": 2.4,
            "url": "http://packetstormsecurity.com/files/166230/dirty-pipe-suid-binary-hijack-privilege-escalation.html"
          },
          {
            "trust": 1.6,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0847"
          },
          {
            "trust": 1.6,
            "url": "https://dirtypipe.cm4all.com/"
          },
          {
            "trust": 1.6,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf"
          },
          {
            "trust": 1.6,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2022-0015"
          },
          {
            "trust": 1.6,
            "url": "https://www.suse.com/support/kb/doc/?id=000020603"
          },
          {
            "trust": 1.6,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2060795"
          },
          {
            "trust": 1.6,
            "url": "https://security.netapp.com/advisory/ntap-20220325-0005/"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-0847"
          },
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/176534/linux-4.20-ktls-read-only-write.html"
          },
          {
            "trust": 1.0,
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=cve-2022-0847"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu99030761/index.html"
          },
          {
            "trust": 0.8,
            "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-167-09"
          },
          {
            "trust": 0.6,
            "url": "https://cxsecurity.com/issue/wlb-2022030060"
          },
          {
            "trust": 0.6,
            "url": "https://www.exploit-db.com/exploits/50808"
          },
          {
            "trust": 0.6,
            "url": "https://cxsecurity.com/issue/wlb-2022030042"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166305/red-hat-security-advisory-2022-0841-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031308"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166516/red-hat-security-advisory-2022-1083-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022032843"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166241/ubuntu-security-notice-usn-5317-1.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1405"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031036"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166280/red-hat-security-advisory-2022-0822-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1027"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022030808"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1064"
          },
          {
            "trust": 0.6,
            "url": "https://us-cert.cisa.gov/ics/advisories/icsa-22-167-09"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022042576"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166569/ubuntu-security-notice-usn-5362-1.html"
          },
          {
            "trust": 0.6,
            "url": "https://cxsecurity.com/cveshow/cve-2022-0847/"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166812/red-hat-security-advisory-2022-1476-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/linux-kernel-file-write-via-dirty-pipe-37724"
          },
          {
            "trust": 0.6,
            "url": "https://source.android.com/security/bulletin/2022-05-01"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0944"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.2981"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0965"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022031421"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.1677"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0330"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0435"
          },
          {
            "trust": 0.5,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.5,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0516"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0492"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22942"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2022-0330"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-0920"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2022-22942"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2021-0920"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2022-0435"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2022-0492"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4154"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2021-4154"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/vulnerabilities/rhsb-2022-002"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0413"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0536"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-25236"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-31566"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22822"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22827"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0392"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22824"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23219"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0235"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-3999"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23308"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0516"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0392"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0261"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3999"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-31566"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-45960"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-46143"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0361"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-23177"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23852"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0261"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0155"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22826"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-23566"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22825"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0318"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0359"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0155"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-46143"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0359"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0413"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22822"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-23177"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45960"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0144"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0318"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-23566"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-22823"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-0235"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0361"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-25315"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23218"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0536"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-25235"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0144"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23960"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-25636"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0001"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-24448"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-25258"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-24959"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/linux"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-43976"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-25375"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-0778"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-41190"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.4/html/release_notes/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.4/html/release_notes/index"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0778"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-0811"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-27191"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.4/html-single/install/index#installing"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1476"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-24778"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-41190"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2022-24450"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-43565"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0811"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-43565"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22825"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.3/html-single/install/index#installing"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.3/html/release_notes/index"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1083"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22823"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-22824"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.3/html/release_notes/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4083"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0742"
          },
          {
            "trust": 0.1,
            "url": "https://ubuntu.com/security/notices/usn-5362-1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-intel-5.13/5.13.0-1010.10"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4155"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0185"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-42327"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4090"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23222"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-oracle-5.13/5.13.0-1021.26~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-azure/5.13.0-1017.19"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-hwe-5.13/5.13.0-35.40~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-aws/5.13.0-1017.19"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux/5.13.0-35.40"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-azure-5.13/5.13.0-1017.19~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-gcp-5.13/5.13.0-1019.23~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-raspi/5.13.0-1020.22"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-aws-5.13/5.13.0-1017.19~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-0002"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-gcp/5.13.0-1019.23"
          },
          {
            "trust": 0.1,
            "url": "https://ubuntu.com/security/notices/usn-5317-1"
          },
          {
            "trust": 0.1,
            "url": "https://wiki.ubuntu.com/securityteam/knowledgebase/bhi"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-oracle/5.13.0-1021.26"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-oem-5.14/5.14.0-1027.30"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-kvm/5.13.0-1016.17"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0822"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0831"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0819"
          }
        ],
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "169268"
          },
          {
            "db": "PACKETSTORM",
            "id": "166812"
          },
          {
            "db": "PACKETSTORM",
            "id": "166516"
          },
          {
            "db": "PACKETSTORM",
            "id": "166569"
          },
          {
            "db": "PACKETSTORM",
            "id": "166241"
          },
          {
            "db": "PACKETSTORM",
            "id": "166280"
          },
          {
            "db": "PACKETSTORM",
            "id": "166265"
          },
          {
            "db": "PACKETSTORM",
            "id": "166264"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2022-0847",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "169268",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166812",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166516",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166569",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166241",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166280",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166265",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166264",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2022-0847",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2022-03-10T00:00:00",
            "db": "VULMON",
            "id": "CVE-2022-0847",
            "ident": null
          },
          {
            "date": "2022-03-28T19:12:00",
            "db": "PACKETSTORM",
            "id": "169268",
            "ident": null
          },
          {
            "date": "2022-04-21T15:12:25",
            "db": "PACKETSTORM",
            "id": "166812",
            "ident": null
          },
          {
            "date": "2022-03-29T15:53:19",
            "db": "PACKETSTORM",
            "id": "166516",
            "ident": null
          },
          {
            "date": "2022-04-01T15:43:44",
            "db": "PACKETSTORM",
            "id": "166569",
            "ident": null
          },
          {
            "date": "2022-03-09T15:15:52",
            "db": "PACKETSTORM",
            "id": "166241",
            "ident": null
          },
          {
            "date": "2022-03-11T16:38:56",
            "db": "PACKETSTORM",
            "id": "166280",
            "ident": null
          },
          {
            "date": "2022-03-11T16:31:15",
            "db": "PACKETSTORM",
            "id": "166265",
            "ident": null
          },
          {
            "date": "2022-03-11T16:31:02",
            "db": "PACKETSTORM",
            "id": "166264",
            "ident": null
          },
          {
            "date": "2022-03-07T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202203-522",
            "ident": null
          },
          {
            "date": "2023-07-12T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2022-007117",
            "ident": null
          },
          {
            "date": "2022-03-10T17:44:57.283000",
            "db": "NVD",
            "id": "CVE-2022-0847",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2024-01-12T00:00:00",
            "db": "VULMON",
            "id": "CVE-2022-0847",
            "ident": null
          },
          {
            "date": "2022-08-11T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202203-522",
            "ident": null
          },
          {
            "date": "2023-07-12T06:29:00",
            "db": "JVNDB",
            "id": "JVNDB-2022-007117",
            "ident": null
          },
          {
            "date": "2025-11-06T14:50:37.153000",
            "db": "NVD",
            "id": "CVE-2022-0847",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "local",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "166569"
          },
          {
            "db": "PACKETSTORM",
            "id": "166241"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          }
        ],
        "trust": 0.8
      },
      "title": {
        "_id": null,
        "data": "Linux\u00a0Kernel\u00a0 Initialization vulnerability in",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2022-007117"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202203-522"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202112-0566

    Vulnerability from variot - Updated: 2026-03-09 23:19

    Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects. Apache Log4j allows insecure JNDI lookups that could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the vulnerable Java application using Log4j.CVE-2021-4104 Affected CVE-2021-44228 Affected CVE-2021-45046 AffectedCVE-2021-4104 Affected CVE-2021-44228 Affected CVE-2021-45046 Affected. Apache Log4j is a Java-based open source logging tool of the Apache Foundation. Apache log4j2 has a denial of service vulnerability. When improperly configured, an attacker can exploit this vulnerability to cause a denial of service attack. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ====================================================================
    Red Hat Security Advisory

    Synopsis: Critical: Red Hat AMQ Streams 1.8.4 release and security update Advisory ID: RHSA-2021:5138-01 Product: Red Hat JBoss AMQ Advisory URL: https://access.redhat.com/errata/RHSA-2021:5138 Issue date: 2021-12-14 CVE Names: CVE-2021-44228 ==================================================================== 1. Summary:

    Red Hat AMQ Streams 1.8.4 is now available from the Red Hat Customer Portal.

    Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Description:

    Red Hat AMQ Streams, based on the Apache Kafka project, offers a distributed backbone that allows microservices and other applications to share data with extremely high throughput and extremely low latency.

    This release of Red Hat AMQ Streams 1.8.4 serves as a replacement for Red Hat AMQ Streams 1.8.0, and includes security and bug fixes, and enhancements.

    Security Fix(es):

    • log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value (CVE-2021-44228)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    1. Solution:

    Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.

    The References section of this erratum contains a download link (you must log in to download the update).

    1. Bugs fixed (https://bugzilla.redhat.com/):

    2030932 - CVE-2021-44228 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value

    1. References:

    https://access.redhat.com/security/cve/CVE-2021-44228 https://access.redhat.com/security/updates/classification/#critical https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions&product=jboss.amq.streams&version=1.8.4 https://access.redhat.com/security/vulnerabilities/RHSB-2021-009

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYblI5tzjgjWX9erEAQjb2w/+IySGyUK1nRexUTqiupBqCswjKe/HgWcI cxkZPlLSmU1UszQIqk8z3Btcb0TAqfPLVHNfLmCiq8gJk0fH4gfmF5gBQvpNnwVd E0qCdbELYgulTy6uGu7tqdWLnYX+jixkrm2xE/CBMNHNceISeRc99jBYyX4aOPlt bbOmCG5Nv6niBS5KnacWrBJr1kYTjilbP02GT6i9WQWUMyWcrGo+1z0mEJYNZSCk 4G8ha8QnUaR8aZnbFvpf3GaelMqkyMezdgJTLyIk+dhLvNs/FgR+6Pf/VdNghT40 XmUkqohXkxWgIzZP0ttr1NY+BMGNTJsSxpvCdul73OExdg49fRPvN6vmYToc5Yqj BIUmqmxwfLsxt1nB9VlcwLmBI+0868rxEoE5gAemDJD3hNIK3L0azhBXBKhBwVsg gcfKTR2km3WEodoqRYDnRIX3/HOk1lAydPzzBuiIA+VIEU433TBKksThR2qaIayW t+OiZnbIFl8q+hkTpV4NgSnEyGz7cMzJmtY1VhpMQRpz9x5BmQX4M/kF3HdWhttf 29Bfo3JxmZ01SRtZTlv1LxtXRwq4/m+iyfKM9xa0WxjUelUJYcVeZkHO4TEKDiY1 IGKljVA5lpz996GWg1lJBaPEYNsVLgyB4sapqZGoxAzLZDUQZuuEtRC1mhXQQFCV VjWNTjjcyI4=rLTN -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . Summary:

    An update is now available for OpenShift Logging 5.1. Solution:

    For OpenShift Container Platform 4.8 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:

    https://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html

    For Red Hat OpenShift Logging 5.1, see the following instructions to apply this update:

    https://docs.openshift.com/container-platform/4.8/logging/cluster-logging-upgrading.html

    1. JIRA issues fixed (https://issues.jboss.org/):

    LOG-1971 - Applying cluster state is causing elasticsearch to hit an issue and become unusable

    1. Description:

    Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

    2021-12-11: VMSA-2021-0028.1 Updated advisory with workaround information for multiple products including vCenter Server Appliance, vRealize Operations, Horizon, vRealize Log Insight, Unified Access Gateway.

    2021-12-13: VMSA-2021-0028.2 Revised advisory with updates to multiple products. \x95 VMware HCX \x95 VMware NSX-T Data Center \x95 VMware WorkspaceOne Access \x95 VMware Identity Manager \x95 VMware vRealize Operations Cloud Proxy \x95 VMware vRealize Lifecycle Manager \x95 VMware Site Recovery Manager, vSphere Replication \x95 VMware Carbon Black Cloud Workload Appliance \x95 VMware Carbon Black EDR Server \x95 VMware Tanzu GemFire \x95 VMware Tanzu Greenplum \x95 VMware Tanzu Operations Manager \x95 VMware Tanzu Application Service for VMs \x95 VMware Tanzu Kubernetes Grid Integrated Edition \x95 VMware Tanzu Observability by Wavefront Nozzle \x95 Healthwatch for Tanzu Application Service \x95 Spring Cloud Services for VMware Tanzu \x95 API Portal for VMware Tanzu \x95 Single Sign-On for VMware Tanzu Application Service \x95 App Metrics \x95 VMware vCenter Cloud Gateway \x95 VMware Cloud Foundation \x95 VMware Workspace ONE Access Connector \x95 VMware Horizon DaaS \x95 VMware Horizon Cloud Connector \x95 VMware NSX Data Center for vSphere \x95 VMware AppDefense Appliance \x95 VMware Cloud Director Object Storage Extension

    You are receiving this alert because you are subscribed to the VMware Security Announcements mailing list. To modify your subscription or unsubscribe please visit https://lists.vmware.com/mailman/listinfo/security-announce

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.17900.52\\)"
          },
          {
            "_id": null,
            "model": "virtualized infrastructure manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.0"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(001.001\\)"
          },
          {
            "_id": null,
            "model": "integrated management controller supervisor",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.3.2.1"
          },
          {
            "_id": null,
            "model": "customer experience cloud agent",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.12.1"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa42-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "sipass integrated",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.80"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.5"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "010.000\\(001\\)"
          },
          {
            "_id": null,
            "model": "desigo cc info center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "cloudcenter suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "unified workforce optimization",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "automated subsea tuning",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "02.01.00"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(2\\)"
          },
          {
            "_id": null,
            "model": "desigo cc info center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.1.3"
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "9.1\\(1\\)"
          },
          {
            "_id": null,
            "model": "business process automation",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.000.115"
          },
          {
            "_id": null,
            "model": "crosswork network automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0.0"
          },
          {
            "_id": null,
            "model": "capital",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(4.65000.14\\)"
          },
          {
            "_id": null,
            "model": "video surveillance manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.14\\(2.26\\)"
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa32-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(000.000\\)"
          },
          {
            "_id": null,
            "model": "network assurance engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(2.1912\\)"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.4\\(1\\)"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0"
          },
          {
            "_id": null,
            "model": "enterprise chat and email",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "video surveillance operations manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.14.4"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "_id": null,
            "model": "spectrum power 7",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.30"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2020.1"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(2\\)"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1h\\)"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.2.2"
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(000.002\\)"
          },
          {
            "_id": null,
            "model": "fog director",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "comos",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "10.4.2"
          },
          {
            "_id": null,
            "model": "prime service catalog",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.1.2.8"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "21.3"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(2\\)"
          },
          {
            "_id": null,
            "model": "ucs central",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1p\\)"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.10.0"
          },
          {
            "_id": null,
            "model": "crosswork network automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.3"
          },
          {
            "_id": null,
            "model": "mindsphere",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-16"
          },
          {
            "_id": null,
            "model": "crosswork data gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "nexus dashboard",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.1.2"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "crosswork network controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "cloudcenter suite admin",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3.1"
          },
          {
            "_id": null,
            "model": "cloudcenter suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3.0"
          },
          {
            "_id": null,
            "model": "sentron powermanager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "010.002\\(000\\)"
          },
          {
            "_id": null,
            "model": "video surveillance manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.14\\(4.018\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.7"
          },
          {
            "_id": null,
            "model": "e-car operation center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6\\(2\\)"
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1f\\)"
          },
          {
            "_id": null,
            "model": "connected mobile experiences",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.5.1.1"
          },
          {
            "_id": null,
            "model": "spectrum power 4",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.70"
          },
          {
            "_id": null,
            "model": "unified communications manager im and presence service",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "network assurance engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "brocade san navigator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "integrated management controller supervisor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.003\\(002.000\\)"
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "8.4\\(1\\)"
          },
          {
            "_id": null,
            "model": "xcode",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apple",
            "version": "13.3"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.18119.2\\)"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1b\\)"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.004\\(000.914\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.6.1"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.3.4.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.18900.97\\)"
          },
          {
            "_id": null,
            "model": "snapcenter",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.2.2.8"
          },
          {
            "_id": null,
            "model": "synchro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "bentley",
            "version": "6.2.4.2"
          },
          {
            "_id": null,
            "model": "packaged contact center enterprise",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.5.0"
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "8.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa12-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "cyber vision sensor management extension",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "cloud secure agent",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "crosswork platform infrastructure",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.4"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.0"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.007\\(000.356\\)"
          },
          {
            "_id": null,
            "model": "unified communications manager im \\\u0026 presence service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.5"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.2.3"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.4"
          },
          {
            "_id": null,
            "model": "vm access proxy",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snowsoftware",
            "version": "3.6"
          },
          {
            "_id": null,
            "model": "intersight virtual appliance",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.0.9-343"
          },
          {
            "_id": null,
            "model": "data center network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa22-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "oncommand insight",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.6"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "industrial edge management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "virtual topology system",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.6.7"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "9.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "unified computing system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "006.008\\(001.000\\)"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1c\\)"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.6.3.1"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.4.0"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "010.002\\(001\\)"
          },
          {
            "_id": null,
            "model": "ontap tools",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "cloudcenter",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.10.0.16"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.006\\(000.156\\)"
          },
          {
            "_id": null,
            "model": "virtualized voice browser",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "oneapi sample browser",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "sentron powermanager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "cloudcenter cost optimizer",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(3\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.8"
          },
          {
            "_id": null,
            "model": "mendix",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1d\\)"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1g\\)"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "9.0\\(2\\)"
          },
          {
            "_id": null,
            "model": "crosswork zero touch provisioning",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(001.000\\)"
          },
          {
            "_id": null,
            "model": "enterprise chat and email",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.4.2.1"
          },
          {
            "_id": null,
            "model": "opcenter intelligence",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.010\\(000.000\\)"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.12.2"
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.2.3.0"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.2.1"
          },
          {
            "_id": null,
            "model": "crosswork data gateway",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "35"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "unified communications manager im \\\u0026 presence service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.22900.6\\)"
          },
          {
            "_id": null,
            "model": "unified communications manager im and presence service",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.3"
          },
          {
            "_id": null,
            "model": "sppa-t3000 ses3000",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "cx cloud agent",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "001.012"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.10.0.1"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "enterprise chat and email",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "integrated management controller supervisor",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.3.2.0"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "10.2.1v2"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.4.5.2"
          },
          {
            "_id": null,
            "model": "iot operations dashboard",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ucs director",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.8.2.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.3.1"
          },
          {
            "_id": null,
            "model": "capital",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "crosswork platform infrastructure",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "cyber vision",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "siveillance vantage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "unified sip proxy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "010.000\\(000\\)"
          },
          {
            "_id": null,
            "model": "optical network controller",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.1.0"
          },
          {
            "_id": null,
            "model": "solidfire \\\u0026 hci storage node",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.2.2.0"
          },
          {
            "_id": null,
            "model": "email security",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "10.0.13"
          },
          {
            "_id": null,
            "model": "crosswork network automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "enterprise chat and email",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.7"
          },
          {
            "_id": null,
            "model": "crosswork optimization engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "synchro",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "bentley",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.2.2.8"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.1\\(1\\)"
          },
          {
            "_id": null,
            "model": "nx",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "datacenter manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "intel",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "navigator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "video surveillance manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.14\\(1.26\\)"
          },
          {
            "_id": null,
            "model": "prime service catalog",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "energyip prepay",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.8.0.12"
          },
          {
            "_id": null,
            "model": "business process automation",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.000.000"
          },
          {
            "_id": null,
            "model": "gma-manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.6.2j-398"
          },
          {
            "_id": null,
            "model": "unified intelligence center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "mobility services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "broadworks",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.4"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "unified intelligence center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(2\\)"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "synchro 4d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "bentley",
            "version": "6.4.3.2"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "data center network manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.7.0"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(001.002\\)"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.6"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "spectrum power 4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.70"
          },
          {
            "_id": null,
            "model": "cloud connect",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "cloudcenter suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.4.1"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.2\\(1\\)"
          },
          {
            "_id": null,
            "model": "siguard dsa",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021.1"
          },
          {
            "_id": null,
            "model": "siguard dsa",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.4.1"
          },
          {
            "_id": null,
            "model": "finesse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "advanced malware protection virtual private cloud appliance",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.4"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "solidfire enterprise sds",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "energy engage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "siveillance identity",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "unified contact center enterprise",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6\\(2\\)"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1e\\)"
          },
          {
            "_id": null,
            "model": "computer vision annotation tool",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "snow commander",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "snowsoftware",
            "version": "8.10.0"
          },
          {
            "_id": null,
            "model": "cloud insights",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "crosswork optimization engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(4.66000.14\\)"
          },
          {
            "_id": null,
            "model": "genomics kernel library",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5"
          },
          {
            "_id": null,
            "model": "cyber vision sensor management extension",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.21900.40\\)"
          },
          {
            "_id": null,
            "model": "network insights for data center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(2.1914\\)"
          },
          {
            "_id": null,
            "model": "automated subsea tuning",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.1.0"
          },
          {
            "_id": null,
            "model": "finesse",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "003.001\\(000.518\\)"
          },
          {
            "_id": null,
            "model": "xpedition package integrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "optical network controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.22900.28\\)"
          },
          {
            "_id": null,
            "model": "secure device onboard",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "unified workforce optimization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "siveillance viewpoint",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "industrial edge management hub",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "solid edge harness design",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2020"
          },
          {
            "_id": null,
            "model": "contact center domain manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "dna spaces",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.13.0"
          },
          {
            "_id": null,
            "model": "intersight virtual appliance",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.0.9-361"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.6.0"
          },
          {
            "_id": null,
            "model": "virtualized infrastructure manager",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.4.0"
          },
          {
            "_id": null,
            "model": "virtual topology system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.6.6"
          },
          {
            "_id": null,
            "model": "unified customer voice portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "spectrum power 7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.30"
          },
          {
            "_id": null,
            "model": "crosswork zero touch provisioning",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "contact center management portal",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5.4.1"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa52-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.9.1.3"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "14.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "34"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "crosswork network automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.0"
          },
          {
            "_id": null,
            "model": "network dashboard fabric controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "broadworks",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2021.11_1.162"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "003.000\\(000.458\\)"
          },
          {
            "_id": null,
            "model": "siveillance command",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.16.2.1"
          },
          {
            "_id": null,
            "model": "firepower threat defense",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.1.0"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "003.002\\(000.116\\)"
          },
          {
            "_id": null,
            "model": "unified contact center management portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "operation scheduler",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.1.3"
          },
          {
            "_id": null,
            "model": "active iq unified manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(4\\)"
          },
          {
            "_id": null,
            "model": "logo\\! soft comfort",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "emergency responder",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "crosswork network automation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "packaged contact center enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "dna spaces\\: connector",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5"
          },
          {
            "_id": null,
            "model": "solid edge cam pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "business process automation",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.000.044"
          },
          {
            "_id": null,
            "model": "smart phy",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "virtualized infrastructure manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.4.4"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(2\\)"
          },
          {
            "_id": null,
            "model": "cloud manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "head-end system universal device integration system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.5.0"
          },
          {
            "_id": null,
            "model": "crosswork network controller",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "unity connection",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "8.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "nexus insights",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "webex meetings server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "business process automation",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.000.009"
          },
          {
            "_id": null,
            "model": "unity connection",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1.10000.6\\)"
          },
          {
            "_id": null,
            "model": "system studio",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "evolved programmable network manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "siveillance control pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.5"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5\\(1\\)su3"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "cloudcenter suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.15.0"
          },
          {
            "_id": null,
            "model": "unified intelligence center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "unity connection",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "11.5"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "cloudcenter suite",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.10.0.15"
          },
          {
            "_id": null,
            "model": "siveillance identity",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.6"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1a\\)"
          },
          {
            "_id": null,
            "model": "opcenter intelligence",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "cloudcenter workload manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "fxos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "business process automation",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.000.000"
          },
          {
            "_id": null,
            "model": "identity services engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.4.0"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "sd-wan vmanage",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "20.6.2.1"
          },
          {
            "_id": null,
            "model": "solid edge harness design",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2020"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1k\\)"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "wan automation engine",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.3.0.2"
          },
          {
            "_id": null,
            "model": "network services orchestrator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3.5.1"
          },
          {
            "_id": null,
            "model": "video surveillance manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.14\\(3.025\\)"
          },
          {
            "_id": null,
            "model": "teamcenter",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "xpedition enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "dna center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.2.3.4"
          },
          {
            "_id": null,
            "model": "workload optimization manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.2.1"
          },
          {
            "_id": null,
            "model": "sipass integrated",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.85"
          },
          {
            "_id": null,
            "model": "ucs central software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(1l\\)"
          },
          {
            "_id": null,
            "model": "dna spaces connector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "finesse",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.6\\(1\\)"
          },
          {
            "_id": null,
            "model": "common services platform collector",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "002.009\\(000.001\\)"
          },
          {
            "_id": null,
            "model": "rhythmyx",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "percussion",
            "version": "7.3.2"
          },
          {
            "_id": null,
            "model": "paging server",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "14.4.1"
          },
          {
            "_id": null,
            "model": "unified contact center express",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.5\\(1\\)"
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Much of the content of this vulnerability note is derived from Apache Log4j Security Vulnerabilities and http://slf4j.org/log4shell.html.This document was written by Art Manion.",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#930724"
          }
        ],
        "trust": 0.8
      },
      "cve": "CVE-2021-44228",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 9.3,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2021-44228",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.1,
                "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 9.3,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 8.6,
                "id": "VHN-407408",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:M/AU:N/C:C/I:C/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "HIGH",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.1,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 4.9,
                "id": "VHN-408570",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:H/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 10.0,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 3.9,
                "id": "CVE-2021-44228",
                "impactScore": 6.0,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 2.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2021-44228",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2021-44228",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "VULHUB",
                "id": "VHN-407408",
                "trust": 0.1,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-408570",
                "trust": 0.1,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-44228",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-44228"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message parameters can execute arbitrary code loaded from LDAP servers when message lookup substitution is enabled. From log4j 2.15.0, this behavior has been disabled by default. From version 2.16.0 (along with 2.12.2, 2.12.3, and 2.3.1), this functionality has been completely removed. Note that this vulnerability is specific to log4j-core and does not affect log4net, log4cxx, or other Apache Logging Services projects. Apache Log4j allows insecure JNDI lookups that could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the vulnerable Java application using Log4j.CVE-2021-4104 Affected\nCVE-2021-44228 Affected\nCVE-2021-45046 AffectedCVE-2021-4104 Affected\nCVE-2021-44228 Affected\nCVE-2021-45046 Affected. Apache Log4j is a Java-based open source logging tool of the Apache Foundation. Apache log4j2 has a denial of service vulnerability. When improperly configured, an attacker can exploit this vulnerability to cause a denial of service attack. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n====================================================================                   \nRed Hat Security Advisory\n\nSynopsis:          Critical: Red Hat AMQ Streams 1.8.4 release and security update\nAdvisory ID:       RHSA-2021:5138-01\nProduct:           Red Hat JBoss AMQ\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2021:5138\nIssue date:        2021-12-14\nCVE Names:         CVE-2021-44228\n====================================================================\n1. Summary:\n\nRed Hat AMQ Streams 1.8.4 is now available from the Red Hat Customer\nPortal. \n\nRed Hat Product Security has rated this update as having a security impact\nof Critical. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Description:\n\nRed Hat AMQ Streams, based on the Apache Kafka project, offers a\ndistributed backbone that allows microservices and other applications to\nshare data with extremely high throughput and extremely low latency. \n\nThis release of Red Hat AMQ Streams 1.8.4 serves as a replacement for Red\nHat AMQ Streams 1.8.0, and includes security and bug fixes, and\nenhancements. \n\nSecurity Fix(es):\n\n* log4j-core: Remote code execution in Log4j 2.x when logs contain an\nattacker-controlled string value (CVE-2021-44228)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\n3. Solution:\n\nBefore applying the update, back up your existing installation, including\nall applications, configuration files, databases and database settings, and\nso on. \n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). \n\n4. Bugs fixed (https://bugzilla.redhat.com/):\n\n2030932 - CVE-2021-44228 log4j-core: Remote code execution in Log4j 2.x when logs contain an attacker-controlled string value\n\n5. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-44228\nhttps://access.redhat.com/security/updates/classification/#critical\nhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=distributions\u0026product=jboss.amq.streams\u0026version=1.8.4\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2021-009\n\n6. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2021 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n\niQIVAwUBYblI5tzjgjWX9erEAQjb2w/+IySGyUK1nRexUTqiupBqCswjKe/HgWcI\ncxkZPlLSmU1UszQIqk8z3Btcb0TAqfPLVHNfLmCiq8gJk0fH4gfmF5gBQvpNnwVd\nE0qCdbELYgulTy6uGu7tqdWLnYX+jixkrm2xE/CBMNHNceISeRc99jBYyX4aOPlt\nbbOmCG5Nv6niBS5KnacWrBJr1kYTjilbP02GT6i9WQWUMyWcrGo+1z0mEJYNZSCk\n4G8ha8QnUaR8aZnbFvpf3GaelMqkyMezdgJTLyIk+dhLvNs/FgR+6Pf/VdNghT40\nXmUkqohXkxWgIzZP0ttr1NY+BMGNTJsSxpvCdul73OExdg49fRPvN6vmYToc5Yqj\nBIUmqmxwfLsxt1nB9VlcwLmBI+0868rxEoE5gAemDJD3hNIK3L0azhBXBKhBwVsg\ngcfKTR2km3WEodoqRYDnRIX3/HOk1lAydPzzBuiIA+VIEU433TBKksThR2qaIayW\nt+OiZnbIFl8q+hkTpV4NgSnEyGz7cMzJmtY1VhpMQRpz9x5BmQX4M/kF3HdWhttf\n29Bfo3JxmZ01SRtZTlv1LxtXRwq4/m+iyfKM9xa0WxjUelUJYcVeZkHO4TEKDiY1\nIGKljVA5lpz996GWg1lJBaPEYNsVLgyB4sapqZGoxAzLZDUQZuuEtRC1mhXQQFCV\nVjWNTjjcyI4=rLTN\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. Summary:\n\nAn update is now available for OpenShift Logging 5.1. Solution:\n\nFor OpenShift Container Platform 4.8 see the following documentation, which\nwill be updated shortly for this release, for important instructions on how\nto upgrade your cluster and fully apply this errata update:\n\nhttps://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html\n\nFor Red Hat OpenShift Logging 5.1, see the following instructions to apply\nthis update:\n\nhttps://docs.openshift.com/container-platform/4.8/logging/cluster-logging-upgrading.html\n\n4. JIRA issues fixed (https://issues.jboss.org/):\n\nLOG-1971 - Applying cluster state is causing elasticsearch to hit an issue and become unusable\n\n6. Description:\n\nRed Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments. \n\n2021-12-11: VMSA-2021-0028.1\nUpdated advisory with workaround information for multiple products including vCenter Server Appliance, vRealize Operations, Horizon, vRealize Log Insight, Unified Access Gateway. \n\n2021-12-13: VMSA-2021-0028.2\nRevised advisory with updates to multiple products. \n\\x95\tVMware HCX\n\\x95\tVMware NSX-T Data Center\n\\x95\tVMware WorkspaceOne Access\n\\x95\tVMware Identity Manager \n\\x95\tVMware vRealize Operations Cloud Proxy\n\\x95\tVMware vRealize Lifecycle Manager\n\\x95\tVMware Site Recovery Manager, vSphere Replication\n\\x95\tVMware Carbon Black Cloud Workload Appliance\n\\x95\tVMware Carbon Black EDR Server\n\\x95\tVMware Tanzu GemFire\n\\x95\tVMware Tanzu Greenplum\n\\x95\tVMware Tanzu Operations Manager\n\\x95\tVMware Tanzu Application Service for VMs\n\\x95\tVMware Tanzu Kubernetes Grid Integrated Edition\n\\x95\tVMware Tanzu Observability by Wavefront Nozzle\n\\x95\tHealthwatch for Tanzu Application Service\n\\x95\tSpring Cloud Services for VMware Tanzu\n\\x95\tAPI Portal for VMware Tanzu\n\\x95\tSingle Sign-On for VMware Tanzu Application Service\n\\x95\tApp Metrics\n\\x95\tVMware vCenter Cloud Gateway\n\\x95\tVMware Cloud Foundation\n\\x95\tVMware Workspace ONE Access Connector\n\\x95\tVMware Horizon DaaS\n\\x95\tVMware Horizon Cloud Connector\n\\x95\tVMware NSX Data Center for vSphere\n\\x95\tVMware AppDefense Appliance\n\\x95\tVMware Cloud Director Object Storage Extension\n\nYou are receiving this alert because you are subscribed to the VMware Security Announcements mailing list. To modify your subscription or unsubscribe please visit https://lists.vmware.com/mailman/listinfo/security-announce",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          },
          {
            "db": "CERT/CC",
            "id": "VU#930724"
          },
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-44228"
          },
          {
            "db": "PACKETSTORM",
            "id": "165295"
          },
          {
            "db": "PACKETSTORM",
            "id": "165286"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165260"
          }
        ],
        "trust": 2.25
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-407408",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-44228",
            "trust": 2.5
          },
          {
            "db": "CERT/CC",
            "id": "VU#930724",
            "trust": 2.0
          },
          {
            "db": "PACKETSTORM",
            "id": "165260",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-479842",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-714170",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-661247",
            "trust": 1.2
          },
          {
            "db": "SIEMENS",
            "id": "SSA-397453",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/14/4",
            "trust": 1.2
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/15/3",
            "trust": 1.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165311",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165225",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165532",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165281",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165306",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165673",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165282",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165371",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "167794",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "167917",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165270",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165261",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165642",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165307",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/13/1",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/10/3",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/13/2",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/10/2",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/10/1",
            "trust": 1.1
          },
          {
            "db": "PACKETSTORM",
            "id": "171626",
            "trust": 1.0
          },
          {
            "db": "PACKETSTORM",
            "id": "165343",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "165329",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165333",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165295",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165326",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165632",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "165293",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165324",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165520",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165285",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165290",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165291",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165733",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166313",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165279",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165297",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165298",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165289",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165348",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165264",
            "trust": 0.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "50592",
            "trust": 0.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "50590",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-407408",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165637",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165649",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165636",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165650",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165645",
            "trust": 0.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/18/1",
            "trust": 0.1
          },
          {
            "db": "CNVD",
            "id": "CNVD-2022-01776",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570",
            "trust": 0.1
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-44228",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165286",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#930724"
          },
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-44228"
          },
          {
            "db": "PACKETSTORM",
            "id": "165295"
          },
          {
            "db": "PACKETSTORM",
            "id": "165286"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165260"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "id": "VAR-202112-0566",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          }
        ],
        "trust": 0.7961849514285715
      },
      "last_update_date": "2026-03-09T23:19:31.555000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Debian CVElist Bug Report Logs: apache-log4j2: CVE-2021-44228: Remote code injection via crafted log messages",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=4eae9b09b97da57f4ca6103cc85ed4da"
          },
          {
            "title": "Debian CVElist Bug Report Logs: apache-log4j2: CVE-2021-45046: Incomplete fix for CVE-2021-44228 in certain non-default configurations",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=b88a8ce4fc53c3a45830bc6bbde8b01c"
          },
          {
            "title": "Debian Security Advisories: DSA-5020-1 apache-log4j2 -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=24c79c59809a2c5bcddc81889b23a6bc"
          },
          {
            "title": "Debian Security Advisories: DSA-5022-1 apache-log4j2 -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=5ba53229ef5f408ed29126bd4f624def"
          },
          {
            "title": "IBM: Security Bulletin: There is vulnerability in Apache Log4j used by Content Manager OnDemand z/OS. Content Manager OnDemand z/OS has addressed the applicable CVE [CVE-2021-44228]",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=dbdfcf9d51b60adf542d500e515b9ba8"
          },
          {
            "title": "Red Hat: CVE-2021-44228",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_cve_database\u0026qid=CVE-2021-44228"
          },
          {
            "title": "IBM: An update on the Apache Log4j 2.x vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=0648a3f00f067d373b069c4f2acd5db4"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2021-1553",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2021-1553"
          },
          {
            "title": "IBM: Security Bulletin: IBM Cloud Pak System is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046, CVE-2021-44228)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=c8b40ff47e1d31bee8b0fbdbdd4fe212"
          },
          {
            "title": "IBM: Security Bulletin: IBM Cloud Pak System is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046, CVE-2021-44228)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=654a4f5a7bd1fdfd229558535923710b"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1731",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1731"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1730",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1730"
          },
          {
            "title": "Arch Linux Issues: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2021-44228 log"
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/canarieids/Zeek-Ubuntu-22.04 "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/f5devcentral/f5-professional-services "
          },
          {
            "title": "Log4J-CVE-2021-44228-Mitigation-Cheat-Sheet",
            "trust": 0.1,
            "url": "https://github.com/thedevappsecguy/Log4J-CVE-2021-44228-Mitigation-Cheat-Sheet "
          },
          {
            "title": "spring-on-k8s",
            "trust": 0.1,
            "url": "https://github.com/AndriyKalashnykov/spring-on-k8s "
          },
          {
            "title": "jaygooby",
            "trust": 0.1,
            "url": "https://github.com/jaygooby/jaygooby "
          },
          {
            "title": "log4j-log4shell-playground",
            "trust": 0.1,
            "url": "https://github.com/rgl/log4j-log4shell-playground "
          },
          {
            "title": "Log4j",
            "trust": 0.1,
            "url": "https://github.com/kaganoglu/Log4j "
          },
          {
            "title": "trivy-cve-scan",
            "trust": 0.1,
            "url": "https://github.com/broadinstitute/trivy-cve-scan "
          },
          {
            "title": "test-44228",
            "trust": 0.1,
            "url": "https://github.com/datadavev/test-44228 "
          },
          {
            "title": "cve-2021-44228-helpers",
            "trust": 0.1,
            "url": "https://github.com/uint0/cve-2021-44228-helpers "
          },
          {
            "title": "log4j-vendor-list",
            "trust": 0.1,
            "url": "https://github.com/bizzarecontacts/log4j-vendor-list "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Live-Hack-CVE/CVE-2021-44228 "
          },
          {
            "title": "log4shell",
            "trust": 0.1,
            "url": "https://github.com/0xsyr0/log4shell "
          },
          {
            "title": "cve-2021-44228-qingteng-online-patch",
            "trust": 0.1,
            "url": "https://github.com/qingtengyun/cve-2021-44228-qingteng-online-patch "
          },
          {
            "title": "cve-2021-44228",
            "trust": 0.1,
            "url": "https://github.com/corelight/cve-2021-44228 "
          },
          {
            "title": "Log4Shell-IOCs",
            "trust": 0.1,
            "url": "https://github.com/curated-intel/Log4Shell-IOCs "
          },
          {
            "title": "Sitecore.Solr-log4j-mitigation",
            "trust": 0.1,
            "url": "https://github.com/avwolferen/Sitecore.Solr-log4j-mitigation "
          },
          {
            "title": "check-log4j",
            "trust": 0.1,
            "url": "https://github.com/yahoo/check-log4j "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-502",
            "trust": 1.2
          },
          {
            "problemtype": "CWE-20",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-400",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-917",
            "trust": 1.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.2,
            "url": "https://www.kb.cert.org/vuls/id/930724"
          },
          {
            "trust": 1.2,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-apache-log4j-qruknebd"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-397453.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2021-0032"
          },
          {
            "trust": 1.2,
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/alert-cve-2021-44228.html"
          },
          {
            "trust": 1.2,
            "url": "https://logging.apache.org/log4j/2.x/security.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "trust": 1.2,
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/14/4"
          },
          {
            "trust": 1.2,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/15/3"
          },
          {
            "trust": 1.1,
            "url": "https://security.netapp.com/advisory/ntap-20211210-0007/"
          },
          {
            "trust": 1.1,
            "url": "https://support.apple.com/kb/ht213189"
          },
          {
            "trust": 1.1,
            "url": "https://www.debian.org/security/2021/dsa-5020"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2022/mar/23"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2022/jul/11"
          },
          {
            "trust": 1.1,
            "url": "http://seclists.org/fulldisclosure/2022/dec/2"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/167794/open-xchange-app-suite-7.10.x-cross-site-scripting-command-injection.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/167917/mobileiron-log4shell-remote-command-execution.html"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/nu11secur1ty/cve-mitre/tree/main/cve-2021-44228"
          },
          {
            "trust": 1.1,
            "url": "https://www.nu11secur1ty.com/2021/12/cve-2021-44228.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165225/apache-log4j2-2.14.1-remote-code-execution.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165260/vmware-security-advisory-2021-0028.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165261/apache-log4j2-2.14.1-information-disclosure.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165270/apache-log4j2-2.14.1-remote-code-execution.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165281/log4j2-log4shell-regexes.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165282/log4j-payload-generator.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165306/l4sh-log4j-remote-code-execution.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165307/log4j-remote-code-execution-word-bypassing.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165311/log4j-scan-extensive-scanner.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165371/vmware-security-advisory-2021-0028.4.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165532/log4shell-http-header-injection.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165642/vmware-vcenter-server-unauthenticated-log4shell-jndi-injection-remote-code-execution.html"
          },
          {
            "trust": 1.1,
            "url": "http://packetstormsecurity.com/files/165673/unifi-network-application-unauthenticated-log4shell-remote-code-execution.html"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/cisagov/log4j-affected-db"
          },
          {
            "trust": 1.1,
            "url": "https://github.com/cisagov/log4j-affected-db/blob/develop/software-list.md"
          },
          {
            "trust": 1.1,
            "url": "https://twitter.com/kurtseifried/status/1469345530182455296"
          },
          {
            "trust": 1.1,
            "url": "https://www.bentley.com/en/common-vulnerability-exposure/be-2022-0001"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00007.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/10/1"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/10/2"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/10/3"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/13/1"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/13/2"
          },
          {
            "trust": 1.1,
            "url": "https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021-44228-apache-log4j2/"
          },
          {
            "trust": 1.0,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/m5csvunv4hwzzxgoknsk6l7rpm7bokib/"
          },
          {
            "trust": 1.0,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/vu57ujdcfiasio35gc55jmksrxjmcdfm/"
          },
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/171626/ad-manager-plus-7122-remote-code-execution.html"
          },
          {
            "trust": 1.0,
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=cve-2021-44228"
          },
          {
            "trust": 0.8,
            "url": "cve-2021-4104  "
          },
          {
            "trust": 0.8,
            "url": "cve-2021-44228  "
          },
          {
            "trust": 0.8,
            "url": "cve-2021-45046  "
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/vulnerabilities/rhsb-2021-009"
          },
          {
            "trust": 0.3,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2021-44228"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44228"
          },
          {
            "trust": 0.3,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#critical"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-43527"
          },
          {
            "trust": 0.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/m5csvunv4hwzzxgoknsk6l7rpm7bokib/"
          },
          {
            "trust": 0.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/vu57ujdcfiasio35gc55jmksrxjmcdfm/"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/2021/dsa-5022"
          },
          {
            "trust": 0.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/eokpqgv24rrbbi4tbzudqmm4meh7mxcy/"
          },
          {
            "trust": 0.1,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/sig7fzulmnk2xf6fzru4vwydqxnmugaj/"
          },
          {
            "trust": 0.1,
            "url": "https://www.cve.org/cverecord?id=cve-2021-44228"
          },
          {
            "trust": 0.1,
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/18/1"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=distributions\u0026product=jboss.amq.streams\u0026version=1.8.4"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:5138"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-16135"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3200"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-25013"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-25012"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-35522"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-5827"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-35524"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-20673"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-25013"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-25009"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-27645"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33574"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-13435"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-5827"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-24370"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-14145"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-13751"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-25014"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-19603"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14145"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-25012"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-35521"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-35942"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-17594"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-35524"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-24370"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3572"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-12762"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-36086"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3778"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-35522"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-13750"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-13751"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-22898"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-12762"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-16135"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-36084"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-37136"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-17541"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3800"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-17594"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-36087"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-36331"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3712"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-31535"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-35523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-23841"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3445"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-13435"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-19603"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-22925"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:5128"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-20673"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-23840"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-36330"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-18218"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-20232"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-20266"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-20838"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-22876"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-20231"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-36332"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-14155"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-25010"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-20838"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-17541"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-25014"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-36085"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-37137"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-21409"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33560"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-17595"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3481"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-42574"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-14155"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-25009"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2018-25010"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-35523"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-28153"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-13750"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.8/release_notes/ocp-4-8-release-notes.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3426"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-18218"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.8/logging/cluster-logging-upgrading.html"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3580"
          },
          {
            "trust": 0.1,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-3796"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-17595"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-36330"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-35521"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.7/updating/updating-cluster-cli.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-43527"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4104"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:5107"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-45046"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45046"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-4104"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-release-notes.html"
          },
          {
            "trust": 0.1,
            "url": "https://www.vmware.com/security/advisories/vmsa-2021-0028.html"
          },
          {
            "trust": 0.1,
            "url": "http://lists.vmware.com/mailman/listinfo/security-announce"
          },
          {
            "trust": 0.1,
            "url": "https://lists.vmware.com/mailman/listinfo/security-announce."
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#930724"
          },
          {
            "db": "VULHUB",
            "id": "VHN-407408"
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570"
          },
          {
            "db": "PACKETSTORM",
            "id": "165295"
          },
          {
            "db": "PACKETSTORM",
            "id": "165286"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165260"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#930724",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-407408",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-408570",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-44228",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165295",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165286",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165343",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165260",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2021-44228",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-12-15T00:00:00",
            "db": "CERT/CC",
            "id": "VU#930724",
            "ident": null
          },
          {
            "date": "2021-12-10T00:00:00",
            "db": "VULHUB",
            "id": "VHN-407408",
            "ident": null
          },
          {
            "date": "2021-12-14T00:00:00",
            "db": "VULHUB",
            "id": "VHN-408570",
            "ident": null
          },
          {
            "date": "2021-12-10T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-44228",
            "ident": null
          },
          {
            "date": "2021-12-15T15:26:54",
            "db": "PACKETSTORM",
            "id": "165295",
            "ident": null
          },
          {
            "date": "2021-12-15T15:20:33",
            "db": "PACKETSTORM",
            "id": "165286",
            "ident": null
          },
          {
            "date": "2021-12-17T14:05:45",
            "db": "PACKETSTORM",
            "id": "165343",
            "ident": null
          },
          {
            "date": "2021-12-14T15:27:58",
            "db": "PACKETSTORM",
            "id": "165260",
            "ident": null
          },
          {
            "date": "2021-12-10T10:15:09.143000",
            "db": "NVD",
            "id": "CVE-2021-44228",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2022-02-07T00:00:00",
            "db": "CERT/CC",
            "id": "VU#930724",
            "ident": null
          },
          {
            "date": "2023-02-06T00:00:00",
            "db": "VULHUB",
            "id": "VHN-407408",
            "ident": null
          },
          {
            "date": "2022-10-06T00:00:00",
            "db": "VULHUB",
            "id": "VHN-408570",
            "ident": null
          },
          {
            "date": "2023-11-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-44228",
            "ident": null
          },
          {
            "date": "2026-02-20T16:15:59.363000",
            "db": "NVD",
            "id": "CVE-2021-44228",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "165260"
          }
        ],
        "trust": 0.1
      },
      "title": {
        "_id": null,
        "data": "Apache Log4j allows insecure JNDI lookups",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#930724"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "code execution",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "165295"
          },
          {
            "db": "PACKETSTORM",
            "id": "165286"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165260"
          }
        ],
        "trust": 0.4
      }
    }

    VAR-201805-0963

    Vulnerability from variot - Updated: 2026-03-09 22:00

    Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. CPU hardware utilizing speculative execution may be vulnerable to cache timing side-channel analysis. Two vulnerabilities are identified, known as "Variant 3a" and "Variant 4". CPUhardware is firmware that runs in the central processor for managing and controlling the CPU. Multiple CPUHardware information disclosure vulnerabilities. The vulnerability is caused by a race condition in the CPU cache processing. Local attackers can exploit vulnerabilities to obtain sensitive information through side channel analysis. AMD, ARM, and Intel CPUs are all CPU (central processing unit) products from different manufacturers. AMD, ARM, and Intel CPUs have security vulnerabilities. Relevant releases/architectures:

    RHEL 7-based RHEV-H ELS - noarch RHEV Hypervisor for RHEL-6 ELS - noarch

    1. The Red Hat Enterprise Virtualization Hypervisor is a dedicated Kernel-based Virtual Machine (KVM) hypervisor. 7.4) - ppc64, ppc64le, s390x, x86_64

    2. (CVE-2018-3639)

    Note: This is the libvirt side of the CVE-2018-3639 mitigation that includes support for guests running on hosts with AMD CPUs.

    Bug Fix(es):

    • The "virsh capabilities" command previously displayed an inaccurate number of 4 KiB memory pages on systems with very large amounts of memory. This update optimizes the memory diagnostic mechanism to ensure memory page numbers are displayed correctly on such systems. (BZ#1582416)

    • After starting a large amount of guest virtual machines in a single session, the libvirtd service in some cases became unable to start any other guests until it was restarted. This update ensures that libvirtd properly frees memory used for D-Bus replies, which prevents the described problem from occurring. (BZ#1588390)

    For the stable distribution (stretch), these problems have been fixed in version 3.20180703.2~deb9u1.

    We recommend that you upgrade your intel-microcode packages. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ===================================================================== Red Hat Security Advisory

    Synopsis: Important: libvirt security update Advisory ID: RHSA-2018:1669-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2018:1669 Issue date: 2018-05-21 CVE Names: CVE-2018-3639 =====================================================================

    1. Summary:

    An update for libvirt is now available for Red Hat Enterprise Linux 6.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64 Red Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node (v. 6) - x86_64 Red Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64 Red Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 6) - x86_64 Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Optional (v. 6) - x86_64

    1. Description:

    The libvirt library contains a C API for managing and interacting with the virtualization capabilities of Linux and other operating systems. In addition, libvirt provides tools for remote management of virtualized systems.

    Security Fix(es):

    • An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions (a commonly used performance optimization). It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the fact that memory read from address to which a recent memory write has occurred may see an older value and subsequently cause an update into the microprocessor's data cache even for speculatively executed instructions that never actually commit (retire). As a result, an unprivileged attacker could use this flaw to read privileged memory by conducting targeted cache side-channel attacks. (CVE-2018-3639)

    Note: This is the libvirt side of the CVE-2018-3639 mitigation.

    1. Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    After installing the updated packages, libvirtd will be restarted automatically.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1566890 - CVE-2018-3639 hw: cpu: speculative store bypass

    1. Package List:

    Red Hat Enterprise Linux Desktop (v. 6):

    Source: libvirt-0.10.2-62.el6_9.2.src.rpm

    i386: libvirt-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-python-0.10.2-62.el6_9.2.i686.rpm

    x86_64: libvirt-0.10.2-62.el6_9.2.x86_64.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.x86_64.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-python-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux Desktop Optional (v. 6):

    i386: libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm

    x86_64: libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm libvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux HPC Node (v. 6):

    Source: libvirt-0.10.2-62.el6_9.2.src.rpm

    x86_64: libvirt-0.10.2-62.el6_9.2.x86_64.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.x86_64.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-python-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux HPC Node Optional (v. 6):

    x86_64: libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm libvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux Server (v. 6):

    Source: libvirt-0.10.2-62.el6_9.2.src.rpm

    i386: libvirt-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-python-0.10.2-62.el6_9.2.i686.rpm

    ppc64: libvirt-0.10.2-62.el6_9.2.ppc64.rpm libvirt-client-0.10.2-62.el6_9.2.ppc.rpm libvirt-client-0.10.2-62.el6_9.2.ppc64.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.ppc.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.ppc64.rpm libvirt-devel-0.10.2-62.el6_9.2.ppc.rpm libvirt-devel-0.10.2-62.el6_9.2.ppc64.rpm libvirt-python-0.10.2-62.el6_9.2.ppc64.rpm

    s390x: libvirt-0.10.2-62.el6_9.2.s390x.rpm libvirt-client-0.10.2-62.el6_9.2.s390.rpm libvirt-client-0.10.2-62.el6_9.2.s390x.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.s390.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.s390x.rpm libvirt-devel-0.10.2-62.el6_9.2.s390.rpm libvirt-devel-0.10.2-62.el6_9.2.s390x.rpm libvirt-python-0.10.2-62.el6_9.2.s390x.rpm

    x86_64: libvirt-0.10.2-62.el6_9.2.x86_64.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.x86_64.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm libvirt-python-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux Server Optional (v. 6):

    x86_64: libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux Workstation (v. 6):

    Source: libvirt-0.10.2-62.el6_9.2.src.rpm

    i386: libvirt-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-python-0.10.2-62.el6_9.2.i686.rpm

    x86_64: libvirt-0.10.2-62.el6_9.2.x86_64.rpm libvirt-client-0.10.2-62.el6_9.2.i686.rpm libvirt-client-0.10.2-62.el6_9.2.x86_64.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-devel-0.10.2-62.el6_9.2.i686.rpm libvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm libvirt-python-0.10.2-62.el6_9.2.x86_64.rpm

    Red Hat Enterprise Linux Workstation Optional (v. 6):

    x86_64: libvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm libvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2018-3639 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/vulnerabilities/ssbd

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2018 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBWwQw7NzjgjWX9erEAQhW6Q//X3vgcTXRi0xYP3Eot/Ko6Ho/zftZVrhL jih9zdj/hNF7QDaPBBPurmCUTdurUPfsSyrGJlp5vb/3YhEQjmUF3vLquoAHR7UV h5zVU11w1PPvrASwmRb1vdy9LA131YsNDeOEgYVX5GtMk8gjuu1YT6m1WD1U9/a1 B24mY0IIyC/ZGY3B7UxyePaJyPbyqIrHyZClDvg1pczaQ+tOEA6P96/gpItkLbAU FeNHnLNWp4XAbEjs5XOwBL0N7QCzpuYsKKOIITML9ZRlfSojFDtOKTiAjaE8lHgH 3KW+0zvclsNT/bcRbiGaIHl+3RF1wZ/sfi+RV0tDIQIU7m/qvx133U1rf4pvG00h XOXDl46Ezbey0tjKlJcRJEKSgRyqUyGalwW/Ul+snv6xM9MDqWMa+utLGBuf5aVD uWbTozM7qEHfx7n2XKNzJvRHVSOALYXT+XogtmOr/xAt6gxkI/hpYJKrwcQtDpVh WclQ1DjygI+yi1tG6t2MKuYPvkJ9hkTxsabV7t9yFoFsRT+FjMoD/VceNdpUVPeK P/ngU93e1TYOSF9yho92I8lsaJXc0Hk5+B0vm1kuFVX/jf604QjD6lkcQK32EH05 sP3Sj5akazGlLx3E6A5enntdkIE6aKJOQL8VCNeg+/hqP0BZCnJJWVWIoa6+Q2oO dwPZvwyusgo= =I0hs -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . ========================================================================== Ubuntu Security Notice USN-3655-1 May 22, 2018

    linux vulnerabilities

    A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 14.04 LTS

    Summary:

    Several security issues were addressed in the Linux kernel. (CVE-2018-3639)

    Jan H. Schonherr discovered that the Xen subsystem did not properly handle block IO merges correctly in some situations. An attacker in a guest vm could use this to cause a denial of service (host crash) or possibly gain administrative privileges in the host. (CVE-2017-12134)

    It was discovered that the Bluetooth HIP Protocol implementation in the Linux kernel did not properly validate HID connection setup information. An attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-13220)

    It was discovered that a buffer overread vulnerability existed in the keyring subsystem of the Linux kernel. (CVE-2017-13305)

    It was discovered that the netlink subsystem in the Linux kernel did not properly restrict observations of netlink messages to the appropriate net namespace. (CVE-2017-17449)

    It was discovered that a race condition existed in the i8042 serial device driver implementation in the Linux kernel. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-18079)

    It was discovered that a race condition existed in the Device Mapper component of the Linux kernel. A local attacker could use this to cause a denial of service (system crash). (CVE-2017-18203)

    It was discovered that a race condition existed in the OCFS2 file system implementation in the Linux kernel. A local attacker could use this to cause a denial of service (kernel deadlock). (CVE-2017-18204)

    It was discovered that an infinite loop could occur in the madvise(2) implementation in the Linux kernel in certain circumstances. A local attacker could use this to cause a denial of service (system hang). (CVE-2017-18208)

    Kefeng Wang discovered that a race condition existed in the memory locking implementation in the Linux kernel. A local attacker could use this to cause a denial of service. (CVE-2017-18221)

    Silvio Cesare discovered a buffer overwrite existed in the NCPFS implementation in the Linux kernel. A remote attacker controlling a malicious NCPFS server could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2018-8822)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 14.04 LTS: linux-image-3.13.0-149-generic 3.13.0-149.199 linux-image-3.13.0-149-generic-lpae 3.13.0-149.199 linux-image-3.13.0-149-lowlatency 3.13.0-149.199 linux-image-3.13.0-149-powerpc-e500 3.13.0-149.199 linux-image-3.13.0-149-powerpc-e500mc 3.13.0-149.199 linux-image-3.13.0-149-powerpc-smp 3.13.0-149.199 linux-image-3.13.0-149-powerpc64-emb 3.13.0-149.199 linux-image-3.13.0-149-powerpc64-smp 3.13.0-149.199 linux-image-generic 3.13.0.149.159 linux-image-generic-lpae 3.13.0.149.159 linux-image-lowlatency 3.13.0.149.159 linux-image-powerpc-e500 3.13.0.149.159 linux-image-powerpc-e500mc 3.13.0.149.159 linux-image-powerpc-smp 3.13.0.149.159 linux-image-powerpc64-emb 3.13.0.149.159 linux-image-powerpc64-smp 3.13.0.149.159

    Please note that fully mitigating CVE-2018-3639 (Spectre Variant 4) may require corresponding processor microcode/firmware updates or, in virtual environments, hypervisor updates. On i386 and amd64 architectures, the SSBD feature is required to enable the kernel mitigations. BIOS vendors will be making updates available for Intel processors that implement SSBD and Ubuntu is working with Intel to provide future microcode updates. Ubuntu users with a processor from a different vendor should contact the vendor to identify necessary firmware updates. Ubuntu provided corresponding QEMU updates for users of self-hosted virtual environments in USN 3651-1. Ubuntu users in cloud environments should contact the cloud provider to confirm that the hypervisor has been updated to expose the new CPU features to virtual machines. 7) - noarch, x86_64

    1. Description:

    The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Once all virtual machines have shut down, start them again for this update to take effect. Relevant releases/architectures:

    RHV-M 4.3 - noarch

    1. It includes the configuration of the Red Hat Support plugin, copying downstream-only artifacts to the ISO domain, and links to the knowledgebase and other support material. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant CVE-2017-5754 relies on the fact that, on impacted microprocessors, during speculative execution of instruction permission faults, exception generation triggered by a faulting access is suppressed until the retirement of the whole instruction block. Note: CVE-2017-5754 affects Intel x86-64 microprocessors. AMD x86-64 microprocessors are not affected by this issue. (CVE-2017-5754)

    Bug Fix(es):

    • [CVE-2017-5754] Variant3: POWER {qemu-kvm-rhev} Add machine type variants (BZ#1559948)

    • add POWER 9 to the 4.2 cluster level (BZ#1574494)

    • Description:

    The kernel packages contain the Linux kernel, the core of any Linux operating system. (CVE-2018-3639)

    Note: This issue is present in hardware and cannot be fully fixed via software update. The updated kernel packages provide software side of the mitigation for this hardware issue. To be fully functional, up-to-date CPU microcode applied on the system is required. Please refer to References section for further information about this issue, CPU microcode requirements and the potential performance impact.

    In this update mitigations for x86-64 architecture are provided.

    Software Description: - intel-microcode: Processor microcode for Intel CPUs

    Details:

    It was discovered that memory present in the L1 data cache of an Intel CPU core may be exposed to a malicious process that is executing on the CPU core. This vulnerability is also known as L1 Terminal Fault (L1TF). This vulnerability is also known as Rogue System Register Read (RSRE). -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    APPLE-SA-2018-10-30-9 Additional information for APPLE-SA-2018-9-24-1 macOS Mojave 10.14

    macOS Mojave 10.14 addresses the following:

    Bluetooth Available for: iMac (21.5-inch, Late 2012), iMac (27-inch, Late 2012) , iMac (21.5-inch, Late 2013), iMac (21.5-inch, Mid 2014), iMac (Retina 5K, 27-inch, Late 2014), iMac (21.5-inch, Late 2015), Mac mini (Mid 2011), Mac mini Server (Mid 2011), Mac mini (Late 2012) , Mac mini Server (Late 2012), Mac mini (Late 2014), Mac Pro (Late 2013), MacBook Air (11-inch, Mid 2011), MacBook Air (13-inch, Mid 2011), MacBook Air (11-inch, Mid 2012), MacBook Air (13-inch, Mid 2012), MacBook Air (11-inch, Mid 2013), MacBook Air (13-inch, Mid 2013), MacBook Air (11-inch, Early 2015), MacBook Air (13-inch, Early 2015), MacBook Pro (13-inch, Mid 2012), MacBook Pro (15-inch, Mid 2012), MacBook Pro (Retina, 13-inch, Early 2013), MacBook Pro (Retina, 15-inch, Early 2013), MacBook Pro (Retina, 13-inch, Late 2013), and MacBook Pro (Retina, 15-inch, Late 2013) Impact: An attacker in a privileged network position may be able to intercept Bluetooth traffic Description: An input validation issue existed in Bluetooth. This issue was addressed with improved input validation. CVE-2018-5383: Lior Neumann and Eli Biham

    The updates below are available for these Mac models: MacBook (Early 2015 and later), MacBook Air (Mid 2012 and later), MacBook Pro (Mid 2012 and later), Mac mini (Late 2012 and later), iMac (Late 2012 and later), iMac Pro (all models), Mac Pro (Late 2013, Mid 2010, and Mid 2012 models with recommended Metal-capable graphics processor, including MSI Gaming Radeon RX 560 and Sapphire Radeon PULSE RX 580)

    afpserver Impact: A remote attacker may be able to attack AFP servers through HTTP clients Description: An input validation issue was addressed with improved input validation. CVE-2018-4295: Jianjun Chen (@whucjj) from Tsinghua University and UC Berkeley Entry added October 30, 2018

    App Store Impact: A malicious application may be able to determine the Apple ID of the owner of the computer Description: A permissions issue existed in the handling of the Apple ID. This issue was addressed with improved access controls. CVE-2018-4324: Sergii Kryvoblotskyi of MacPaw Inc.

    AppleGraphicsControl Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2018-4417: Lee of the Information Security Lab Yonsei University working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    Application Firewall Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A configuration issue was addressed with additional restrictions. CVE-2018-4353: Abhinav Bansal of LinkedIn Inc.

    APR Impact: Multiple buffer overflow issues existed in Perl Description: Multiple issues in Perl were addressed with improved memory handling. CVE-2017-12613: Craig Young of Tripwire VERT CVE-2017-12618: Craig Young of Tripwire VERT Entry added October 30, 2018

    ATS Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation. CVE-2018-4411: lilang wu moony Li of Trend Micro working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    ATS Impact: An application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2018-4308: Mohamed Ghannam (@_simo36) Entry added October 30, 2018

    Auto Unlock Impact: A malicious application may be able to access local users AppleIDs Description: A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. CVE-2018-4321: Min (Spark) Zheng, Xiaolong Bai of Alibaba Inc.

    CFNetwork Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4126: Bruno Keith (@bkth_) working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    CoreFoundation Impact: A malicious application may be able to elevate privileges Description: A memory corruption issue was addressed with improved input validation. CVE-2018-4412: The UK's National Cyber Security Centre (NCSC) Entry added October 30, 2018

    CoreFoundation Impact: An application may be able to gain elevated privileges Description: A memory corruption issue was addressed with improved input validation. CVE-2018-4414: The UK's National Cyber Security Centre (NCSC) Entry added October 30, 2018

    CoreText Impact: Processing a maliciously crafted text file may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management. CVE-2018-4347: an anonymous researcher Entry added October 30, 2018

    Crash Reporter Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2018-4333: Brandon Azad

    CUPS Impact: In certain configurations, a remote attacker may be able to replace the message content from the print server with arbitrary content Description: An injection issue was addressed with improved validation. CVE-2018-4153: Michael Hanselmann of hansmi.ch Entry added October 30, 2018

    CUPS Impact: An attacker in a privileged position may be able to perform a denial of service attack Description: A denial of service issue was addressed with improved validation. CVE-2018-4406: Michael Hanselmann of hansmi.ch Entry added October 30, 2018

    Dictionary Impact: Parsing a maliciously crafted dictionary file may lead to disclosure of user information Description: A validation issue existed which allowed local file access. This was addressed with input sanitization. CVE-2018-4346: Wojciech ReguAa (@_r3ggi) of SecuRing Entry added October 30, 2018

    Grand Central Dispatch Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4426: Brandon Azad Entry added October 30, 2018

    Heimdal Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-3646: Baris Kasikci, Daniel Genkin, Ofir Weisse, and Thomas F. Wenisch of University of Michigan, Mark Silberstein and Marina Minkin of Technion, Raoul Strackx, Jo Van Bulck, and Frank Piessens of KU Leuven, Rodrigo Branco, Henrique Kawakami, Ke Sun, and Kekai Hu of Intel Corporation, Yuval Yarom of The University of Adelaide Entry added October 30, 2018

    iBooks Impact: Parsing a maliciously crafted iBooks file may lead to disclosure of user information Description: A configuration issue was addressed with additional restrictions. CVE-2018-4355: evi1m0 of bilibili security team Entry added October 30, 2018

    Intel Graphics Driver Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2018-4396: Yu Wang of Didi Research America CVE-2018-4418: Yu Wang of Didi Research America Entry added October 30, 2018

    Intel Graphics Driver Impact: An application may be able to read restricted memory Description: A memory initialization issue was addressed with improved memory handling. CVE-2018-4351: Appology Team @ Theori working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    Intel Graphics Driver Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved input validation. CVE-2018-4350: Yu Wang of Didi Research America Entry added October 30, 2018

    Intel Graphics Driver Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4334: Ian Beer of Google Project Zero Entry added October 30, 2018

    IOHIDFamily Impact: A malicious application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved input validation CVE-2018-4408: Ian Beer of Google Project Zero Entry added October 30, 2018

    IOKit Impact: A malicious application may be able to break out of its sandbox Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4341: Ian Beer of Google Project Zero CVE-2018-4354: Ian Beer of Google Project Zero Entry added October 30, 2018

    IOKit Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management. CVE-2018-4383: Apple Entry added October 30, 2018

    IOUserEthernet Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4401: Apple Entry added October 30, 2018

    Kernel Impact: A malicious application may be able to leak sensitive user information Description: An access issue existed with privileged API calls. This issue was addressed with additional restrictions. CVE-2018-4399: Fabiano Anemone (@anoane) Entry added October 30, 2018

    Kernel Impact: An attacker in a privileged network position may be able to execute arbitrary code Description: A memory corruption issue was addressed with improved validation. CVE-2018-4407: Kevin Backhouse of Semmle Ltd. Entry added October 30, 2018

    Kernel Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4336: Brandon Azad CVE-2018-4337: Ian Beer of Google Project Zero CVE-2018-4340: Mohamed Ghannam (@_simo36) CVE-2018-4344: The UK's National Cyber Security Centre (NCSC) CVE-2018-4425: cc working with Trend Micro's Zero Day Initiative, Juwei Lin (@panicaII) of Trend Micro working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    LibreSSL Impact: Multiple issues in libressl were addressed in this update Description: Multiple issues were addressed by updating to libressl version 2.6.4. CVE-2015-3194 CVE-2015-5333 CVE-2015-5334 CVE-2016-702 Entry added October 30, 2018

    Login Window Impact: A local user may be able to cause a denial of service Description: A validation issue was addressed with improved logic. CVE-2018-4348: Ken Gannon of MWR InfoSecurity and Christian Demko of MWR InfoSecurity Entry added October 30, 2018

    mDNSOffloadUserClient Impact: An application may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4326: an anonymous researcher working with Trend Micro's Zero Day Initiative, Zhuo Liang of Qihoo 360 Nirvan Team Entry added October 30, 2018

    MediaRemote Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: An access issue was addressed with additional sandbox restrictions. This ensures that older data read from recently-written-to addresses cannot be read via a speculative side-channel. CVE-2018-3639: Jann Horn (@tehjh) of Google Project Zero (GPZ), Ken Johnson of the Microsoft Security Response Center (MSRC) Entry added October 30, 2018

    Security Impact: A local user may be able to cause a denial of service Description: This issue was addressed with improved checks. CVE-2018-4395: Patrick Wardle of Digita Security Entry added October 30, 2018

    Security Impact: An attacker may be able to exploit weaknesses in the RC4 cryptographic algorithm Description: This issue was addressed by removing RC4. CVE-2016-1777: Pepi Zawodsky

    Spotlight Impact: An application may be able to execute arbitrary code with system privileges Description: A memory corruption issue was addressed with improved memory handling. CVE-2018-4393: Lufeng Li Entry added October 30, 2018

    Symptom Framework Impact: An application may be able to read restricted memory Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2018-4203: Bruno Keith (@bkth_) working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    Text Impact: Processing a maliciously crafted text file may lead to a denial of service Description: A denial of service issue was addressed with improved validation. CVE-2018-4304: jianan.huang (@Sevck) Entry added October 30, 2018

    Wi-Fi Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization. CVE-2018-4338: Lee @ SECLAB, Yonsei University working with Trend Micro's Zero Day Initiative Entry added October 30, 2018

    Additional recognition

    Accessibility Framework We would like to acknowledge Ryan Govostes for their assistance.

    Core Data We would like to acknowledge Andreas Kurtz (@aykay) of NESO Security Labs GmbH for their assistance.

    CoreDAV We would like to acknowledge an anonymous researcher for their assistance.

    CoreGraphics We would like to acknowledge Nitin Arya of Roblox Corporation for their assistance.

    CoreSymbolication We would like to acknowledge Brandon Azad for their assistance.

    IOUSBHostFamily We would like to acknowledge an anonymous researcher for their assistance.

    Kernel We would like to acknowledge Brandon Azad for their assistance.

    Mail We would like to acknowledge Alessandro Avagliano of Rocket Internet SE, John Whitehead of The New York Times, Kelvin Delbarre of Omicron Software Systems, and Zbyszek A>>A3Akiewski for their assistance.

    Quick Look We would like to acknowledge Wojciech ReguAa (@_r3ggi) of SecuRing and Patrick Wardle of Digita Security and lokihardt of Google Project Zero for their assistance.

    Security We would like to acknowledge Christoph Sinai, Daniel Dudek (@dannysapples) of The Irish Times and Filip KlubiAka (@lemoncloak) of ADAPT Centre, Dublin Institute of Technology, Istvan Csanady of Shapr3D, Omar Barkawi of ITG Software, Inc., Phil Caleno, Wilson Ding, and an anonymous researcher for their assistance.

    SQLite We would like to acknowledge Andreas Kurtz (@aykay) of NESO Security Labs GmbH for their assistance.

    Terminal We would like to acknowledge an anonymous researcher for their assistance.

    WindowServer We would like to acknowledge Patrick Wardle of Digita Security for their assistance.

    Installation note:

    macOS Mojave 10.14 may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/

    Information will also be posted to the Apple Security Updates web site: https://support.apple.com/kb/HT201222

    This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE-----

    iQJdBAEBCABHFiEEDNXJVNCJJEAVmJdZeC9tht7TK3EFAlvYkgYpHHByb2R1Y3Qt c2VjdXJpdHktbm9yZXBseUBsaXN0cy5hcHBsZS5jb20ACgkQeC9tht7TK3GrtxAA iVBcAdusz88zFzkT05EIxb9nSp4CGOlhKlChK4N7Db17o2fNT0hNpQixEAC0wC/A zqIzsXEzZlPobI4OnwiEVs7lVBsvCW+IarrRZ8pgSllKs1VlbNfOO3z9vB5BqJMr d9PjPvtHyG3jZmWqQPIjvJb3l3ZjHAt+HAvTItNMkhIUjqV80JI8wP3erzIf3tAt VoLIw5iL5w4HAYcWsn9DYcecXZdv39MnKL5UGzMX3bkee2U7kGYtgskU+mdPa1Wl WzquIPlLeKL2KNSXEfbkPtcKM/fvkURsNzEDvg+PBQLdI3JeR1bOeN24aiTEtiEL TecGm/kKMMJWmDdhPhFvZVD+SIdZd4LgbTawR1UE1JJg7jnEZKCvZ45mXd2eBwn/ rpEKCLBsgA59GILs3ZjZSIWskRJPzZrt463AKcN2wukkTUUkY1rhRVdOf6LZMs9Z w9iJOua3vt+HzCCxTEaH53WUeM6fn/Yeq+DGIS5Fk0G09pU7tsyJVwj3o1nJn0dl e2mcrXBJeSmi6bvvkJX45y/Y8E8Qr+ovS4uN8wG6DOWcCBQkDkugabng8vNh8GST 1wNnV9JY/CmYbU0ZIwKbbSDkcQLQuIl7kKaZMHnU74EytcKscUqqx1VqINz1tssu 1wZZGLtg3VubrZOsnUZzumD+0nI8c6QAnQK3P2PSZ0k= =i9YR -----END PGP SIGNATURE-----

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "xeon e5 2650l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4610_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1240l v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4627_v4"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4660_v3"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "xeon e5 2430l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1240 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8860_v3"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3736g"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8893_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1225 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4860_v2"
          },
          {
            "_id": null,
            "model": "core i7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "45nm"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3775"
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1809"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86130t"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3850"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86126t"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1545m_v5"
          },
          {
            "_id": null,
            "model": "xeon e5 2637",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4807"
          },
          {
            "_id": null,
            "model": "cortex-a",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arm",
            "version": "15"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3480"
          },
          {
            "_id": null,
            "model": "simatic ipc827d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "19.02.11"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3745"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3580"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3480"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8870_v3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5504"
          },
          {
            "_id": null,
            "model": "xeon e3 1278l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4830"
          },
          {
            "_id": null,
            "model": "simatic ipc427e",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "21.01.09"
          },
          {
            "_id": null,
            "model": "windows 7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8880l_v2"
          },
          {
            "_id": null,
            "model": "jetson tx2",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nvidia",
            "version": "r28.3"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8160"
          },
          {
            "_id": null,
            "model": "xeon e3 1265l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2430 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1280 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4109t"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4667_v3"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8860_v4"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8891_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 2603 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "cortex-a",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arm",
            "version": "57"
          },
          {
            "_id": null,
            "model": "xeon e5 2620 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5507"
          },
          {
            "_id": null,
            "model": "xeon e3 1281 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2660"
          },
          {
            "_id": null,
            "model": "xeon e5 2450l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8893_v2"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "17.10"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2699_v3"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4820"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3735d"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8867l"
          },
          {
            "_id": null,
            "model": "xeon e5 2630 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server 2012",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8180"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2650l_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1225 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2420",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2690_v2"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "xeon e5 2648l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4850_v3"
          },
          {
            "_id": null,
            "model": "celeron j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "j3455"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "w5580"
          },
          {
            "_id": null,
            "model": "mivoice border gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86134m"
          },
          {
            "_id": null,
            "model": "surface",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "mivoic mx-one",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2438l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2480"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86144"
          },
          {
            "_id": null,
            "model": "xeon e5 2470 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom x5-e3930",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic ipc547e",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "r1.30.0"
          },
          {
            "_id": null,
            "model": "windows server 2016",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1803"
          },
          {
            "_id": null,
            "model": "xeon e5 2407 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2450 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2609 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "windows server 2008",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "sp2"
          },
          {
            "_id": null,
            "model": "xeon e5 2609 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4650_v3"
          },
          {
            "_id": null,
            "model": "simatic ipc647c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.01.14"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3808"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2690_v3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l5508_"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1515m_v5"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86126"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86132"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4640"
          },
          {
            "_id": null,
            "model": "xeon e3 1245",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2418l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2643 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86142m"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4620"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2660_v2"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1535m_v5"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2687w_v2"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85120"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "3600"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86134"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85120t"
          },
          {
            "_id": null,
            "model": "pentium silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "n5000"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3785"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x5550"
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4114"
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3827"
          },
          {
            "_id": null,
            "model": "simatic ipc827c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.02.15"
          },
          {
            "_id": null,
            "model": "xeon e5 1428l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2670_v3"
          },
          {
            "_id": null,
            "model": "xeon e5 2430",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8870_v2"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4890_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 2428l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2640 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2667"
          },
          {
            "_id": null,
            "model": "xeon e5 2618l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2643 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4850"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4603_v2"
          },
          {
            "_id": null,
            "model": "celeron j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "j4105"
          },
          {
            "_id": null,
            "model": "simatic ipc427d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "17.0x.14"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4880_v2"
          },
          {
            "_id": null,
            "model": "itc1500 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8176f"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1565l_v5"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4648_v3"
          },
          {
            "_id": null,
            "model": "xeon e5 1660 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "ruggedcom ape",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8857_v2"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8837"
          },
          {
            "_id": null,
            "model": "xeon e5 2620",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1505l v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4628l_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2618l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85115"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "11"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4603"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2665"
          },
          {
            "_id": null,
            "model": "core i5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "32nm"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2687w_v4"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8880_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 2630 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4830_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1265l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 1650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3538"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4650_v2"
          },
          {
            "_id": null,
            "model": "pentium silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "j5005"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3570"
          },
          {
            "_id": null,
            "model": "xeon e5 1680 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3560"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2850"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "sonicosv",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8890_v2"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5520"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8160f"
          },
          {
            "_id": null,
            "model": "email security",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8891_v4"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4624l_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 1650 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1268l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4650_v4"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "9"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2520"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85119t"
          },
          {
            "_id": null,
            "model": "xeon e5 2608l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "itc2200",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2803"
          },
          {
            "_id": null,
            "model": "xeon e5 2643 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4607_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 1620 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3308"
          },
          {
            "_id": null,
            "model": "secure mobile access",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2637 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2630l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3770"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4607"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3955"
          },
          {
            "_id": null,
            "model": "xeon e3 1270 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3530"
          },
          {
            "_id": null,
            "model": "xeon e5 2630l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2460"
          },
          {
            "_id": null,
            "model": "xeon e3 1220 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1230 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86146"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5506"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8158"
          },
          {
            "_id": null,
            "model": "simatic ipc677d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "19.02.11"
          },
          {
            "_id": null,
            "model": "cloud global management system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4820_v2"
          },
          {
            "_id": null,
            "model": "core i7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "32nm"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1585l_v5"
          },
          {
            "_id": null,
            "model": "xeon e5 2408l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4116t"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3758"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "xeon e5 1650 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "surface pro with lte advanced",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1807"
          },
          {
            "_id": null,
            "model": "windows server 2016",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic ipc477e",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "21.01.09"
          },
          {
            "_id": null,
            "model": "xeon e3 1275 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2680_v2"
          },
          {
            "_id": null,
            "model": "xeon e3 1240 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4655_v4"
          },
          {
            "_id": null,
            "model": "simatic ipc847c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.01.14"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x5560"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2667_v2"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3845"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c2308"
          },
          {
            "_id": null,
            "model": "xeon e3 1280 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "18.04"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4650"
          },
          {
            "_id": null,
            "model": "xeon e5 2637 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4627_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2667_v4"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2820"
          },
          {
            "_id": null,
            "model": "mivoice business",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4870_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 2630l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8168"
          },
          {
            "_id": null,
            "model": "xeon e3 1241 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86142"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8160m"
          },
          {
            "_id": null,
            "model": "xeon e3 1230l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1260l v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "virtualization manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4655_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1225",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1709"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4830_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1271 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1260l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "itc2200 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "xeon e3 1245 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l5506"
          },
          {
            "_id": null,
            "model": "xeon e5 1650 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2760"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l3406"
          },
          {
            "_id": null,
            "model": "xeon e3 1245 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1275 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1230",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "jetson tx1",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "nvidia",
            "version": "r28.3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l3403"
          },
          {
            "_id": null,
            "model": "xeon e5 2623 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4620_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2695_v2"
          },
          {
            "_id": null,
            "model": "xeon e3 1240 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2658"
          },
          {
            "_id": null,
            "model": "xeon e3 1285 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3440"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2687w_v3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3460"
          },
          {
            "_id": null,
            "model": "xeon e5 2628l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2698_v3"
          },
          {
            "_id": null,
            "model": "xeon e5 2630 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86128"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86148f"
          },
          {
            "_id": null,
            "model": "local service management system",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "pentium",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "n4000"
          },
          {
            "_id": null,
            "model": "core m",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "45nm"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3590"
          },
          {
            "_id": null,
            "model": "xeon e5 1428l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "micloud management portal",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": "*"
          },
          {
            "_id": null,
            "model": "surface pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1796"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8890_v3"
          },
          {
            "_id": null,
            "model": "xeon e5 2448l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2428l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3745d"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "struxureware data center expert",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "schneider electric",
            "version": "7.6.0"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2560"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2860"
          },
          {
            "_id": null,
            "model": "xeon e5 2637 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2697_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1285l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3958"
          },
          {
            "_id": null,
            "model": "simatic ipc547g",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "r1.23.0"
          },
          {
            "_id": null,
            "model": "xeon e5 2418l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3805"
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3825"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3770d"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3508"
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1607"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2850_v2"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8153"
          },
          {
            "_id": null,
            "model": "xeon e5 2603 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.6"
          },
          {
            "_id": null,
            "model": "micollab",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8170"
          },
          {
            "_id": null,
            "model": "xeon e3 1286l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 1660 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "pentium",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "n4100"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "5115"
          },
          {
            "_id": null,
            "model": "xeon e3 12201 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1280",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2640 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2643",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2620 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server 2008",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "r2"
          },
          {
            "_id": null,
            "model": "virtualization",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8893_v4"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5503"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4830_v2"
          },
          {
            "_id": null,
            "model": "xeon e3 1285 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "celeron j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "j4005"
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3826"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2658_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1225 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1703"
          },
          {
            "_id": null,
            "model": "xeon e3 1240l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3460"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2670"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2695_v3"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4809_v2"
          },
          {
            "_id": null,
            "model": "atom x7-e3950",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2430l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2667_v3"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "12"
          },
          {
            "_id": null,
            "model": "xeon e5 2448l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2407",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4820_v3"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4640_v2"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3430"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8867_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1270 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1268l v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86138f"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4620_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1501m v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2618l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2670_v2"
          },
          {
            "_id": null,
            "model": "xeon e3 1220 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3470"
          },
          {
            "_id": null,
            "model": "xeon e5 2603 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic ipc477e pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "21.01.09"
          },
          {
            "_id": null,
            "model": "xeon e3 1245 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2450l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4860"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8160t"
          },
          {
            "_id": null,
            "model": "xeon e3 1225 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 1620 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4112"
          },
          {
            "_id": null,
            "model": "xeon e3 1276 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1558l_v5"
          },
          {
            "_id": null,
            "model": "xeon e3 1505m v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4108"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.6"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "12.04"
          },
          {
            "_id": null,
            "model": "web application firewall",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650l",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2699r_v4"
          },
          {
            "_id": null,
            "model": "atom e",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e3815"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2698_v4"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l5518_"
          },
          {
            "_id": null,
            "model": "xeon e5 1620",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "w5590"
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4610"
          },
          {
            "_id": null,
            "model": "xeon e3 1220l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1230 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2660_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1235l v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1578l_v5"
          },
          {
            "_id": null,
            "model": "xeon e3 1226 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1535m_v6"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3338"
          },
          {
            "_id": null,
            "model": "xeon e5 1428l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3740d"
          },
          {
            "_id": null,
            "model": "core i3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "45nm"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2687w"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2697_v4"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "125c_"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86142f"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86154"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8870_v4"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8164"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2658a_v3"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2690"
          },
          {
            "_id": null,
            "model": "xeon e5 2648l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2603",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1275 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4640_v3"
          },
          {
            "_id": null,
            "model": "sinema remote connect",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86140"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.7"
          },
          {
            "_id": null,
            "model": "xeon e5 2628l v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4116"
          },
          {
            "_id": null,
            "model": "xeon e3 1285 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4669_v4"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86138"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "8"
          },
          {
            "_id": null,
            "model": "xeon e3 12201",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2660_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2418l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic field pg m5",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "22.01.06"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2680_v3"
          },
          {
            "_id": null,
            "model": "simatic ipc677c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.02.15"
          },
          {
            "_id": null,
            "model": "surface pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "3"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3750"
          },
          {
            "_id": null,
            "model": "xeon e5 1630 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "core i5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "45nm"
          },
          {
            "_id": null,
            "model": "xeon e5 2450",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86136"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2699a_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2403",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "13"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e6550"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.2"
          },
          {
            "_id": null,
            "model": "windows server 2016",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1709"
          },
          {
            "_id": null,
            "model": "xeon e3 1270 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1585_v5"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3735g"
          },
          {
            "_id": null,
            "model": "xeon e5 2403 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1501l v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2440",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4610_v2"
          },
          {
            "_id": null,
            "model": "pentium j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "j4205"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2580"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3735e"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8830"
          },
          {
            "_id": null,
            "model": "surface book",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1220_"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3558"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8880_v4"
          },
          {
            "_id": null,
            "model": "surface studio",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3950"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2697a_v4"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2870_v2"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4870"
          },
          {
            "_id": null,
            "model": "simatic ipc847d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "19.01.14"
          },
          {
            "_id": null,
            "model": "xeon e3 1245 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2658_v3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "7500"
          },
          {
            "_id": null,
            "model": "xeon e5 1630 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux server tus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3736f"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4667_v4"
          },
          {
            "_id": null,
            "model": "itc1900 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "xeon e5 2470",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "10"
          },
          {
            "_id": null,
            "model": "surface pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "4"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4809_v3"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "14.04"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4640_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2648l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "sinumerik pcu 50.5",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.02.15"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2683_v3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l5530"
          },
          {
            "_id": null,
            "model": "xeon e3 1220 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e-1105c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "sinumerik 840 d sl",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1258l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4620_v4"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4669_v3"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3740"
          },
          {
            "_id": null,
            "model": "simatic itp1000",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "23.01.04"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3858"
          },
          {
            "_id": null,
            "model": "xeon e3 1235",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4650l"
          },
          {
            "_id": null,
            "model": "xeon e3 1270 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simotion p320-4e",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "17.0x.14"
          },
          {
            "_id": null,
            "model": "xeon e5 2640 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1575m_v5"
          },
          {
            "_id": null,
            "model": "xeon e3 1220 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8890_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2609 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x3450"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8860"
          },
          {
            "_id": null,
            "model": "simatic ipc477c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l3426"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86152"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "5.9"
          },
          {
            "_id": null,
            "model": "xeon e5 1620 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2630l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1275_"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5540"
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4110"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2890_v2"
          },
          {
            "_id": null,
            "model": "xeon e5 1660 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2699_v4"
          },
          {
            "_id": null,
            "model": "open integration gateway",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1240 v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic ipc477d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "17.0x.14"
          },
          {
            "_id": null,
            "model": "simatic et 200 sp",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8891_v3"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.4"
          },
          {
            "_id": null,
            "model": "xeon e5 2420 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86130"
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "1803"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8850_v2"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8176m"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86140m"
          },
          {
            "_id": null,
            "model": "xeon e3 1265l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3775d"
          },
          {
            "_id": null,
            "model": "xeon e3 1246 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "virtualization manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "local service management system",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "13.3"
          },
          {
            "_id": null,
            "model": "xeon e3 1275l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86148"
          },
          {
            "_id": null,
            "model": "xeon e5 2623 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4809_v4"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4657l_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2690_v4"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z2420"
          },
          {
            "_id": null,
            "model": "openstack",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8880l_v3"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8850"
          },
          {
            "_id": null,
            "model": "xeon e3 1275 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom x5-e3940",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1285l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8867_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1280 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86138t"
          },
          {
            "_id": null,
            "model": "simatic ipc427c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "core i3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "32nm"
          },
          {
            "_id": null,
            "model": "simatic ipc347e",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e6510"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3830"
          },
          {
            "_id": null,
            "model": "xeon e5 1660",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2428l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "sinumerik tcu 30.3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "mivoice connect",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "windows 8.1",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2630",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic ipc627d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "19.02.11"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8880_v3"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4850_v4"
          },
          {
            "_id": null,
            "model": "ubuntu linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "canonical",
            "version": "16.04"
          },
          {
            "_id": null,
            "model": "windows server 2012",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "r2"
          },
          {
            "_id": null,
            "model": "xeon e3 1230 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "simatic s7-1500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2695_v4"
          },
          {
            "_id": null,
            "model": "xeon e5 2440 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4850_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2680_v4"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mivoice 5000",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "mitel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "1505m_v6"
          },
          {
            "_id": null,
            "model": "itc1500",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "xeon e5 2648l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85122"
          },
          {
            "_id": null,
            "model": "atom c",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "c3708"
          },
          {
            "_id": null,
            "model": "xeon e3 1290 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 1680 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1125c v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8170m"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4820_v4"
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8156"
          },
          {
            "_id": null,
            "model": "xeon e3 1231 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon platinum",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8176"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2830"
          },
          {
            "_id": null,
            "model": "xeon e3 1505l v6",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2628l v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8870"
          },
          {
            "_id": null,
            "model": "cortex-a",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "arm",
            "version": "72"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "8894_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1230 v5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2609",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2650 v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2870"
          },
          {
            "_id": null,
            "model": "simatic ipc3000 smart",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2680"
          },
          {
            "_id": null,
            "model": "xeon e5 2640",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5502"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4617"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e6540"
          },
          {
            "_id": null,
            "model": "simatic ipc647d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "19.01.14"
          },
          {
            "_id": null,
            "model": "xeon e3 1280 v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1270",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "pentium",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "n4200"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "e5530"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4610_v3"
          },
          {
            "_id": null,
            "model": "xeon e3 1105c v2",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon silver",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4114t"
          },
          {
            "_id": null,
            "model": "simatic field pg m4",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "18.01.09"
          },
          {
            "_id": null,
            "model": "itc1900",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "simatic ipc627c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "15.02.15"
          },
          {
            "_id": null,
            "model": "core m",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "32nm"
          },
          {
            "_id": null,
            "model": "global management system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1286 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e3 1290",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "celeron n",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "n3450"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2658_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4660_v4"
          },
          {
            "_id": null,
            "model": "enterprise linux server aus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "x5570"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86150"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "l5520"
          },
          {
            "_id": null,
            "model": "mrg realtime",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "xeon e7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2880_v2"
          },
          {
            "_id": null,
            "model": "windows 10",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2697_v2"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "4627_v3"
          },
          {
            "_id": null,
            "model": "enterprise linux workstation",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "xeon e3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "5600"
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3795"
          },
          {
            "_id": null,
            "model": "enterprise linux eus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "redhat",
            "version": "6.7"
          },
          {
            "_id": null,
            "model": "xeon e5",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "2683_v4"
          },
          {
            "_id": null,
            "model": "xeon e3 1240",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xeon e5 2620 v3",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "surface book",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "microsoft",
            "version": "2"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86130f"
          },
          {
            "_id": null,
            "model": "xeon e5 2608l v4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "atom z",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "z3735f"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "86126f"
          },
          {
            "_id": null,
            "model": "xeon gold",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": "85118"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "amd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "arm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dell emc",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hitachi",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qualcomm incorporated",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "synology",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "vmware",
            "version": null
          },
          {
            "_id": null,
            "model": "cortex a57",
            "scope": null,
            "trust": 0.6,
            "vendor": "arm",
            "version": null
          },
          {
            "_id": null,
            "model": "5th generation core processors",
            "scope": null,
            "trust": 0.6,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "cortex a72",
            "scope": null,
            "trust": 0.6,
            "vendor": "arm",
            "version": null
          },
          {
            "_id": null,
            "model": "6th generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "5th generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "4th generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "3rd generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "2nd generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "8th generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "7th generation core processors",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "atom processor a series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "atom processor c series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "atom processor e series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "atom processor t series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "atom processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "x0"
          },
          {
            "_id": null,
            "model": "atom processor z series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "core x-series processor family for intel platforms",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "x990"
          },
          {
            "_id": null,
            "model": "celeron processor j series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "celeron processor n series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "core m processor family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "core x-series processor family for intel platforms",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "x2990"
          },
          {
            "_id": null,
            "model": "pentium processor n series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "pentium processor silver series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "34000"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "36000"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "55000"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "56000"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "75000"
          },
          {
            "_id": null,
            "model": "xeon processor series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "65000"
          },
          {
            "_id": null,
            "model": "pentium processor j series",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v20"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v40"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v50"
          },
          {
            "_id": null,
            "model": "xeon processor e3 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v60"
          },
          {
            "_id": null,
            "model": "xeon processor e5 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "xeon processor e5 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v20"
          },
          {
            "_id": null,
            "model": "xeon processor e5 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "xeon processor e5 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v40"
          },
          {
            "_id": null,
            "model": "xeon processor e7 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "xeon processor e7 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v20"
          },
          {
            "_id": null,
            "model": "xeon processor e7 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v3"
          },
          {
            "_id": null,
            "model": "xeon processor e7 family",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "intel",
            "version": "v40"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#180049"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "147873"
          },
          {
            "db": "PACKETSTORM",
            "id": "148318"
          },
          {
            "db": "PACKETSTORM",
            "id": "147760"
          },
          {
            "db": "PACKETSTORM",
            "id": "147719"
          },
          {
            "db": "PACKETSTORM",
            "id": "147750"
          },
          {
            "db": "PACKETSTORM",
            "id": "152767"
          },
          {
            "db": "PACKETSTORM",
            "id": "150073"
          },
          {
            "db": "PACKETSTORM",
            "id": "148699"
          },
          {
            "db": "PACKETSTORM",
            "id": "147740"
          },
          {
            "db": "PACKETSTORM",
            "id": "147770"
          }
        ],
        "trust": 1.0
      },
      "cve": "CVE-2018-3639",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 2.1,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "CVE-2018-3639",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "LOW",
                "trust": 1.0,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "CNVD-2018-13391",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.6,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 4.9,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "VHN-133670",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:L/AC:L/AU:N/C:C/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2018-3639",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2018-3639",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2018-13391",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-133670",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4. CPU hardware utilizing speculative execution may be vulnerable to cache timing side-channel analysis. Two vulnerabilities are identified, known as \"Variant 3a\" and \"Variant 4\". CPUhardware is firmware that runs in the central processor for managing and controlling the CPU. Multiple CPUHardware information disclosure vulnerabilities. The vulnerability is caused by a race condition in the CPU cache processing. Local attackers can exploit vulnerabilities to obtain sensitive information through side channel analysis. AMD, ARM, and Intel CPUs are all CPU (central processing unit) products from different manufacturers. AMD, ARM, and Intel CPUs have security vulnerabilities. Relevant releases/architectures:\n\nRHEL 7-based RHEV-H ELS - noarch\nRHEV Hypervisor for RHEL-6 ELS - noarch\n\n3. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. 7.4) - ppc64, ppc64le, s390x, x86_64\n\n3. (CVE-2018-3639)\n\nNote: This is the libvirt side of the CVE-2018-3639 mitigation that\nincludes support for guests running on hosts with AMD CPUs. \n\nBug Fix(es):\n\n* The \"virsh capabilities\" command previously displayed an inaccurate\nnumber of 4 KiB memory pages on systems with very large amounts of memory. \nThis update optimizes the memory diagnostic mechanism to ensure memory page\nnumbers are displayed correctly on such systems. (BZ#1582416)\n\n* After starting a large amount of guest virtual machines in a single\nsession, the libvirtd service in some cases became unable to start any\nother guests until it was restarted. This update ensures that libvirtd\nproperly frees memory used for D-Bus replies, which prevents the described\nproblem from occurring. (BZ#1588390)\n\n4. \n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 3.20180703.2~deb9u1. \n\nWe recommend that you upgrade your intel-microcode packages. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Important: libvirt security update\nAdvisory ID:       RHSA-2018:1669-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2018:1669\nIssue date:        2018-05-21\nCVE Names:         CVE-2018-3639 \n=====================================================================\n\n1. Summary:\n\nAn update for libvirt is now available for Red Hat Enterprise Linux 6. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Desktop (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Desktop Optional (v. 6) - i386, x86_64\nRed Hat Enterprise Linux HPC Node (v. 6) - x86_64\nRed Hat Enterprise Linux HPC Node Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Server (v. 6) - i386, ppc64, s390x, x86_64\nRed Hat Enterprise Linux Server Optional (v. 6) - x86_64\nRed Hat Enterprise Linux Workstation (v. 6) - i386, x86_64\nRed Hat Enterprise Linux Workstation Optional (v. 6) - x86_64\n\n3. Description:\n\nThe libvirt library contains a C API for managing and interacting with the\nvirtualization capabilities of Linux and other operating systems. In\naddition, libvirt provides tools for remote management of virtualized\nsystems. \n\nSecurity Fix(es):\n\n* An industry-wide issue was found in the way many modern microprocessor\ndesigns have implemented speculative execution of Load \u0026 Store instructions\n(a commonly used performance optimization). It relies on the presence of a\nprecisely-defined instruction sequence in the privileged code as well as\nthe fact that memory read from address to which a recent memory write has\noccurred may see an older value and subsequently cause an update into the\nmicroprocessor\u0027s data cache even for speculatively executed instructions\nthat never actually commit (retire). As a result, an unprivileged attacker\ncould use this flaw to read privileged memory by conducting targeted cache\nside-channel attacks. (CVE-2018-3639)\n\nNote: This is the libvirt side of the CVE-2018-3639 mitigation. \n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nAfter installing the updated packages, libvirtd will be restarted\nautomatically. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1566890 - CVE-2018-3639 hw: cpu: speculative store bypass\n\n6. Package List:\n\nRed Hat Enterprise Linux Desktop (v. 6):\n\nSource:\nlibvirt-0.10.2-62.el6_9.2.src.rpm\n\ni386:\nlibvirt-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-python-0.10.2-62.el6_9.2.i686.rpm\n\nx86_64:\nlibvirt-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-python-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux Desktop Optional (v. 6):\n\ni386:\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\n\nx86_64:\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node (v. 6):\n\nSource:\nlibvirt-0.10.2-62.el6_9.2.src.rpm\n\nx86_64:\nlibvirt-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-python-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux HPC Node Optional (v. 6):\n\nx86_64:\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server (v. 6):\n\nSource:\nlibvirt-0.10.2-62.el6_9.2.src.rpm\n\ni386:\nlibvirt-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-python-0.10.2-62.el6_9.2.i686.rpm\n\nppc64:\nlibvirt-0.10.2-62.el6_9.2.ppc64.rpm\nlibvirt-client-0.10.2-62.el6_9.2.ppc.rpm\nlibvirt-client-0.10.2-62.el6_9.2.ppc64.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.ppc.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.ppc64.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.ppc.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.ppc64.rpm\nlibvirt-python-0.10.2-62.el6_9.2.ppc64.rpm\n\ns390x:\nlibvirt-0.10.2-62.el6_9.2.s390x.rpm\nlibvirt-client-0.10.2-62.el6_9.2.s390.rpm\nlibvirt-client-0.10.2-62.el6_9.2.s390x.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.s390.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.s390x.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.s390.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.s390x.rpm\nlibvirt-python-0.10.2-62.el6_9.2.s390x.rpm\n\nx86_64:\nlibvirt-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-python-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional (v. 6):\n\nx86_64:\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation (v. 6):\n\nSource:\nlibvirt-0.10.2-62.el6_9.2.src.rpm\n\ni386:\nlibvirt-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-python-0.10.2-62.el6_9.2.i686.rpm\n\nx86_64:\nlibvirt-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-client-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-client-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.i686.rpm\nlibvirt-devel-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-python-0.10.2-62.el6_9.2.x86_64.rpm\n\nRed Hat Enterprise Linux Workstation Optional (v. 6):\n\nx86_64:\nlibvirt-debuginfo-0.10.2-62.el6_9.2.x86_64.rpm\nlibvirt-lock-sanlock-0.10.2-62.el6_9.2.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2018-3639\nhttps://access.redhat.com/security/updates/classification/#important\nhttps://access.redhat.com/security/vulnerabilities/ssbd\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2018 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\ndwPZvwyusgo=\n=I0hs\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://www.redhat.com/mailman/listinfo/rhsa-announce\n. ==========================================================================\nUbuntu Security Notice USN-3655-1\nMay 22, 2018\n\nlinux vulnerabilities\n==========================================================================\n\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 14.04 LTS\n\nSummary:\n\nSeveral security issues were addressed in the Linux kernel. (CVE-2018-3639)\n\nJan H. Schonherr discovered that the Xen subsystem did not properly handle\nblock IO merges correctly in some situations. An attacker in a guest vm\ncould use this to cause a denial of service (host crash) or possibly gain\nadministrative privileges in the host. (CVE-2017-12134)\n\nIt was discovered that the Bluetooth HIP Protocol implementation in the\nLinux kernel did not properly validate HID connection setup information. An\nattacker could use this to cause a denial of service (system crash) or\npossibly execute arbitrary code. (CVE-2017-13220)\n\nIt was discovered that a buffer overread vulnerability existed in the\nkeyring subsystem of the Linux kernel. (CVE-2017-13305)\n\nIt was discovered that the netlink subsystem in the Linux kernel did not\nproperly restrict observations of netlink messages to the appropriate net\nnamespace. (CVE-2017-17449)\n\nIt was discovered that a race condition existed in the i8042 serial device\ndriver implementation in the Linux kernel. A physically proximate attacker\ncould use this to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2017-18079)\n\nIt was discovered that a race condition existed in the Device Mapper\ncomponent of the Linux kernel. A local attacker could use this to cause a\ndenial of service (system crash). (CVE-2017-18203)\n\nIt was discovered that a race condition existed in the OCFS2 file system\nimplementation in the Linux kernel. A local attacker could use this to\ncause a denial of service (kernel deadlock). (CVE-2017-18204)\n\nIt was discovered that an infinite loop could occur in the madvise(2)\nimplementation in the Linux kernel in certain circumstances. A local\nattacker could use this to cause a denial of service (system hang). \n(CVE-2017-18208)\n\nKefeng Wang discovered that a race condition existed in the memory locking\nimplementation in the Linux kernel. A local attacker could use this to\ncause a denial of service. (CVE-2017-18221)\n\nSilvio Cesare discovered a buffer overwrite existed in the NCPFS\nimplementation in the Linux kernel. A remote attacker controlling a\nmalicious NCPFS server could use this to cause a denial of service (system\ncrash) or possibly execute arbitrary code. (CVE-2018-8822)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 14.04 LTS:\n  linux-image-3.13.0-149-generic  3.13.0-149.199\n  linux-image-3.13.0-149-generic-lpae  3.13.0-149.199\n  linux-image-3.13.0-149-lowlatency  3.13.0-149.199\n  linux-image-3.13.0-149-powerpc-e500  3.13.0-149.199\n  linux-image-3.13.0-149-powerpc-e500mc  3.13.0-149.199\n  linux-image-3.13.0-149-powerpc-smp  3.13.0-149.199\n  linux-image-3.13.0-149-powerpc64-emb  3.13.0-149.199\n  linux-image-3.13.0-149-powerpc64-smp  3.13.0-149.199\n  linux-image-generic             3.13.0.149.159\n  linux-image-generic-lpae        3.13.0.149.159\n  linux-image-lowlatency          3.13.0.149.159\n  linux-image-powerpc-e500        3.13.0.149.159\n  linux-image-powerpc-e500mc      3.13.0.149.159\n  linux-image-powerpc-smp         3.13.0.149.159\n  linux-image-powerpc64-emb       3.13.0.149.159\n  linux-image-powerpc64-smp       3.13.0.149.159\n\nPlease note that fully mitigating CVE-2018-3639 (Spectre Variant 4)\nmay require corresponding processor microcode/firmware updates or,\nin virtual environments, hypervisor updates. On i386 and amd64\narchitectures, the SSBD feature is required to enable the kernel\nmitigations. BIOS vendors will be making updates available for Intel\nprocessors that implement SSBD and Ubuntu is working with Intel to\nprovide future microcode updates. Ubuntu users with a processor from\na different vendor should contact the vendor to identify necessary\nfirmware updates. Ubuntu provided corresponding QEMU updates for users\nof self-hosted virtual environments in USN 3651-1. Ubuntu users in\ncloud environments should contact the cloud provider to confirm that\nthe hypervisor has been updated to expose the new CPU features to\nvirtual machines. 7) - noarch, x86_64\n\n3. Description:\n\nThe kernel-rt packages provide the Real Time Linux Kernel, which enables\nfine-tuning for systems with extremely high determinism requirements. Once\nall virtual machines have shut down, start them again for this update to\ntake effect. Relevant releases/architectures:\n\nRHV-M 4.3 - noarch\n\n3. \nIt includes the configuration of the Red Hat Support plugin, copying\ndownstream-only artifacts to the ISO domain, and links to the knowledgebase\nand other support material. There are three primary variants of the\nissue which differ in the way the speculative execution can be exploited. \nVariant CVE-2017-5754 relies on the fact that, on impacted microprocessors,\nduring speculative execution of instruction permission faults, exception\ngeneration triggered by a faulting access is suppressed until the\nretirement of the whole instruction block. Note: CVE-2017-5754 affects Intel\nx86-64 microprocessors. AMD x86-64 microprocessors are not affected by this\nissue. (CVE-2017-5754)\n\nBug Fix(es):\n\n* [CVE-2017-5754] Variant3: POWER {qemu-kvm-rhev} Add machine type variants\n(BZ#1559948)\n\n* add POWER 9 to the 4.2 cluster level (BZ#1574494)\n\n4. Description:\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system. (CVE-2018-3639)\n\nNote: This issue is present in hardware and cannot be fully fixed via\nsoftware update. The updated kernel packages provide software side of the\nmitigation for this hardware issue. To be fully functional, up-to-date CPU\nmicrocode applied on the system is required. Please refer to References\nsection for further information about this issue, CPU microcode\nrequirements and the potential performance impact. \n\nIn this update mitigations for x86-64 architecture are provided. \n\nSoftware Description:\n- intel-microcode: Processor microcode for Intel CPUs\n\nDetails:\n\nIt was discovered that memory present in the L1 data cache of an Intel CPU\ncore may be exposed to a malicious process that is executing on the CPU\ncore. This vulnerability is also known as L1 Terminal Fault (L1TF). This vulnerability is also known as Rogue\nSystem Register Read (RSRE). -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\nAPPLE-SA-2018-10-30-9 Additional information for\nAPPLE-SA-2018-9-24-1 macOS Mojave 10.14\n\nmacOS Mojave 10.14 addresses the following:\n\nBluetooth\nAvailable for: iMac (21.5-inch, Late 2012), iMac (27-inch, Late 2012)\n, iMac (21.5-inch, Late 2013), iMac (21.5-inch, Mid 2014), iMac\n(Retina 5K, 27-inch, Late 2014), iMac (21.5-inch, Late 2015),\nMac mini (Mid 2011), Mac mini Server (Mid 2011), Mac mini (Late 2012)\n, Mac mini Server (Late 2012), Mac mini (Late 2014), Mac Pro\n(Late 2013), MacBook Air (11-inch, Mid 2011), MacBook Air\n(13-inch, Mid 2011), MacBook Air (11-inch, Mid 2012), MacBook Air\n(13-inch, Mid 2012), MacBook Air (11-inch, Mid 2013), MacBook Air\n(13-inch, Mid 2013), MacBook Air (11-inch, Early 2015), MacBook Air\n(13-inch, Early 2015), MacBook Pro (13-inch, Mid 2012), MacBook Pro\n(15-inch, Mid 2012), MacBook Pro (Retina, 13-inch, Early 2013),\nMacBook Pro (Retina, 15-inch, Early 2013), MacBook Pro (Retina,\n13-inch, Late 2013), and MacBook Pro (Retina, 15-inch, Late 2013)\nImpact: An attacker in a privileged network position may be able to\nintercept Bluetooth traffic\nDescription: An input validation issue existed in Bluetooth. This\nissue was addressed with improved input validation. \nCVE-2018-5383: Lior Neumann and Eli Biham\n\nThe updates below are available for these Mac models:\nMacBook (Early 2015 and later), MacBook Air (Mid 2012 and later),\nMacBook Pro (Mid 2012 and later), Mac mini (Late 2012 and later),\niMac (Late 2012 and later), iMac Pro (all models), Mac Pro\n(Late 2013, Mid 2010, and Mid 2012 models with recommended\nMetal-capable graphics processor, including MSI Gaming Radeon RX 560\nand Sapphire Radeon PULSE RX 580)\n\nafpserver\nImpact: A remote attacker may be able to attack AFP servers through\nHTTP clients\nDescription: An input validation issue was addressed with improved\ninput validation. \nCVE-2018-4295: Jianjun Chen (@whucjj) from Tsinghua University and UC\nBerkeley\nEntry added October 30, 2018\n\nApp Store\nImpact: A malicious application may be able to determine the Apple ID\nof the owner of the computer\nDescription: A permissions issue existed in the handling of the Apple\nID. This issue was addressed with improved access controls. \nCVE-2018-4324: Sergii Kryvoblotskyi of MacPaw Inc. \n\nAppleGraphicsControl\nImpact: An application may be able to read restricted memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2018-4417: Lee of the Information Security Lab Yonsei University\nworking with Trend Micro\u0027s Zero Day Initiative\nEntry added October 30, 2018\n\nApplication Firewall\nImpact: A sandboxed process may be able to circumvent sandbox\nrestrictions\nDescription: A configuration issue was addressed with additional\nrestrictions. \nCVE-2018-4353: Abhinav Bansal of LinkedIn Inc. \n\nAPR\nImpact: Multiple buffer overflow issues existed in Perl\nDescription: Multiple issues in Perl were addressed with improved\nmemory handling. \nCVE-2017-12613: Craig Young of Tripwire VERT\nCVE-2017-12618: Craig Young of Tripwire VERT\nEntry added October 30, 2018\n\nATS\nImpact: A malicious application may be able to elevate privileges\nDescription: A memory corruption issue was addressed with improved\ninput validation. \nCVE-2018-4411: lilang wu moony Li of Trend Micro working with Trend\nMicro\u0027s Zero Day Initiative\nEntry added October 30, 2018\n\nATS\nImpact: An application may be able to read restricted memory\nDescription: An out-of-bounds read was addressed with improved bounds\nchecking. \nCVE-2018-4308: Mohamed Ghannam (@_simo36)\nEntry added October 30, 2018\n\nAuto Unlock\nImpact: A malicious application may be able to access local users\nAppleIDs\nDescription: A validation issue existed in the entitlement\nverification. This issue was addressed with improved validation of\nthe process entitlement. \nCVE-2018-4321: Min (Spark) Zheng, Xiaolong Bai of Alibaba Inc. \n\nCFNetwork\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4126: Bruno Keith (@bkth_) working with Trend Micro\u0027s Zero\nDay Initiative\nEntry added October 30, 2018\n\nCoreFoundation\nImpact: A malicious application may be able to elevate privileges\nDescription: A memory corruption issue was addressed with improved\ninput validation. \nCVE-2018-4412: The UK\u0027s National Cyber Security Centre (NCSC)\nEntry added October 30, 2018\n\nCoreFoundation\nImpact: An application may be able to gain elevated privileges\nDescription: A memory corruption issue was addressed with improved\ninput validation. \nCVE-2018-4414: The UK\u0027s National Cyber Security Centre (NCSC)\nEntry added October 30, 2018\n\nCoreText\nImpact: Processing a maliciously crafted text file may lead to\narbitrary code execution\nDescription: A use after free issue was addressed with improved\nmemory management. \nCVE-2018-4347: an anonymous researcher\nEntry added October 30, 2018\n\nCrash Reporter\nImpact: An application may be able to read restricted memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2018-4333: Brandon Azad\n\nCUPS\nImpact: In certain configurations, a remote attacker may be able to\nreplace the message content from the print server with arbitrary\ncontent\nDescription: An injection issue was addressed with improved\nvalidation. \nCVE-2018-4153: Michael Hanselmann of hansmi.ch\nEntry added October 30, 2018\n\nCUPS\nImpact: An attacker in a privileged position may be able to perform a\ndenial of service attack\nDescription: A denial of service issue was addressed with improved\nvalidation. \nCVE-2018-4406: Michael Hanselmann of hansmi.ch\nEntry added October 30, 2018\n\nDictionary\nImpact: Parsing a maliciously crafted dictionary file may lead to\ndisclosure of user information\nDescription: A validation issue existed which allowed local file\naccess. This was addressed with input sanitization. \nCVE-2018-4346: Wojciech ReguAa (@_r3ggi) of SecuRing\nEntry added October 30, 2018\n\nGrand Central Dispatch\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4426: Brandon Azad\nEntry added October 30, 2018\n\nHeimdal\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-3646: Baris Kasikci, Daniel Genkin, Ofir Weisse, and Thomas\nF. Wenisch of University of Michigan, Mark Silberstein and Marina\nMinkin of Technion, Raoul Strackx, Jo Van Bulck, and Frank Piessens\nof KU Leuven, Rodrigo Branco, Henrique Kawakami, Ke Sun, and Kekai Hu\nof Intel Corporation, Yuval Yarom of The University of Adelaide\nEntry added October 30, 2018\n\niBooks\nImpact: Parsing a maliciously crafted iBooks file may lead to\ndisclosure of user information\nDescription: A configuration issue was addressed with additional\nrestrictions. \nCVE-2018-4355: evi1m0 of bilibili security team\nEntry added October 30, 2018\n\nIntel Graphics Driver\nImpact: An application may be able to read restricted memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2018-4396: Yu Wang of Didi Research America\nCVE-2018-4418: Yu Wang of Didi Research America\nEntry added October 30, 2018\n\nIntel Graphics Driver\nImpact: An application may be able to read restricted memory\nDescription: A memory initialization issue was addressed with\nimproved memory handling. \nCVE-2018-4351: Appology Team @ Theori working with Trend Micro\u0027s Zero\nDay Initiative\nEntry added October 30, 2018\n\nIntel Graphics Driver\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\ninput validation. \nCVE-2018-4350: Yu Wang of Didi Research America\nEntry added October 30, 2018\n\nIntel Graphics Driver\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4334: Ian Beer of Google Project Zero\nEntry added October 30, 2018\n\nIOHIDFamily\nImpact: A malicious application may be able to execute arbitrary code\nwith kernel privileges\nDescription: A memory corruption issue was addressed with improved\ninput validation\nCVE-2018-4408: Ian Beer of Google Project Zero\nEntry added October 30, 2018\n\nIOKit\nImpact: A malicious application may be able to break out of its\nsandbox\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4341: Ian Beer of Google Project Zero\nCVE-2018-4354: Ian Beer of Google Project Zero\nEntry added October 30, 2018\n\nIOKit\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nstate management. \nCVE-2018-4383: Apple\nEntry added October 30, 2018\n\nIOUserEthernet\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4401: Apple\nEntry added October 30, 2018\n\nKernel\nImpact: A malicious application may be able to leak sensitive user\ninformation\nDescription: An access issue existed with privileged API calls. This\nissue was addressed with additional restrictions. \nCVE-2018-4399: Fabiano Anemone (@anoane)\nEntry added October 30, 2018\n\nKernel\nImpact: An attacker in a privileged network position may be able to\nexecute arbitrary code\nDescription: A memory corruption issue was addressed with improved\nvalidation. \nCVE-2018-4407: Kevin Backhouse of Semmle Ltd. \nEntry added October 30, 2018\n\nKernel\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4336: Brandon Azad\nCVE-2018-4337: Ian Beer of Google Project Zero\nCVE-2018-4340: Mohamed Ghannam (@_simo36)\nCVE-2018-4344: The UK\u0027s National Cyber Security Centre (NCSC)\nCVE-2018-4425: cc working with Trend Micro\u0027s Zero Day Initiative,\nJuwei Lin (@panicaII) of Trend Micro working with Trend Micro\u0027s Zero\nDay Initiative\nEntry added October 30, 2018\n\nLibreSSL\nImpact: Multiple issues in libressl were addressed in this update\nDescription: Multiple issues were addressed by updating to libressl\nversion 2.6.4. \nCVE-2015-3194\nCVE-2015-5333\nCVE-2015-5334\nCVE-2016-702\nEntry added October 30, 2018\n\nLogin Window\nImpact: A local user may be able to cause a denial of service\nDescription: A validation issue was addressed with improved logic. \nCVE-2018-4348: Ken Gannon of MWR InfoSecurity and Christian Demko of\nMWR InfoSecurity\nEntry added October 30, 2018\n\nmDNSOffloadUserClient\nImpact: An application may be able to execute arbitrary code with\nkernel privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4326: an anonymous researcher working with Trend Micro\u0027s\nZero Day Initiative, Zhuo Liang of Qihoo 360 Nirvan Team\nEntry added October 30, 2018\n\nMediaRemote\nImpact: A sandboxed process may be able to circumvent sandbox\nrestrictions\nDescription: An access issue was addressed with additional sandbox\nrestrictions. This ensures that older data read from\nrecently-written-to addresses cannot be read via a speculative\nside-channel. \nCVE-2018-3639: Jann Horn (@tehjh) of Google Project Zero (GPZ), Ken\nJohnson of the Microsoft Security Response Center (MSRC)\nEntry added October 30, 2018\n\nSecurity\nImpact: A local user may be able to cause a denial of service\nDescription: This issue was addressed with improved checks. \nCVE-2018-4395: Patrick Wardle of Digita Security\nEntry added October 30, 2018\n\nSecurity\nImpact: An attacker may be able to exploit weaknesses in the RC4\ncryptographic algorithm\nDescription: This issue was addressed by removing RC4. \nCVE-2016-1777: Pepi Zawodsky\n\nSpotlight\nImpact: An application may be able to execute arbitrary code with\nsystem privileges\nDescription: A memory corruption issue was addressed with improved\nmemory handling. \nCVE-2018-4393: Lufeng Li\nEntry added October 30, 2018\n\nSymptom Framework\nImpact: An application may be able to read restricted memory\nDescription: An out-of-bounds read was addressed with improved bounds\nchecking. \nCVE-2018-4203: Bruno Keith (@bkth_) working with Trend Micro\u0027s Zero\nDay Initiative\nEntry added October 30, 2018\n\nText\nImpact: Processing a maliciously crafted text file may lead to a\ndenial of service\nDescription: A denial of service issue was addressed with improved\nvalidation. \nCVE-2018-4304: jianan.huang (@Sevck)\nEntry added October 30, 2018\n\nWi-Fi\nImpact: An application may be able to read restricted memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2018-4338: Lee @ SECLAB, Yonsei University working with Trend\nMicro\u0027s Zero Day Initiative\nEntry added October 30, 2018\n\nAdditional recognition\n\nAccessibility Framework\nWe would like to acknowledge Ryan Govostes for their assistance. \n\nCore Data\nWe would like to acknowledge Andreas Kurtz (@aykay) of NESO Security\nLabs GmbH for their assistance. \n\nCoreDAV\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nCoreGraphics\nWe would like to acknowledge Nitin Arya of Roblox Corporation for\ntheir assistance. \n\nCoreSymbolication\nWe would like to acknowledge Brandon Azad for their assistance. \n\nIOUSBHostFamily\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nKernel\nWe would like to acknowledge Brandon Azad for their assistance. \n\nMail\nWe would like to acknowledge Alessandro Avagliano of Rocket Internet\nSE, John Whitehead of The New York Times, Kelvin Delbarre of Omicron\nSoftware Systems, and Zbyszek A\u003e\u003eA3Akiewski for their assistance. \n\nQuick Look\nWe would like to acknowledge Wojciech ReguAa (@_r3ggi) of SecuRing\nand Patrick Wardle of Digita Security and lokihardt of Google Project\nZero for their assistance. \n\nSecurity\nWe would like to acknowledge Christoph Sinai, Daniel Dudek\n(@dannysapples) of The Irish Times and Filip KlubiAka (@lemoncloak)\nof ADAPT Centre, Dublin Institute of Technology, Istvan Csanady of\nShapr3D, Omar Barkawi of ITG Software, Inc., Phil Caleno, Wilson\nDing, and an anonymous researcher for their assistance. \n\nSQLite\nWe would like to acknowledge Andreas Kurtz (@aykay) of NESO Security\nLabs GmbH for their assistance. \n\nTerminal\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nWindowServer\nWe would like to acknowledge Patrick Wardle of Digita Security for\ntheir assistance. \n\nInstallation note:\n\nmacOS Mojave 10.14 may be obtained from the Mac App Store or\nApple\u0027s Software Downloads web site:\nhttps://support.apple.com/downloads/\n\nInformation will also be posted to the Apple Security Updates\nweb site: https://support.apple.com/kb/HT201222\n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n-----BEGIN PGP SIGNATURE-----\n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\n1wZZGLtg3VubrZOsnUZzumD+0nI8c6QAnQK3P2PSZ0k=\n=i9YR\n-----END PGP SIGNATURE-----\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          },
          {
            "db": "CERT/CC",
            "id": "VU#180049"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          },
          {
            "db": "PACKETSTORM",
            "id": "147873"
          },
          {
            "db": "PACKETSTORM",
            "id": "148318"
          },
          {
            "db": "PACKETSTORM",
            "id": "148975"
          },
          {
            "db": "PACKETSTORM",
            "id": "147760"
          },
          {
            "db": "PACKETSTORM",
            "id": "147784"
          },
          {
            "db": "PACKETSTORM",
            "id": "147719"
          },
          {
            "db": "PACKETSTORM",
            "id": "147750"
          },
          {
            "db": "PACKETSTORM",
            "id": "152767"
          },
          {
            "db": "PACKETSTORM",
            "id": "150073"
          },
          {
            "db": "PACKETSTORM",
            "id": "148699"
          },
          {
            "db": "PACKETSTORM",
            "id": "147740"
          },
          {
            "db": "PACKETSTORM",
            "id": "147770"
          },
          {
            "db": "PACKETSTORM",
            "id": "149127"
          },
          {
            "db": "PACKETSTORM",
            "id": "150116"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-133670",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2018-3639",
            "trust": 3.1
          },
          {
            "db": "USCERT",
            "id": "TA18-141A",
            "trust": 1.9
          },
          {
            "db": "CERT/CC",
            "id": "VU#180049",
            "trust": 1.9
          },
          {
            "db": "SECTRACK",
            "id": "1040949",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "104232",
            "trust": 1.7
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2020/06/10/5",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2020/06/10/1",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2020/06/10/2",
            "trust": 1.1
          },
          {
            "db": "LENOVO",
            "id": "LEN-22133",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "44695",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-505225",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-268644",
            "trust": 1.1
          },
          {
            "db": "SIEMENS",
            "id": "SSA-608355",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1042004",
            "trust": 1.1
          },
          {
            "db": "CERT/CC",
            "id": "VU#584653",
            "trust": 0.8
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "148318",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147770",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147873",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "150073",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "148699",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147750",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147719",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "149127",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147740",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "147760",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "148975",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "152767",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "148581",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148151",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147743",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148731",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148817",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150097",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147932",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148484",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150076",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147839",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147749",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148324",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147769",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147746",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147765",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147762",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147748",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147754",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147756",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147931",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148323",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147751",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147747",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147764",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147755",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147763",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148656",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148330",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147744",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150077",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147779",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147734",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148370",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147767",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150090",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147737",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147742",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147796",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147720",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "149390",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147738",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148818",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147752",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150096",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147745",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147753",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148751",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147780",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148842",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147733",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147778",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147758",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147866",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147757",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147741",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150079",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150078",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148853",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147735",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147766",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148695",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147938",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147933",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147721",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150075",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150095",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "151288",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150074",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147736",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147761",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148317",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147904",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147759",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147930",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "148507",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147851",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147934",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "147784",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "150116",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#180049"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          },
          {
            "db": "PACKETSTORM",
            "id": "147873"
          },
          {
            "db": "PACKETSTORM",
            "id": "148318"
          },
          {
            "db": "PACKETSTORM",
            "id": "148975"
          },
          {
            "db": "PACKETSTORM",
            "id": "147760"
          },
          {
            "db": "PACKETSTORM",
            "id": "147784"
          },
          {
            "db": "PACKETSTORM",
            "id": "147719"
          },
          {
            "db": "PACKETSTORM",
            "id": "150116"
          },
          {
            "db": "PACKETSTORM",
            "id": "147750"
          },
          {
            "db": "PACKETSTORM",
            "id": "152767"
          },
          {
            "db": "PACKETSTORM",
            "id": "150073"
          },
          {
            "db": "PACKETSTORM",
            "id": "148699"
          },
          {
            "db": "PACKETSTORM",
            "id": "147740"
          },
          {
            "db": "PACKETSTORM",
            "id": "147770"
          },
          {
            "db": "PACKETSTORM",
            "id": "149127"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          }
        ]
      },
      "id": "VAR-201805-0963",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          }
        ],
        "trust": 1.3987851138095238
      },
      "iot_taxonomy": {
        "_id": null,
        "data": [
          {
            "category": [
              "Network device"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          }
        ]
      },
      "last_update_date": "2026-03-09T22:00:22.852000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Patches for multiple CPUHardware information disclosure vulnerabilities",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/134555"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-203",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-200",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.7,
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00115.html"
          },
          {
            "trust": 1.9,
            "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1528"
          },
          {
            "trust": 1.9,
            "url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
          },
          {
            "trust": 1.9,
            "url": "https://www.us-cert.gov/ncas/alerts/ta18-141a"
          },
          {
            "trust": 1.9,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180521-cpusidechannel"
          },
          {
            "trust": 1.6,
            "url": "https://support.apple.com//ht208394"
          },
          {
            "trust": 1.6,
            "url": "http://www.dell.com/support/speculative-store-bypass"
          },
          {
            "trust": 1.5,
            "url": "https://access.redhat.com/security/vulnerabilities/ssbd"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-3639"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1630"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1635"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1666"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1669"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1686"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:1711"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:2006"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:2258"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2018:3396"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/errata/rhsa-2019:1046"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/104232"
          },
          {
            "trust": 1.1,
            "url": "https://seclists.org/bugtraq/2019/jun/36"
          },
          {
            "trust": 1.1,
            "url": "https://www.kb.cert.org/vuls/id/180049"
          },
          {
            "trust": 1.1,
            "url": "http://support.lenovo.com/us/en/solutions/len-22133"
          },
          {
            "trust": 1.1,
            "url": "http://www.fujitsu.com/global/support/products/software/security/products-f/cve-2018-3639e.html"
          },
          {
            "trust": 1.1,
            "url": "http://xenbits.xen.org/xsa/advisory-263.html"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-268644.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-505225.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf"
          },
          {
            "trust": 1.1,
            "url": "https://help.ecostruxureit.com/display/public/uadce725/security+fixes+in+struxureware+data+center+expert+v7.6.0"
          },
          {
            "trust": 1.1,
            "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/4787"
          },
          {
            "trust": 1.1,
            "url": "https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/adv180012"
          },
          {
            "trust": 1.1,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2018-0004"
          },
          {
            "trust": 1.1,
            "url": "https://security.netapp.com/advisory/ntap-20180521-0001/"
          },
          {
            "trust": 1.1,
            "url": "https://support.citrix.com/article/ctx235225"
          },
          {
            "trust": 1.1,
            "url": "https://support.oracle.com/knowledge/sun%20microsystems/2481872_1.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0006"
          },
          {
            "trust": 1.1,
            "url": "https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.synology.com/support/security/synology_sa_18_23"
          },
          {
            "trust": 1.1,
            "url": "https://www.debian.org/security/2018/dsa-4210"
          },
          {
            "trust": 1.1,
            "url": "https://www.debian.org/security/2018/dsa-4273"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/44695/"
          },
          {
            "trust": 1.1,
            "url": "https://www.oracle.com/security-alerts/cpujul2020.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00038.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html"
          },
          {
            "trust": 1.1,
            "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2020/06/10/2"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2020/06/10/5"
          },
          {
            "trust": 1.1,
            "url": "http://www.openwall.com/lists/oss-security/2020/06/10/1"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1629"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1632"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1633"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1636"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1637"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1638"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1639"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1640"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1641"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1642"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1643"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1644"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1645"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1646"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1647"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1648"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1649"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1650"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1651"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1652"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1653"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1654"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1655"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1656"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1657"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1658"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1659"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1660"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1661"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1662"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1663"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1664"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1665"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1667"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1668"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1674"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1675"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1676"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1688"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1689"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1690"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1696"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1710"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1737"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1738"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1826"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1854"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1965"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1967"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:1997"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2001"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2003"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2060"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2161"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2162"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2164"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2171"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2172"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2216"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2228"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2246"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2250"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2289"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2309"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2328"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2363"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2364"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2387"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2394"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2396"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:2948"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3397"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3398"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3399"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3400"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3401"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3402"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3407"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3423"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3424"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2018:3425"
          },
          {
            "trust": 1.1,
            "url": "https://access.redhat.com/errata/rhsa-2019:0148"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1040949"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id/1042004"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00058.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00059.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00007.html"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3651-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3652-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3653-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3653-2/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3654-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3654-2/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3655-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3655-2/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3679-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3680-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3756-1/"
          },
          {
            "trust": 1.1,
            "url": "https://usn.ubuntu.com/3777-3/"
          },
          {
            "trust": 1.0,
            "url": "https://www.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 1.0,
            "url": "https://access.redhat.com/security/cve/cve-2018-3639"
          },
          {
            "trust": 1.0,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 1.0,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 1.0,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 1.0,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 1.0,
            "url": "https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us\u0026docid=emr_na-hpesbhf03850en_us"
          },
          {
            "trust": 0.9,
            "url": "https://wiki.ubuntu.com/securityteam/knowledgebase/variant4"
          },
          {
            "trust": 0.9,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.8,
            "url": "https://vuls.cert.org/confluence/display/wiki/vulnerabilities+associated+with+cpu+speculative+execution"
          },
          {
            "trust": 0.8,
            "url": "https://developer.amd.com/wp-content/resources/124441_amd64_speculativestorebypassdisable_whitepaper_final.pdf"
          },
          {
            "trust": 0.8,
            "url": "https://www.kb.cert.org/vuls/id/584653"
          },
          {
            "trust": 0.8,
            "url": "http://cwe.mitre.org/data/definitions/208.html"
          },
          {
            "trust": 0.8,
            "url": "https://software.intel.com/sites/default/files/managed/c5/63/336996-speculative-execution-side-channel-mitigations.pdf"
          },
          {
            "trust": 0.8,
            "url": "https://software.intel.com/sites/default/files/managed/b9/f9/336983-intel-analysis-of-speculative-execution-side-channels-white-paper.pdf"
          },
          {
            "trust": 0.8,
            "url": "https://fortiguard.com/psirt/fg-ir-18-002"
          },
          {
            "trust": 0.8,
            "url": "https://support.hp.com/us-en/document/c06001626"
          },
          {
            "trust": 0.8,
            "url": "http://www.hitachi.com/hirt/publications/hirt-pub18001/"
          },
          {
            "trust": 0.8,
            "url": "https://www.ibm.com/blogs/psirt/potential-impact-processors-power-family/"
          },
          {
            "trust": 0.8,
            "url": "https://docs.microsoft.com/en-us/cpp/security/developer-guidance-speculative-execution"
          },
          {
            "trust": 0.8,
            "url": "https://www.suse.com/support/kb/doc/?id=7022937"
          },
          {
            "trust": 0.8,
            "url": "https://www.synology.com/en-global/support/security/synology_sa_18_23"
          },
          {
            "trust": 0.8,
            "url": "https://kb.vmware.com/s/article/54951"
          },
          {
            "trust": 0.8,
            "url": "https://aws.amazon.com/security/security-bulletins/aws-2018-015/"
          },
          {
            "trust": 0.6,
            "url": "https://securitytracker.com/id/1040949"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-3640"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-3646"
          },
          {
            "trust": 0.1,
            "url": "https://support.hpe.com/hpsc/doc/public/display?doclocale=en_us\u0026amp;docid=emr_na-hpesbhf03850en_us"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/intel-microcode"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-12134"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13220"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-8822"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-18079"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/usn/usn-3655-1"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-18204"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-18203"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-18208"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux/3.13.0-149.199"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-18221"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-13305"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-17449"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-12618"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/kb/ht201222"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4203"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4336"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4334"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4338"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4308"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4332"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4326"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4153"
          },
          {
            "trust": 0.1,
            "url": "https://support.apple.com/downloads/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4340"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4304"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4126"
          },
          {
            "trust": 0.1,
            "url": "https://www.apple.com/support/security/pgp/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4324"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4331"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5334"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4310"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2016-1777"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4295"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-5333"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4333"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4341"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2015-3194"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4321"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2018-4337"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2017-12613"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/articles/2974891"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/usn/usn-3756-1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/intel-microcode/3.20180807a.0ubuntu0.16.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/intel-microcode/3.20180807a.0ubuntu0.18.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/intel-microcode/3.20180807a.0ubuntu0.14.04.1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#180049"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391"
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670"
          },
          {
            "db": "PACKETSTORM",
            "id": "147873"
          },
          {
            "db": "PACKETSTORM",
            "id": "148318"
          },
          {
            "db": "PACKETSTORM",
            "id": "148975"
          },
          {
            "db": "PACKETSTORM",
            "id": "147760"
          },
          {
            "db": "PACKETSTORM",
            "id": "147784"
          },
          {
            "db": "PACKETSTORM",
            "id": "147719"
          },
          {
            "db": "PACKETSTORM",
            "id": "150116"
          },
          {
            "db": "PACKETSTORM",
            "id": "147750"
          },
          {
            "db": "PACKETSTORM",
            "id": "152767"
          },
          {
            "db": "PACKETSTORM",
            "id": "150073"
          },
          {
            "db": "PACKETSTORM",
            "id": "148699"
          },
          {
            "db": "PACKETSTORM",
            "id": "147740"
          },
          {
            "db": "PACKETSTORM",
            "id": "147770"
          },
          {
            "db": "PACKETSTORM",
            "id": "149127"
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#180049",
            "ident": null
          },
          {
            "db": "CNVD",
            "id": "CNVD-2018-13391",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-133670",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147873",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "148318",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "148975",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147760",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147784",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147719",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "150116",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147750",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "152767",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "150073",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "148699",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147740",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "147770",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "149127",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2018-3639",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2018-05-21T00:00:00",
            "db": "CERT/CC",
            "id": "VU#180049",
            "ident": null
          },
          {
            "date": "2018-07-18T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2018-13391",
            "ident": null
          },
          {
            "date": "2018-05-22T00:00:00",
            "db": "VULHUB",
            "id": "VHN-133670",
            "ident": null
          },
          {
            "date": "2018-05-24T18:33:59",
            "db": "PACKETSTORM",
            "id": "147873",
            "ident": null
          },
          {
            "date": "2018-06-26T23:01:36",
            "db": "PACKETSTORM",
            "id": "148318",
            "ident": null
          },
          {
            "date": "2018-08-17T17:42:14",
            "db": "PACKETSTORM",
            "id": "148975",
            "ident": null
          },
          {
            "date": "2018-05-23T07:02:30",
            "db": "PACKETSTORM",
            "id": "147760",
            "ident": null
          },
          {
            "date": "2018-05-23T07:12:14",
            "db": "PACKETSTORM",
            "id": "147784",
            "ident": null
          },
          {
            "date": "2018-05-22T06:50:40",
            "db": "PACKETSTORM",
            "id": "147719",
            "ident": null
          },
          {
            "date": "2018-10-31T16:10:50",
            "db": "PACKETSTORM",
            "id": "150116",
            "ident": null
          },
          {
            "date": "2018-05-23T06:59:40",
            "db": "PACKETSTORM",
            "id": "147750",
            "ident": null
          },
          {
            "date": "2019-05-08T17:46:11",
            "db": "PACKETSTORM",
            "id": "152767",
            "ident": null
          },
          {
            "date": "2018-10-31T01:13:10",
            "db": "PACKETSTORM",
            "id": "150073",
            "ident": null
          },
          {
            "date": "2018-07-26T00:00:01",
            "db": "PACKETSTORM",
            "id": "148699",
            "ident": null
          },
          {
            "date": "2018-05-23T06:56:00",
            "db": "PACKETSTORM",
            "id": "147740",
            "ident": null
          },
          {
            "date": "2018-05-23T07:06:17",
            "db": "PACKETSTORM",
            "id": "147770",
            "ident": null
          },
          {
            "date": "2018-08-28T17:19:20",
            "db": "PACKETSTORM",
            "id": "149127",
            "ident": null
          },
          {
            "date": "2018-05-22T12:29:00.250000",
            "db": "NVD",
            "id": "CVE-2018-3639",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2018-06-19T00:00:00",
            "db": "CERT/CC",
            "id": "VU#180049",
            "ident": null
          },
          {
            "date": "2018-07-18T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2018-13391",
            "ident": null
          },
          {
            "date": "2020-09-02T00:00:00",
            "db": "VULHUB",
            "id": "VHN-133670",
            "ident": null
          },
          {
            "date": "2024-11-21T04:05:48.867000",
            "db": "NVD",
            "id": "CVE-2018-3639",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "local",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "147784"
          },
          {
            "db": "PACKETSTORM",
            "id": "149127"
          }
        ],
        "trust": 0.2
      },
      "title": {
        "_id": null,
        "data": "CPU hardware utilizing speculative execution may be vulnerable to cache side-channel attacks",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#180049"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "bypass",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "147873"
          },
          {
            "db": "PACKETSTORM",
            "id": "148318"
          },
          {
            "db": "PACKETSTORM",
            "id": "147760"
          },
          {
            "db": "PACKETSTORM",
            "id": "147719"
          },
          {
            "db": "PACKETSTORM",
            "id": "147750"
          },
          {
            "db": "PACKETSTORM",
            "id": "150073"
          },
          {
            "db": "PACKETSTORM",
            "id": "148699"
          },
          {
            "db": "PACKETSTORM",
            "id": "147740"
          },
          {
            "db": "PACKETSTORM",
            "id": "147770"
          }
        ],
        "trust": 0.9
      }
    }

    VAR-202107-1361

    Vulnerability from variot - Updated: 2026-03-09 20:45

    fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05. 6 ELS) - i386, s390x, x86_64

    1. 8) - x86_64

    2. Description:

    The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements.

    Bug Fix(es):

    • kernel-rt: update RT source tree to the RHEL-8.4.z2 source tree (BZ#1975405)

    • -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ====================================================================
    Red Hat Security Advisory

    Synopsis: Important: kernel security and bug fix update Advisory ID: RHSA-2021:2730-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:2730 Issue date: 2021-07-20 CVE Names: CVE-2021-3347 CVE-2021-33034 CVE-2021-33909 ==================================================================== 1. Summary:

    An update for kernel is now available for Red Hat Enterprise Linux 7.6 Advanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update Support, and Red Hat Enterprise Linux 7.6 Update Services for SAP Solutions.

    Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Relevant releases/architectures:

    Red Hat Enterprise Linux Server AUS (v. 7.6) - noarch, x86_64 Red Hat Enterprise Linux Server E4S (v. 7.6) - noarch, ppc64le, x86_64 Red Hat Enterprise Linux Server Optional AUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server Optional E4S (v. 7.6) - ppc64le, x86_64 Red Hat Enterprise Linux Server Optional TUS (v. 7.6) - x86_64 Red Hat Enterprise Linux Server TUS (v. 7.6) - noarch, x86_64

    1. Description:

    The kernel packages contain the Linux kernel, the core of any Linux operating system.

    Security Fix(es):

    • kernel: size_t-to-int conversion vulnerability in the filesystem layer (CVE-2021-33909)

    • kernel: Use after free via PI futex state (CVE-2021-3347)

    • kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan (CVE-2021-33034)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Bug Fix(es):

    • [CKI kernel builds]: x86 binaries in non-x86 kernel rpms breaks systemtap [7.9.z] (BZ#1975159)

    • Solution:

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    The system must be rebooted for this update to take effect.

    1. Bugs fixed (https://bugzilla.redhat.com/):

    1922249 - CVE-2021-3347 kernel: Use after free via PI futex state 1961305 - CVE-2021-33034 kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan 1970273 - CVE-2021-33909 kernel: size_t-to-int conversion vulnerability in the filesystem layer

    1. Package List:

    Red Hat Enterprise Linux Server AUS (v. 7.6):

    Source: kernel-3.10.0-957.78.2.el7.src.rpm

    noarch: kernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm kernel-doc-3.10.0-957.78.2.el7.noarch.rpm

    x86_64: bpftool-3.10.0-957.78.2.el7.x86_64.rpm kernel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-headers-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm perf-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    Red Hat Enterprise Linux Server E4S (v. 7.6):

    Source: kernel-3.10.0-957.78.2.el7.src.rpm

    noarch: kernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm kernel-doc-3.10.0-957.78.2.el7.noarch.rpm

    ppc64le: kernel-3.10.0-957.78.2.el7.ppc64le.rpm kernel-bootwrapper-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debug-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debug-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.78.2.el7.ppc64le.rpm kernel-devel-3.10.0-957.78.2.el7.ppc64le.rpm kernel-headers-3.10.0-957.78.2.el7.ppc64le.rpm kernel-tools-3.10.0-957.78.2.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-tools-libs-3.10.0-957.78.2.el7.ppc64le.rpm perf-3.10.0-957.78.2.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm python-perf-3.10.0-957.78.2.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm

    x86_64: kernel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-headers-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm perf-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    Red Hat Enterprise Linux Server TUS (v. 7.6):

    Source: kernel-3.10.0-957.78.2.el7.src.rpm

    noarch: kernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm kernel-doc-3.10.0-957.78.2.el7.noarch.rpm

    x86_64: bpftool-3.10.0-957.78.2.el7.x86_64.rpm kernel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-devel-3.10.0-957.78.2.el7.x86_64.rpm kernel-headers-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm perf-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    Red Hat Enterprise Linux Server Optional AUS (v. 7.6):

    x86_64: kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    Red Hat Enterprise Linux Server Optional E4S (v. 7.6):

    ppc64le: kernel-debug-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debug-devel-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-debuginfo-common-ppc64le-3.10.0-957.78.2.el7.ppc64le.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm kernel-tools-libs-devel-3.10.0-957.78.2.el7.ppc64le.rpm perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm

    x86_64: kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    Red Hat Enterprise Linux Server Optional TUS (v. 7.6):

    x86_64: kernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm kernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm python-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm

    These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/

    1. References:

    https://access.redhat.com/security/cve/CVE-2021-3347 https://access.redhat.com/security/cve/CVE-2021-33034 https://access.redhat.com/security/cve/CVE-2021-33909 https://access.redhat.com/security/updates/classification/#important https://access.redhat.com/security/vulnerabilities/RHSB-2021-006

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYPc/p9zjgjWX9erEAQiGYQ/6Apfv6Vn+s1cJsOrv5bpIB+TZWR8Dw4w6 7q5tqmrA0W38qvq7EWqVwAZMtmF2YXIcuP8i8zELAPG/Y1oMax3Piy5nxc4OR55i 8H9pc0lGZn9UJtryWMPaJRqvWGF1WhE/vGPUkHhI3CmoSVDN3B3OqfC04oeVa/Gt f9wikugrLvXoD+YsJk1LAn0tJ+xGrcbMRvwxvvtvwRsje2cGPU6OAEWQr1ZKyNZc Fwi6jLUve8d3wxE6+C6IocTYMcZcw2e2U4KOwE/ONXjjNgbwV+deQU16HJk4BjcA rDqtVUWzNGXzONh6Ua4yEisVe8LdhPNoZaciNx56lKpOs8Vbv58w29edfR1zf0fW c1gH+0S19jDSwsESNSKJth5A/GY0zxsUeh5qDjoFUF1AH6IuZNmPb3VGcl5klKuo outLUo2jeIRiBiZaNSVe32nbWCEkAoFF5WrvfHYmi+i9U45gLvUG2N58ZtOQiQkb potW9xF7f15Mm1Xm9TOIaNy+ykh7TJRxKnQSaAk/jnzTLp3XeVNmPTztx7zA4Z50 bgM/MQWB9j7NMjwEopdbS4lxJsvaXerwXPT+1WDAzBZ5clOKyB5hTxTTBOrsErzs O+wKRVu9eU4FMR6ULeL+pLCZPm0eVlu9jBuySEUI05/FkAVu/YUDrgXvMiy6XknI ziN+XVubHjk=1ifB -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce . 7) - ppc64le, x86_64

    1. Description:

    This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. ========================================================================= Ubuntu Security Notice USN-5016-1 July 20, 2021

    linux, linux-aws, linux-aws-5.8, linux-azure, linux-azure-5.8, linux-gcp, linux-gcp-5.8, linux-hwe-5.8, linux-kvm, linux-oracle, linux-oracle-5.8, linux-raspi vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives:

    • Ubuntu 20.10
    • Ubuntu 20.04 LTS

    Summary:

    Several security issues were fixed in the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or execute arbitrary code. (CVE-2021-33909)

    Or Cohen and Nadav Markus discovered a use-after-free vulnerability in the nfc implementation in the Linux kernel. A privileged local attacker could use this issue to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-23134)

    It was discovered that a race condition in the kernel Bluetooth subsystem could lead to use-after-free of slab objects. An attacker could use this issue to possibly execute arbitrary code. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2021-33034)

    It was discovered that an out-of-bounds (OOB) memory access flaw existed in the f2fs module of the Linux kernel. A local attacker could use this issue to cause a denial of service (system crash). (CVE-2021-3506)

    Update instructions:

    The problem can be corrected by updating your system to the following package versions:

    Ubuntu 20.10: linux-image-5.8.0-1032-raspi 5.8.0-1032.35 linux-image-5.8.0-1032-raspi-nolpae 5.8.0-1032.35 linux-image-5.8.0-1033-kvm 5.8.0-1033.36 linux-image-5.8.0-1037-oracle 5.8.0-1037.38 linux-image-5.8.0-1038-gcp 5.8.0-1038.40 linux-image-5.8.0-1039-azure 5.8.0-1039.42 linux-image-5.8.0-1041-aws 5.8.0-1041.43 linux-image-5.8.0-63-generic 5.8.0-63.71 linux-image-5.8.0-63-generic-64k 5.8.0-63.71 linux-image-5.8.0-63-generic-lpae 5.8.0-63.71 linux-image-5.8.0-63-lowlatency 5.8.0-63.71 linux-image-aws 5.8.0.1041.43 linux-image-azure 5.8.0.1039.40 linux-image-gcp 5.8.0.1038.38 linux-image-generic 5.8.0.63.69 linux-image-generic-64k 5.8.0.63.69 linux-image-generic-lpae 5.8.0.63.69 linux-image-gke 5.8.0.1038.38 linux-image-kvm 5.8.0.1033.36 linux-image-lowlatency 5.8.0.63.69 linux-image-oem-20.04 5.8.0.63.69 linux-image-oracle 5.8.0.1037.36 linux-image-raspi 5.8.0.1032.34 linux-image-raspi-nolpae 5.8.0.1032.34 linux-image-virtual 5.8.0.63.69

    Ubuntu 20.04 LTS: linux-image-5.8.0-1037-oracle 5.8.0-1037.38~20.04.1 linux-image-5.8.0-1038-gcp 5.8.0-1038.40~20.04.1 linux-image-5.8.0-1039-azure 5.8.0-1039.42~20.04.1 linux-image-5.8.0-1041-aws 5.8.0-1041.43~20.04.1 linux-image-5.8.0-63-generic 5.8.0-63.71~20.04.1 linux-image-5.8.0-63-generic-64k 5.8.0-63.71~20.04.1 linux-image-5.8.0-63-generic-lpae 5.8.0-63.71~20.04.1 linux-image-5.8.0-63-lowlatency 5.8.0-63.71~20.04.1 linux-image-aws 5.8.0.1041.43~20.04.13 linux-image-azure 5.8.0.1039.42~20.04.11 linux-image-gcp 5.8.0.1038.40~20.04.13 linux-image-generic-64k-hwe-20.04 5.8.0.63.71~20.04.45 linux-image-generic-hwe-20.04 5.8.0.63.71~20.04.45 linux-image-generic-lpae-hwe-20.04 5.8.0.63.71~20.04.45 linux-image-lowlatency-hwe-20.04 5.8.0.63.71~20.04.45 linux-image-oracle 5.8.0.1037.38~20.04.13 linux-image-virtual-hwe-20.04 5.8.0.63.71~20.04.45

    After a standard system update you need to reboot your computer to make all the necessary changes.

    ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. An attacker in a guest VM could use this to write to portions of the host’s physical memory. (CVE-2021-3653)

    Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel allowed a guest VM to disable restrictions on VMLOAD/VMSAVE in a nested guest. An attacker in a guest VM could use this to read or write portions of the host’s physical memory. (CVE-2021-22555)

    It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. If you are running a kernel version earlier than the one listed below, please upgrade your kernel as soon as possible

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.20"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "communications session border controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "34"
          },
          {
            "_id": null,
            "model": "solidfire",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "3.16"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.10"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "communications session border controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "3.12.43"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.9.276"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.14.240"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.4.134"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.11"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.13"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.12.19"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.13.4"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.4.276"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.15"
          },
          {
            "_id": null,
            "model": "hci management node",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "netapp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "3.13"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "5.10.52"
          },
          {
            "_id": null,
            "model": "communications session border controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.3"
          },
          {
            "_id": null,
            "model": "communications session border controller",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "oracle",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "sma1000",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "12.4.2-02044"
          },
          {
            "_id": null,
            "model": "kernel",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "linux",
            "version": "4.19.198"
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163578"
          },
          {
            "db": "PACKETSTORM",
            "id": "163579"
          },
          {
            "db": "PACKETSTORM",
            "id": "163583"
          },
          {
            "db": "PACKETSTORM",
            "id": "163594"
          },
          {
            "db": "PACKETSTORM",
            "id": "163602"
          },
          {
            "db": "PACKETSTORM",
            "id": "163603"
          },
          {
            "db": "PACKETSTORM",
            "id": "163607"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2021-33909",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.2,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2021-33909",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "severity": "HIGH",
                "trust": 1.1,
                "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2021-33909",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2021-33909",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-33909",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-33909"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05. 6 ELS) - i386, s390x, x86_64\n\n3. 8) - x86_64\n\n3. Description:\n\nThe kernel-rt packages provide the Real Time Linux Kernel, which enables\nfine-tuning for systems with extremely high determinism requirements. \n\nBug Fix(es):\n\n* kernel-rt: update RT source tree to the RHEL-8.4.z2 source tree\n(BZ#1975405)\n\n4. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n====================================================================                   \nRed Hat Security Advisory\n\nSynopsis:          Important: kernel security and bug fix update\nAdvisory ID:       RHSA-2021:2730-01\nProduct:           Red Hat Enterprise Linux\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2021:2730\nIssue date:        2021-07-20\nCVE Names:         CVE-2021-3347 CVE-2021-33034 CVE-2021-33909\n====================================================================\n1. Summary:\n\nAn update for kernel is now available for Red Hat Enterprise Linux 7.6\nAdvanced Update Support, Red Hat Enterprise Linux 7.6 Telco Extended Update\nSupport, and Red Hat Enterprise Linux 7.6 Update Services for SAP\nSolutions. \n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section. \n\n2. Relevant releases/architectures:\n\nRed Hat Enterprise Linux Server AUS (v. 7.6) - noarch, x86_64\nRed Hat Enterprise Linux Server E4S (v. 7.6) - noarch, ppc64le, x86_64\nRed Hat Enterprise Linux Server Optional AUS (v. 7.6) - x86_64\nRed Hat Enterprise Linux Server Optional E4S (v. 7.6) - ppc64le, x86_64\nRed Hat Enterprise Linux Server Optional TUS (v. 7.6) - x86_64\nRed Hat Enterprise Linux Server TUS (v. 7.6) - noarch, x86_64\n\n3. Description:\n\nThe kernel packages contain the Linux kernel, the core of any Linux\noperating system. \n\nSecurity Fix(es):\n\n* kernel: size_t-to-int conversion vulnerability in the filesystem layer\n(CVE-2021-33909)\n\n* kernel: Use after free via PI futex state (CVE-2021-3347)\n\n* kernel: use-after-free in net/bluetooth/hci_event.c when destroying an\nhci_chan (CVE-2021-33034)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section. \n\nBug Fix(es):\n\n* [CKI kernel builds]: x86 binaries in non-x86 kernel rpms breaks systemtap\n[7.9.z] (BZ#1975159)\n\n4. Solution:\n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nThe system must be rebooted for this update to take effect. \n\n5. Bugs fixed (https://bugzilla.redhat.com/):\n\n1922249 - CVE-2021-3347 kernel: Use after free via PI futex state\n1961305 - CVE-2021-33034 kernel: use-after-free in net/bluetooth/hci_event.c when destroying an hci_chan\n1970273 - CVE-2021-33909 kernel: size_t-to-int conversion vulnerability in the filesystem layer\n\n6. Package List:\n\nRed Hat Enterprise Linux Server AUS (v. 7.6):\n\nSource:\nkernel-3.10.0-957.78.2.el7.src.rpm\n\nnoarch:\nkernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm\nkernel-doc-3.10.0-957.78.2.el7.noarch.rpm\n\nx86_64:\nbpftool-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-headers-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm\nperf-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nRed Hat Enterprise Linux Server E4S (v. 7.6):\n\nSource:\nkernel-3.10.0-957.78.2.el7.src.rpm\n\nnoarch:\nkernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm\nkernel-doc-3.10.0-957.78.2.el7.noarch.rpm\n\nppc64le:\nkernel-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-bootwrapper-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debug-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debuginfo-common-ppc64le-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-devel-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-headers-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-tools-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-tools-libs-3.10.0-957.78.2.el7.ppc64le.rpm\nperf-3.10.0-957.78.2.el7.ppc64le.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\npython-perf-3.10.0-957.78.2.el7.ppc64le.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\n\nx86_64:\nkernel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-headers-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm\nperf-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nRed Hat Enterprise Linux Server TUS (v. 7.6):\n\nSource:\nkernel-3.10.0-957.78.2.el7.src.rpm\n\nnoarch:\nkernel-abi-whitelists-3.10.0-957.78.2.el7.noarch.rpm\nkernel-doc-3.10.0-957.78.2.el7.noarch.rpm\n\nx86_64:\nbpftool-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debug-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-devel-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-headers-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-3.10.0-957.78.2.el7.x86_64.rpm\nperf-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional AUS (v. 7.6):\n\nx86_64:\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional E4S (v. 7.6):\n\nppc64le:\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debug-devel-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-debuginfo-common-ppc64le-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\nkernel-tools-libs-devel-3.10.0-957.78.2.el7.ppc64le.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.ppc64le.rpm\n\nx86_64:\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nRed Hat Enterprise Linux Server Optional TUS (v. 7.6):\n\nx86_64:\nkernel-debug-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-debuginfo-common-x86_64-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\nkernel-tools-libs-devel-3.10.0-957.78.2.el7.x86_64.rpm\nperf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\npython-perf-debuginfo-3.10.0-957.78.2.el7.x86_64.rpm\n\nThese packages are GPG signed by Red Hat for security.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n7. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-3347\nhttps://access.redhat.com/security/cve/CVE-2021-33034\nhttps://access.redhat.com/security/cve/CVE-2021-33909\nhttps://access.redhat.com/security/updates/classification/#important\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2021-006\n\n8. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2021 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nziN+XVubHjk=1ifB\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. 7) - ppc64le, x86_64\n\n3. Description:\n\nThis is a kernel live patch module which is automatically loaded by the RPM\npost-install script to modify the code of a running kernel. =========================================================================\nUbuntu Security Notice USN-5016-1\nJuly 20, 2021\n\nlinux, linux-aws, linux-aws-5.8, linux-azure, linux-azure-5.8, linux-gcp,\nlinux-gcp-5.8, linux-hwe-5.8, linux-kvm, linux-oracle, linux-oracle-5.8,\nlinux-raspi vulnerabilities\n=========================================================================\nA security issue affects these releases of Ubuntu and its derivatives:\n\n- Ubuntu 20.10\n- Ubuntu 20.04 LTS\n\nSummary:\n\nSeveral security issues were fixed in the Linux kernel. A local\nattacker could use this to cause a denial of service (system crash) or\nexecute arbitrary code. (CVE-2021-33909)\n\nOr Cohen and Nadav Markus discovered a use-after-free vulnerability in the\nnfc implementation in the Linux kernel. A privileged local attacker could\nuse this issue to cause a denial of service (system crash) or possibly\nexecute arbitrary code. (CVE-2021-23134)\n\nIt was discovered that a race condition in the kernel Bluetooth subsystem\ncould lead to use-after-free of slab objects. An attacker could use this\nissue to possibly execute arbitrary code. A local attacker could use this to cause a denial of\nservice (system crash) or possibly execute arbitrary code. (CVE-2021-33034)\n\nIt was discovered that an out-of-bounds (OOB) memory access flaw existed in\nthe f2fs module of the Linux kernel. A local attacker could use this issue\nto cause a denial of service (system crash). (CVE-2021-3506)\n\nUpdate instructions:\n\nThe problem can be corrected by updating your system to the following\npackage versions:\n\nUbuntu 20.10:\n  linux-image-5.8.0-1032-raspi    5.8.0-1032.35\n  linux-image-5.8.0-1032-raspi-nolpae  5.8.0-1032.35\n  linux-image-5.8.0-1033-kvm      5.8.0-1033.36\n  linux-image-5.8.0-1037-oracle   5.8.0-1037.38\n  linux-image-5.8.0-1038-gcp      5.8.0-1038.40\n  linux-image-5.8.0-1039-azure    5.8.0-1039.42\n  linux-image-5.8.0-1041-aws      5.8.0-1041.43\n  linux-image-5.8.0-63-generic    5.8.0-63.71\n  linux-image-5.8.0-63-generic-64k  5.8.0-63.71\n  linux-image-5.8.0-63-generic-lpae  5.8.0-63.71\n  linux-image-5.8.0-63-lowlatency  5.8.0-63.71\n  linux-image-aws                 5.8.0.1041.43\n  linux-image-azure               5.8.0.1039.40\n  linux-image-gcp                 5.8.0.1038.38\n  linux-image-generic             5.8.0.63.69\n  linux-image-generic-64k         5.8.0.63.69\n  linux-image-generic-lpae        5.8.0.63.69\n  linux-image-gke                 5.8.0.1038.38\n  linux-image-kvm                 5.8.0.1033.36\n  linux-image-lowlatency          5.8.0.63.69\n  linux-image-oem-20.04           5.8.0.63.69\n  linux-image-oracle              5.8.0.1037.36\n  linux-image-raspi               5.8.0.1032.34\n  linux-image-raspi-nolpae        5.8.0.1032.34\n  linux-image-virtual             5.8.0.63.69\n\nUbuntu 20.04 LTS:\n  linux-image-5.8.0-1037-oracle   5.8.0-1037.38~20.04.1\n  linux-image-5.8.0-1038-gcp      5.8.0-1038.40~20.04.1\n  linux-image-5.8.0-1039-azure    5.8.0-1039.42~20.04.1\n  linux-image-5.8.0-1041-aws      5.8.0-1041.43~20.04.1\n  linux-image-5.8.0-63-generic    5.8.0-63.71~20.04.1\n  linux-image-5.8.0-63-generic-64k  5.8.0-63.71~20.04.1\n  linux-image-5.8.0-63-generic-lpae  5.8.0-63.71~20.04.1\n  linux-image-5.8.0-63-lowlatency  5.8.0-63.71~20.04.1\n  linux-image-aws                 5.8.0.1041.43~20.04.13\n  linux-image-azure               5.8.0.1039.42~20.04.11\n  linux-image-gcp                 5.8.0.1038.40~20.04.13\n  linux-image-generic-64k-hwe-20.04  5.8.0.63.71~20.04.45\n  linux-image-generic-hwe-20.04   5.8.0.63.71~20.04.45\n  linux-image-generic-lpae-hwe-20.04  5.8.0.63.71~20.04.45\n  linux-image-lowlatency-hwe-20.04  5.8.0.63.71~20.04.45\n  linux-image-oracle              5.8.0.1037.38~20.04.13\n  linux-image-virtual-hwe-20.04   5.8.0.63.71~20.04.45\n\nAfter a standard system update you need to reboot your computer to make\nall the necessary changes. \n\nATTENTION: Due to an unavoidable ABI change the kernel updates have\nbeen given a new version number, which requires you to recompile and\nreinstall all third party kernel modules you might have installed. \nUnless you manually uninstalled the standard kernel metapackages\n(e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual,\nlinux-powerpc), a standard system upgrade will automatically perform\nthis as well. An attacker in a guest VM could use\nthis to write to portions of the host\u2019s physical memory. (CVE-2021-3653)\n\nMaxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor\nimplementation for AMD processors in the Linux kernel allowed a guest VM\nto disable restrictions on VMLOAD/VMSAVE in a nested guest. An attacker\nin a guest VM could use this to read or write portions of the host\u2019s\nphysical memory. (CVE-2021-22555)\n\nIt was discovered that the virtual file system implementation in the\nLinux kernel contained an unsigned to signed integer conversion error. If you are running a kernel version earlier than the one listed\nbelow, please upgrade your kernel as soon as possible",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-33909"
          },
          {
            "db": "PACKETSTORM",
            "id": "163578"
          },
          {
            "db": "PACKETSTORM",
            "id": "163579"
          },
          {
            "db": "PACKETSTORM",
            "id": "163583"
          },
          {
            "db": "PACKETSTORM",
            "id": "163594"
          },
          {
            "db": "PACKETSTORM",
            "id": "163597"
          },
          {
            "db": "PACKETSTORM",
            "id": "163602"
          },
          {
            "db": "PACKETSTORM",
            "id": "163603"
          },
          {
            "db": "PACKETSTORM",
            "id": "163607"
          },
          {
            "db": "PACKETSTORM",
            "id": "164155"
          }
        ],
        "trust": 1.8
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-33909",
            "trust": 2.0
          },
          {
            "db": "PACKETSTORM",
            "id": "164155",
            "trust": 1.1
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/09/21/1",
            "trust": 1.0
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/07/20/1",
            "trust": 1.0
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/08/25/10",
            "trust": 1.0
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/09/17/2",
            "trust": 1.0
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/07/22/7",
            "trust": 1.0
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/09/17/4",
            "trust": 1.0
          },
          {
            "db": "PACKETSTORM",
            "id": "163621",
            "trust": 1.0
          },
          {
            "db": "PACKETSTORM",
            "id": "163671",
            "trust": 1.0
          },
          {
            "db": "PACKETSTORM",
            "id": "165477",
            "trust": 1.0
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-33909",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163578",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163579",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163583",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163594",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163597",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163602",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163603",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "163607",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-33909"
          },
          {
            "db": "PACKETSTORM",
            "id": "163578"
          },
          {
            "db": "PACKETSTORM",
            "id": "163579"
          },
          {
            "db": "PACKETSTORM",
            "id": "163583"
          },
          {
            "db": "PACKETSTORM",
            "id": "163594"
          },
          {
            "db": "PACKETSTORM",
            "id": "163597"
          },
          {
            "db": "PACKETSTORM",
            "id": "163602"
          },
          {
            "db": "PACKETSTORM",
            "id": "163603"
          },
          {
            "db": "PACKETSTORM",
            "id": "163607"
          },
          {
            "db": "PACKETSTORM",
            "id": "164155"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "id": "VAR-202107-1361",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.26739928
      },
      "last_update_date": "2026-03-09T20:45:16.848000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Amazon Linux AMI: ALAS-2021-1524",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2021-1524"
          },
          {
            "title": "Debian Security Advisories: DSA-4941-1 linux -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=fb9b5f5cc430f484f4420a11b7b87136"
          },
          {
            "title": "Amazon Linux 2: ALAS2LIVEPATCH-2021-055",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2LIVEPATCH-2021-055"
          },
          {
            "title": "Amazon Linux 2: ALAS2KERNEL-5.10-2022-003",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2KERNEL-5.10-2022-003"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1691",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1691"
          },
          {
            "title": "Amazon Linux 2: ALAS2LIVEPATCH-2021-057",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2LIVEPATCH-2021-057"
          },
          {
            "title": "Amazon Linux 2: ALAS2LIVEPATCH-2021-056",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2LIVEPATCH-2021-056"
          },
          {
            "title": "Arch Linux Advisories: [ASA-202107-48] linux: privilege escalation",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-202107-48"
          },
          {
            "title": "Arch Linux Advisories: [ASA-202107-50] linux-hardened: privilege escalation",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-202107-50"
          },
          {
            "title": "Amazon Linux 2: ALAS2KERNEL-5.4-2022-005",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2KERNEL-5.4-2022-005"
          },
          {
            "title": "Amazon Linux 2: ALAS2LIVEPATCH-2021-058",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2LIVEPATCH-2021-058"
          },
          {
            "title": "Amazon Linux 2: ALAS2LIVEPATCH-2021-059",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2LIVEPATCH-2021-059"
          },
          {
            "title": "Arch Linux Advisories: [ASA-202107-49] linux-zen: privilege escalation",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-202107-49"
          },
          {
            "title": "Arch Linux Advisories: [ASA-202107-51] linux-lts: privilege escalation",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_advisories\u0026qid=ASA-202107-51"
          },
          {
            "title": "Arch Linux Issues: ",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=arch_linux_issues\u0026qid=CVE-2021-33909 log"
          },
          {
            "title": "Siemens Security Advisories: Siemens Security Advisory",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories\u0026qid=ec6577109e640dac19a6ddb978afe82d"
          },
          {
            "title": "LinuxVulnerabilities",
            "trust": 0.1,
            "url": "https://github.com/gitezri/LinuxVulnerabilities "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/Live-Hack-CVE/CVE-2021-33909 "
          },
          {
            "title": "CVE-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/AmIAHuman/CVE-2021-33909 "
          },
          {
            "title": "CVE-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/Liang2580/CVE-2021-33909 "
          },
          {
            "title": "cve-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/baerwolf/cve-2021-33909 "
          },
          {
            "title": "CVE-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/bbinfosec43/CVE-2021-33909 "
          },
          {
            "title": "deep-directory",
            "trust": 0.1,
            "url": "https://github.com/sfowl/deep-directory "
          },
          {
            "title": "integer_compilation_flags",
            "trust": 0.1,
            "url": "https://github.com/mdulin2/integer_compilation_flags "
          },
          {
            "title": "CVE-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/AlAIAL90/CVE-2021-33909 "
          },
          {
            "title": "CVE-2021-33909",
            "trust": 0.1,
            "url": "https://github.com/ChrisTheCoolHut/CVE-2021-33909 "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/knewbury01/codeql-workshop-integer-conversion "
          },
          {
            "title": "kickstart-rhel8",
            "trust": 0.1,
            "url": "https://github.com/alexhaydock/kickstart-rhel8 "
          },
          {
            "title": "exploit_articles",
            "trust": 0.1,
            "url": "https://github.com/ChoKyuWon/exploit_articles "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/hardenedvault/ved "
          },
          {
            "title": "SVG-advisories",
            "trust": 0.1,
            "url": "https://github.com/EGI-Federation/SVG-advisories "
          },
          {
            "title": "",
            "trust": 0.1,
            "url": "https://github.com/makoto56/penetration-suite-toolkit "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-787",
            "trust": 1.0
          },
          {
            "problemtype": "CWE-190",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/163621/sequoia-a-deep-root-in-linuxs-filesystem-layer.html"
          },
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/163671/kernel-live-patch-security-notice-lsn-0079-1.html"
          },
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/164155/kernel-live-patch-security-notice-lsn-0081-1.html"
          },
          {
            "trust": 1.0,
            "url": "http://packetstormsecurity.com/files/165477/kernel-live-patch-security-notice-lsn-0083-1.html"
          },
          {
            "trust": 1.0,
            "url": "http://www.openwall.com/lists/oss-security/2021/07/22/7"
          },
          {
            "trust": 1.0,
            "url": "http://www.openwall.com/lists/oss-security/2021/08/25/10"
          },
          {
            "trust": 1.0,
            "url": "http://www.openwall.com/lists/oss-security/2021/09/17/2"
          },
          {
            "trust": 1.0,
            "url": "http://www.openwall.com/lists/oss-security/2021/09/17/4"
          },
          {
            "trust": 1.0,
            "url": "http://www.openwall.com/lists/oss-security/2021/09/21/1"
          },
          {
            "trust": 1.0,
            "url": "https://cdn.kernel.org/pub/linux/kernel/v5.x/changelog-5.13.4"
          },
          {
            "trust": 1.0,
            "url": "https://github.com/torvalds/linux/commit/8cae8cd89f05f6de223d63e6d15e31c8ba9cf53b"
          },
          {
            "trust": 1.0,
            "url": "https://lists.debian.org/debian-lts-announce/2021/07/msg00014.html"
          },
          {
            "trust": 1.0,
            "url": "https://lists.debian.org/debian-lts-announce/2021/07/msg00015.html"
          },
          {
            "trust": 1.0,
            "url": "https://lists.debian.org/debian-lts-announce/2021/07/msg00016.html"
          },
          {
            "trust": 1.0,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/z4uhhigiso3fvrf4cqnjs4ika25atsfu/"
          },
          {
            "trust": 1.0,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2022-0015"
          },
          {
            "trust": 1.0,
            "url": "https://security.netapp.com/advisory/ntap-20210819-0004/"
          },
          {
            "trust": 1.0,
            "url": "https://www.debian.org/security/2021/dsa-4941"
          },
          {
            "trust": 1.0,
            "url": "https://www.openwall.com/lists/oss-security/2021/07/20/1"
          },
          {
            "trust": 1.0,
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "trust": 0.9,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-33909"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/security/cve/cve-2021-33909"
          },
          {
            "trust": 0.7,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/security/updates/classification/#important"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/security/vulnerabilities/rhsb-2021-006"
          },
          {
            "trust": 0.7,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.7,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-33034"
          },
          {
            "trust": 0.4,
            "url": "https://access.redhat.com/security/cve/cve-2021-33034"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-32399"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-3347"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3347"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-32399"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2735"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-12362"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-12362"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2715"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2730"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2727"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-hwe-5.8/5.8.0-63.71~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-23134"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-aws/5.8.0-1041.43"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-gcp/5.8.0-1038.40"
          },
          {
            "trust": 0.1,
            "url": "https://ubuntu.com/security/notices/usn-5016-1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-aws-5.8/5.8.0-1041.43~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux/5.8.0-63.71"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-oracle-5.8/5.8.0-1037.38~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-azure/5.8.0-1039.42"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-raspi/5.8.0-1032.35"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3506"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-oracle/5.8.0-1037.38"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-azure-5.8/5.8.0-1039.42~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-kvm/5.8.0-1033.36"
          },
          {
            "trust": 0.1,
            "url": "https://launchpad.net/ubuntu/+source/linux-gcp-5.8/5.8.0-1038.40~20.04.1"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2720"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2716"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:2726"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2019-20934"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-33033"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-11668"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2019-20934"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2020-11668"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-33033"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-22555"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3653"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-3656"
          },
          {
            "trust": 0.1,
            "url": "https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce"
          }
        ],
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163578"
          },
          {
            "db": "PACKETSTORM",
            "id": "163579"
          },
          {
            "db": "PACKETSTORM",
            "id": "163583"
          },
          {
            "db": "PACKETSTORM",
            "id": "163594"
          },
          {
            "db": "PACKETSTORM",
            "id": "163597"
          },
          {
            "db": "PACKETSTORM",
            "id": "163602"
          },
          {
            "db": "PACKETSTORM",
            "id": "163603"
          },
          {
            "db": "PACKETSTORM",
            "id": "163607"
          },
          {
            "db": "PACKETSTORM",
            "id": "164155"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-33909"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2021-33909",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163578",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163579",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163583",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163594",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163597",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163602",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163603",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "163607",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "164155",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2021-33909",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-07-20T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-33909",
            "ident": null
          },
          {
            "date": "2021-07-21T16:02:03",
            "db": "PACKETSTORM",
            "id": "163578",
            "ident": null
          },
          {
            "date": "2021-07-21T16:02:11",
            "db": "PACKETSTORM",
            "id": "163579",
            "ident": null
          },
          {
            "date": "2021-07-21T16:02:44",
            "db": "PACKETSTORM",
            "id": "163583",
            "ident": null
          },
          {
            "date": "2021-07-21T16:04:11",
            "db": "PACKETSTORM",
            "id": "163594",
            "ident": null
          },
          {
            "date": "2021-07-21T16:04:29",
            "db": "PACKETSTORM",
            "id": "163597",
            "ident": null
          },
          {
            "date": "2021-07-21T16:05:06",
            "db": "PACKETSTORM",
            "id": "163602",
            "ident": null
          },
          {
            "date": "2021-07-21T16:05:14",
            "db": "PACKETSTORM",
            "id": "163603",
            "ident": null
          },
          {
            "date": "2021-07-21T16:05:44",
            "db": "PACKETSTORM",
            "id": "163607",
            "ident": null
          },
          {
            "date": "2021-09-14T16:28:49",
            "db": "PACKETSTORM",
            "id": "164155",
            "ident": null
          },
          {
            "date": "2021-07-20T19:15:09.747000",
            "db": "NVD",
            "id": "CVE-2021-33909",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2023-11-07T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-33909",
            "ident": null
          },
          {
            "date": "2023-11-07T03:35:56.050000",
            "db": "NVD",
            "id": "CVE-2021-33909",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "local",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163597"
          }
        ],
        "trust": 0.1
      },
      "title": {
        "_id": null,
        "data": "Red Hat Security Advisory 2021-2735-01",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163578"
          }
        ],
        "trust": 0.1
      },
      "type": {
        "_id": null,
        "data": "overflow",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "163578"
          }
        ],
        "trust": 0.1
      }
    }

    VAR-202112-0562

    Vulnerability from variot - Updated: 2026-03-09 20:26

    It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default.

    For the oldstable distribution (buster), this problem has been fixed in version 2.16.0-1~deb10u1.

    For the stable distribution (bullseye), this problem has been fixed in version 2.16.0-1~deb11u1.

    We recommend that you upgrade your apache-log4j2 packages.

    For the detailed security status of apache-log4j2 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/apache-log4j2

    Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

    Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE-----

    iQKTBAEBCgB9FiEErPPQiO8y7e9qGoNf2a0UuVE7UeQFAmG7FI5fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEFD RjNEMDg4RUYzMkVERUY2QTFBODM1RkQ5QUQxNEI5NTEzQjUxRTQACgkQ2a0UuVE7 UeSqOg//XOye7T/8PKOrrUtHFhH+w2dOC0GujwcIS2mhofVuZQTPYvM5uTZxDTuz rQN+T505t9QaP3sF05gXK6VI675HhgmF3d+vDEnhp8QpZX5HeJrmmX44FewZQAqP yMysAuwG1RJ0Qgs7NmppU/XJBnmhJLsqsW99kcDnNXS67D23e1nUqAEDME5baSoF VPc50Up/yh4DE28Jcs8Mh2cM8UqmeLEQJ8XC3IojQLhmOF1UBJuL4K0sEUqWtJeN TytHya2XdfIIZcRolHe6AUeiLP5JpitbqkVP+hEeruAvk8nTGsLi0HMbWxA9LLcB bB9KKJjf6xndRa/t/IXGMzwr883t5/YLdxbCFcGj9M4Bfj7SAhGdgnJHZaRt1quX Vcqnu1pDHpdFuRX4t6oqF9R0uiBGeupZmGdb1y7os+FU2EbTRYU0rlnhfOsou0ex Vh5sFKFDhgWUQoyuVUMh6eOZ7p92GTzbw5kPkvboa7Xdrs02m7ChLlh8f5ajRFrK WbAcwsBj6RK4dmtdvfO2sVEuRTpFQ3qtecwZUR0pqUIjJ+rfurSGmpPr3iOrBu2s ROol/vLfW5uZd6RxSNbt3twPcwBaZagFQCcDY27Yz0sH6DlQUmWed1KJjbRaZ7fn cqjFisSZxu8d5VoAtjMSP8l95FoAm53r9Q1HCZvXqRhBjFNoYqE= =TNnt -----END PGP SIGNATURE----- . Solution:

    For OpenShift Container Platform 4.7 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:

    https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-release-notes.html

    Details on how to access this content are available at https://docs.openshift.com/container-platform/4.7/updating/updating-cluster-cli.html

    1. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256

    ===================================================================== Red Hat Security Advisory

    Synopsis: Moderate: Red Hat Data Grid 8.2.3 security update Advisory ID: RHSA-2022:0205-01 Product: Red Hat JBoss Data Grid Advisory URL: https://access.redhat.com/errata/RHSA-2022:0205 Issue date: 2022-01-20 CVE Names: CVE-2021-44832 CVE-2021-45046 CVE-2021-45105 =====================================================================

    1. Summary:

    An update for Red Hat Data Grid is now available.

    Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

    1. Description:

    Red Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. It increases application response times and allows for dramatically improving performance while providing availability, reliability, and elastic scale.

    Data Grid 8.2.3 replaces Data Grid 8.2.2 and includes bug fixes and enhancements. Find out more about Data Grid 8.2.3 in the Release Notes [3].

    1. Solution:

    To install this update, do the following:

    1. Download the Data Grid 8.2.3 server patch from the customer portal[²].
    2. Back up your existing Data Grid installation. You should back up databases, configuration files, and so on.
    3. Install the Data Grid 8.2.3 server patch. Refer to the 8.2.3 Release Notes[³] for patching instructions.
    4. Restart Data Grid to ensure the changes take effect.

    5. References:

    https://access.redhat.com/security/cve/CVE-2021-44832 https://access.redhat.com/security/cve/CVE-2021-45046 https://access.redhat.com/security/cve/CVE-2021-45105 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches&product=data.grid&version=8.2 https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index

    1. Contact:

    The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/

    Copyright 2022 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1

    iQIVAwUBYemZbtzjgjWX9erEAQgkThAAhlH9r6fZ08ZbIvy7t5FNceA93qd12PsL bJEZ9axgCc1hrxm5hK2W6x55a2tKQ0ieoFlkF87qZ5FSsEmOWfvCa5Jsr04bGkhI QBiyZvX+de8ZAUcbiXwgsb3LwfY5DAOoLZVZj7tWsxXcl9CG/MGqI452b5jB4oWa 5TXa8YHSz9/vQHtJGmjyuZYJGfH63XvLUu6qHEgCHKhXEQg5p9YrfjbdZWk77mSk N+dqHpXJFo2G+UURxBy615ebIgxA1dUR6pdbCfm/fbUAxnxWPubjNLLGShCUNBP9 /WgSMiv5GT48yhpK0IdTpPmQUAQW3fkgEd58vytgDuQf/7NhsbNFlsj3hugnAmY9 B/Jtwri/dCaOy0EDlDTc22OX7uDXaoSd9t5kjFAiZMOhxRE0hXawGfCxdGq/rgV6 EblcKQ3zW/3lsTj5KdI+0M0kNA6y1i0KP+Iujs12WLzWDANcpyvpuNu5qIMoM16Y iy4QLJkWFcH99toKO6/bEFgINq3C84sDEQNUpgwga+ct5mxsZycn3vSl9QcuoWQD FX9lwXBaxGuvBb/K3pwXfJuRQOFn2tDpwqN0PnyG/4+QLHunSPuQ8vcVx+oG9a2K LpiYxMQawsJiOjEyNUdRt7DDBpU/mVO+pf7lCY/4F5S+xOJ6E6LkJ213aSGaYPBd QiLGYFSmmLk= =y5SE -----END PGP SIGNATURE-----

    -- RHSA-announce mailing list RHSA-announce@redhat.com https://listman.redhat.com/mailman/listinfo/rhsa-announce .

    The References section of this erratum contains a download link (you must log in to download the update). Description:

    Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime.

    This release of Red Hat JBoss Enterprise Application Platform 7.4.4 serves as a replacement for Red Hat JBoss Enterprise Application Platform 7.4.3 and includes bug fixes and enhancements. See the Red Hat JBoss Enterprise Application Platform 7.4.4 Release Notes for information about the most significant bug fixes and enhancements included in this release. Solution:

    Before applying this update, back up your existing Red Hat JBoss Enterprise Application Platform installation and deployed applications.

    For details on how to apply this update, which includes the changes described in this advisory, refer to:

    https://access.redhat.com/articles/11258

    1. JIRA issues fixed (https://issues.jboss.org/):

    JBEAP-22105 - (7.4.z) Upgrade from com.io7m.xom:xom 1.2.10 to xom:xom 1.3.7 JBEAP-22385 - (7.4.z) Upgrade ASM from 7.1 to 9.1 JBEAP-22731 - (7.4.z) Upgrade Artemis from 2.16.0.redhat-00032 to 2.16.0.redhat-00034 JBEAP-22738 - (7.4.z) Upgrade jbossws-cxf from 5.4.2.Final to 5.4.4.Final(Fix UsernameTokenElytronTestCase on SE 17) JBEAP-22819 - [GSS] (7.4.z) HAL-1762 - Aliases are removed from the credential store when passwords are updated from the admin console JBEAP-22839 - GSS Upgrade yasson from 1.0.9.redhat-00001 to 1.0.10.redhat-00001 JBEAP-22864 - (7.4.z) Upgrade HAL from 3.3.8.Final-redhat-00001 to 3.3.9.Final-redhat-00001 JBEAP-22899 - Tracker bug for the EAP 7.4.4 release for RHEL-7 JBEAP-22904 - (7.4.z) Upgrade Hibernate ORM from 5.3.24.Final-redhat-00001 to 5.3.25.Final-redhat-00002 JBEAP-22911 - (7.4.z) Upgrade OpenSSL from 2.1.3.Final-redhat-00001 to 2.2.0.Final-redhat-00001 JBEAP-22912 - (7.4.z) Upgrade OpenSSL Natives from 2.1.0.SP01-redhat-00001 to 2.2.0.Final-redhat-00001 JBEAP-22913 - (7.4.z) Upgrade WildFly Core from 15.0.6.Final-redhat-00003 to 15.0.7.Final-redhat-00001 JBEAP-22935 - (7.4.z) Upgrade jboss-vfs from 3.2.15.Final-redhat-00001 to 3.2.16.Final-redhat-00001 JBEAP-22945 - (7.4.z) Upgrade org.apache.logging.log4j from 2.14.0.redhat-00002 to 2.17.1.redhat-00001 JBEAP-22973 - (7.4.z) Upgrade Elytron from 1.15.9.Final-redhat-00001 to 1.15.11.Final-redhat-00002 JBEAP-23038 - (7.4.z) Upgrade galleon-plugins from 5.1.4.Final to 5.2.6.Final JBEAP-23040 - (7.4.z) Upgrade galleon-plugins in wildfly-core-eap from 5.1.4.Final to 5.2.6.Final JBEAP-23045 - (7.4.z) Upgrade Undertow from 2.2.13.SP2-redhat-00001 to 2.2.16.Final-redhat-0001 JBEAP-23101 - (7.4.z) Upgrade Infinispan from 11.0.12.Final to 11.0.15.Final JBEAP-23105 - (7.4.z) Upgrade Narayana from 5.11.3.Final-redhat-00001 to 5.11.4.Final-redhat-00001 JBEAP-23143 - (7.4.z) Upgrade from org.eclipse.jdt.core.compiler:ecj:4.6.1 to org.eclipse.jdt:ecj:3.26 JBEAP-23177 - (7.4.z) Upgrade XNIO from 3.8.5.SP1-redhat-00001 to 3.8.6.Final-redhat-00001 JBEAP-23323 - GSS WFLY-16112 - Batch JobOperatorService should look for only active job names to stop during suspend JBEAP-23373 - (7.4.z) Upgrade OpenSSL from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002 JBEAP-23374 - (7.4.z) Upgrade WildFly Core from 15.0.7.Final-redhat-00001 to 15.0.8.Final-redhat-00001 JBEAP-23375 - (7.4.z) Upgrade OpenSSL Natives from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002

    1. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/


    2. Gentoo Linux Security Advisory GLSA 202310-16


                                           https://security.gentoo.org/
    

    Severity: High Title: Ubiquiti UniFi: remote code execution via bundled log4j Date: October 26, 2023 Bugs: #828853 ID: 202310-16


    Synopsis

    A vulnerability has been discovered in unifi where bundled log4j can facilitate a remote code execution

    Background

    Ubiquiti UniFi is a Management Controller for Ubiquiti Networks UniFi APs.

    Affected packages

    Package Vulnerable Unaffected


    net-wireless/unifi < 6.5.55 >= 6.5.55

    Description

    A bundled version of log4j could facilitate remote code execution. Please review the CVE identifier referenced below for details.

    Impact

    An attacker with permission to modify the logging configuration file can construct a malicious configuration using a JDBC Appender with a data source referencing a JNDI URI which can execute remote code.

    Workaround

    There is no known workaround at this time.

    Resolution

    All Ubiquity UniFi users should upgrade to the latest version:

    # emerge --sync # emerge --ask --oneshot --verbose ">=net-wireless/unifi-6.5.55"

    References

    [ 1 ] CVE-2021-4104 https://nvd.nist.gov/vuln/detail/CVE-2021-4104 [ 2 ] CVE-2021-45046 https://nvd.nist.gov/vuln/detail/CVE-2021-45046

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    https://security.gentoo.org/glsa/202310-16

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org.

    License

    Copyright 2023 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    https://creativecommons.org/licenses/by-sa/2.5 . The purpose of this text-only errata is to inform you about the security issues fixed in this release. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "energyip prepay",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.8"
          },
          {
            "_id": null,
            "model": "solid edge harness design",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2020"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa12-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "logo\\! soft comfort",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "siveillance vantage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "sentron powermanager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "siguard dsa",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "siguard dsa",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "audio development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "xpedition enterprise",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "comos",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "siveillance control pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "tracealertserverplus",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "spectrum power 4",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.70"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "desigo cc info center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "nx",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa52-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.7"
          },
          {
            "_id": null,
            "model": "opcenter intelligence",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.2"
          },
          {
            "_id": null,
            "model": "siveillance identity",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.6"
          },
          {
            "_id": null,
            "model": "email security",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "sonicwall",
            "version": "10.0.12"
          },
          {
            "_id": null,
            "model": "secure device onboard",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "industrial edge management hub",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "34"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "energyip prepay",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.7"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.6"
          },
          {
            "_id": null,
            "model": "system studio",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "siguard dsa",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.12.2"
          },
          {
            "_id": null,
            "model": "siveillance identity",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.5"
          },
          {
            "_id": null,
            "model": "solid edge cam pro",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "spectrum power 4",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.70"
          },
          {
            "_id": null,
            "model": "desigo cc info center",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "spectrum power 7",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.30"
          },
          {
            "_id": null,
            "model": "industrial edge management",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "captial",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "desigo cc advanced reports",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "gma-manager",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.6.2j-398"
          },
          {
            "_id": null,
            "model": "oneapi",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "computer vision annotation tool",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cvat",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "debian",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "mendix",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "sentron powermanager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa22-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "energy engage",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "operation scheduler",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "1.1.3"
          },
          {
            "_id": null,
            "model": "sppa-t3000 ses3000",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "navigator",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.16.0"
          },
          {
            "_id": null,
            "model": "siveillance viewpoint",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "spectrum power 7",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.30"
          },
          {
            "_id": null,
            "model": "xpedition package integrator",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": null
          },
          {
            "_id": null,
            "model": "solid edge harness design",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2020"
          },
          {
            "_id": null,
            "model": "sensor solution development kit",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "captial",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "siveillance command",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "4.16.2.1"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "gte",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.13.0"
          },
          {
            "_id": null,
            "model": "vesys",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2019.1"
          },
          {
            "_id": null,
            "model": "system debugger",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "fedora",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "fedoraproject",
            "version": "35"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa32-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "teamcenter",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "datacenter manager",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          },
          {
            "_id": null,
            "model": "head-end system universal device integration system",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "*"
          },
          {
            "_id": null,
            "model": "mindsphere",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-11"
          },
          {
            "_id": null,
            "model": "sipass integrated",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.85"
          },
          {
            "_id": null,
            "model": "log4j",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "apache",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "energyip",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "8.5"
          },
          {
            "_id": null,
            "model": "sipass integrated",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.80"
          },
          {
            "_id": null,
            "model": "e-car operation center",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2021-12-13"
          },
          {
            "_id": null,
            "model": "6bk1602-0aa42-0tp0",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "siemens",
            "version": "2.7.0"
          },
          {
            "_id": null,
            "model": "genomics kernel library",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "intel",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Red Hat",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "166673"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2021-45046",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "HIGH",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.1,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 4.9,
                "id": "CVE-2021-45046",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.1,
                "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 9.0,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 2.2,
                "id": "CVE-2021-45046",
                "impactScore": 6.0,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 2.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2021-45046",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                "id": "CVE-2021-45046",
                "trust": 1.0,
                "value": "CRITICAL"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202112-1065",
                "trust": 0.6,
                "value": "CRITICAL"
              },
              {
                "author": "VULMON",
                "id": "CVE-2021-45046",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-45046"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default. \n\nFor the oldstable distribution (buster), this problem has been fixed\nin version 2.16.0-1~deb10u1. \n\nFor the stable distribution (bullseye), this problem has been fixed in\nversion 2.16.0-1~deb11u1. \n\nWe recommend that you upgrade your apache-log4j2 packages. \n\nFor the detailed security status of apache-log4j2 please refer to\nits security tracker page at:\nhttps://security-tracker.debian.org/tracker/apache-log4j2\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n-----BEGIN PGP SIGNATURE-----\n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\ncqjFisSZxu8d5VoAtjMSP8l95FoAm53r9Q1HCZvXqRhBjFNoYqE=\n=TNnt\n-----END PGP SIGNATURE-----\n. Solution:\n\nFor OpenShift Container Platform 4.7 see the following documentation, which\nwill be updated shortly for this release, for important instructions on how\nto upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.7/updating/updating-cluster-cli.html\n\n4. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA256\n\n=====================================================================\n                   Red Hat Security Advisory\n\nSynopsis:          Moderate: Red Hat Data Grid 8.2.3 security update\nAdvisory ID:       RHSA-2022:0205-01\nProduct:           Red Hat JBoss Data Grid\nAdvisory URL:      https://access.redhat.com/errata/RHSA-2022:0205\nIssue date:        2022-01-20\nCVE Names:         CVE-2021-44832 CVE-2021-45046 CVE-2021-45105 \n=====================================================================\n\n1. Summary:\n\nAn update for Red Hat Data Grid is now available. \n \nRed Hat Product Security has rated this update as having a security impact\nof Moderate. A Common Vulnerability Scoring System (CVSS) base score, which\ngives a detailed severity rating, is available for each vulnerability from\nthe CVE link(s) in the References section. \n\n2. Description:\n\nRed Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. \nIt increases application response times and allows for dramatically\nimproving performance while providing availability, reliability, and\nelastic scale. \n \nData Grid 8.2.3 replaces Data Grid 8.2.2 and includes bug fixes and\nenhancements. Find out more about Data Grid 8.2.3 in the Release Notes [3]. \n\n3. Solution:\n\nTo install this update, do the following:\n \n1. Download the Data Grid 8.2.3 server patch from the customer portal[\u00b2]. \n2. Back up your existing Data Grid installation. You should back up\ndatabases, configuration files, and so on. \n3. Install the Data Grid 8.2.3 server patch. Refer to the 8.2.3 Release\nNotes[\u00b3] for patching instructions. \n4. Restart Data Grid to ensure the changes take effect. \n\n4. References:\n\nhttps://access.redhat.com/security/cve/CVE-2021-44832\nhttps://access.redhat.com/security/cve/CVE-2021-45046\nhttps://access.redhat.com/security/cve/CVE-2021-45105\nhttps://access.redhat.com/security/updates/classification/#moderate\nhttps://access.redhat.com/jbossnetwork/restricted/listSoftware.html?downloadType=securityPatches\u0026product=data.grid\u0026version=8.2\nhttps://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index\n\n6. Contact:\n\nThe Red Hat security contact is \u003csecalert@redhat.com\u003e. More contact\ndetails at https://access.redhat.com/security/team/contact/\n\nCopyright 2022 Red Hat, Inc. \n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1\n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\nQiLGYFSmmLk=\n=y5SE\n-----END PGP SIGNATURE-----\n\n--\nRHSA-announce mailing list\nRHSA-announce@redhat.com\nhttps://listman.redhat.com/mailman/listinfo/rhsa-announce\n. \n\nThe References section of this erratum contains a download link (you must\nlog in to download the update). Description:\n\nRed Hat JBoss Enterprise Application Platform 7 is a platform for Java\napplications based on the WildFly application runtime. \n\nThis release of Red Hat JBoss Enterprise Application Platform 7.4.4 serves\nas a replacement for Red Hat JBoss Enterprise Application Platform 7.4.3\nand includes bug fixes and enhancements. See the Red Hat JBoss Enterprise\nApplication Platform 7.4.4 Release Notes for information about the most\nsignificant bug fixes and enhancements included in this release. Solution:\n\nBefore applying this update, back up your existing Red Hat JBoss Enterprise\nApplication Platform installation and deployed applications. \n\nFor details on how to apply this update, which includes the changes\ndescribed in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\n5. JIRA issues fixed (https://issues.jboss.org/):\n\nJBEAP-22105 - (7.4.z) Upgrade from com.io7m.xom:xom 1.2.10 to xom:xom 1.3.7\nJBEAP-22385 - (7.4.z) Upgrade ASM from 7.1 to 9.1\nJBEAP-22731 - (7.4.z) Upgrade Artemis from 2.16.0.redhat-00032 to 2.16.0.redhat-00034\nJBEAP-22738 - (7.4.z) Upgrade jbossws-cxf from 5.4.2.Final to 5.4.4.Final(Fix UsernameTokenElytronTestCase on SE 17)\nJBEAP-22819 - [GSS] (7.4.z) HAL-1762 - Aliases are removed from the credential store when passwords are updated from the admin console\nJBEAP-22839 - [GSS](7.4.z) Upgrade yasson from 1.0.9.redhat-00001 to 1.0.10.redhat-00001\nJBEAP-22864 - (7.4.z) Upgrade HAL from 3.3.8.Final-redhat-00001 to 3.3.9.Final-redhat-00001\nJBEAP-22899 - Tracker bug for the EAP 7.4.4 release for RHEL-7\nJBEAP-22904 - (7.4.z) Upgrade Hibernate ORM from 5.3.24.Final-redhat-00001 to 5.3.25.Final-redhat-00002\nJBEAP-22911 - (7.4.z) Upgrade OpenSSL from 2.1.3.Final-redhat-00001 to 2.2.0.Final-redhat-00001\nJBEAP-22912 - (7.4.z) Upgrade OpenSSL Natives from 2.1.0.SP01-redhat-00001 to 2.2.0.Final-redhat-00001\nJBEAP-22913 - (7.4.z) Upgrade WildFly Core from 15.0.6.Final-redhat-00003 to 15.0.7.Final-redhat-00001\nJBEAP-22935 - (7.4.z) Upgrade jboss-vfs from 3.2.15.Final-redhat-00001 to 3.2.16.Final-redhat-00001\nJBEAP-22945 - (7.4.z) Upgrade org.apache.logging.log4j from 2.14.0.redhat-00002 to 2.17.1.redhat-00001\nJBEAP-22973 - (7.4.z) Upgrade Elytron from 1.15.9.Final-redhat-00001 to 1.15.11.Final-redhat-00002\nJBEAP-23038 - (7.4.z) Upgrade galleon-plugins from 5.1.4.Final to 5.2.6.Final\nJBEAP-23040 - (7.4.z) Upgrade galleon-plugins in wildfly-core-eap from 5.1.4.Final to 5.2.6.Final\nJBEAP-23045 - (7.4.z) Upgrade Undertow from 2.2.13.SP2-redhat-00001 to 2.2.16.Final-redhat-0001\nJBEAP-23101 - (7.4.z) Upgrade Infinispan from 11.0.12.Final to 11.0.15.Final\nJBEAP-23105 - (7.4.z) Upgrade Narayana from 5.11.3.Final-redhat-00001 to 5.11.4.Final-redhat-00001\nJBEAP-23143 - (7.4.z) Upgrade from org.eclipse.jdt.core.compiler:ecj:4.6.1 to org.eclipse.jdt:ecj:3.26\nJBEAP-23177 - (7.4.z) Upgrade XNIO from 3.8.5.SP1-redhat-00001 to 3.8.6.Final-redhat-00001\nJBEAP-23323 - [GSS](7.4.z) WFLY-16112 - Batch JobOperatorService should look for only active job names to stop during suspend\nJBEAP-23373 - (7.4.z) Upgrade OpenSSL from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002\nJBEAP-23374 - (7.4.z) Upgrade WildFly Core from 15.0.7.Final-redhat-00001 to 15.0.8.Final-redhat-00001\nJBEAP-23375 - (7.4.z) Upgrade OpenSSL Natives from 2.2.0.Final-redhat-00001 to 2.2.0.Final-redhat-00002\n\n7.  Our key and\ndetails on how to verify the signature are available from\nhttps://access.redhat.com/security/team/key/\n\n8. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 202310-16\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                           https://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n Severity: High\n    Title: Ubiquiti UniFi: remote code execution via bundled log4j\n     Date: October 26, 2023\n     Bugs: #828853\n       ID: 202310-16\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n=======\nA vulnerability has been discovered in unifi where bundled log4j can\nfacilitate a remote code execution\n\nBackground\n=========\nUbiquiti UniFi is a Management Controller for Ubiquiti Networks UniFi\nAPs. \n\nAffected packages\n================\nPackage             Vulnerable    Unaffected\n------------------  ------------  ------------\nnet-wireless/unifi  \u003c 6.5.55      \u003e= 6.5.55\n\nDescription\n==========\nA bundled version of log4j could facilitate remote code execution. \nPlease review the CVE identifier referenced below for details. \n\nImpact\n=====\nAn attacker with permission to modify the logging configuration file can\nconstruct a malicious configuration using a JDBC Appender with a data\nsource referencing a JNDI URI which can execute remote code. \n\nWorkaround\n=========\nThere is no known workaround at this time. \n\nResolution\n=========\nAll Ubiquity UniFi users should upgrade to the latest version:\n\n  # emerge --sync\n  # emerge --ask --oneshot --verbose \"\u003e=net-wireless/unifi-6.5.55\"\n\nReferences\n=========\n[ 1 ] CVE-2021-4104\n      https://nvd.nist.gov/vuln/detail/CVE-2021-4104\n[ 2 ] CVE-2021-45046\n      https://nvd.nist.gov/vuln/detail/CVE-2021-45046\n\nAvailability\n===========\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n https://security.gentoo.org/glsa/202310-16\n\nConcerns?\n========\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users\u0027 machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttps://bugs.gentoo.org. \n\nLicense\n======\nCopyright 2023 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttps://creativecommons.org/licenses/by-sa/2.5\n. The purpose of this text-only\nerrata is to inform you about the security issues fixed in this release. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-45046"
          },
          {
            "db": "PACKETSTORM",
            "id": "169180"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "166673"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "175367"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          }
        ],
        "trust": 1.71
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2021-45046",
            "trust": 2.5
          },
          {
            "db": "SIEMENS",
            "id": "SSA-714170",
            "trust": 1.6
          },
          {
            "db": "SIEMENS",
            "id": "SSA-397453",
            "trust": 1.6
          },
          {
            "db": "SIEMENS",
            "id": "SSA-479842",
            "trust": 1.6
          },
          {
            "db": "SIEMENS",
            "id": "SSA-661247",
            "trust": 1.6
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/15/3",
            "trust": 1.6
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/14/4",
            "trust": 1.6
          },
          {
            "db": "OPENWALL",
            "id": "OSS-SECURITY/2021/12/18/1",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#930724",
            "trust": 1.6
          },
          {
            "db": "PACKETSTORM",
            "id": "165343",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "165645",
            "trust": 0.7
          },
          {
            "db": "PACKETSTORM",
            "id": "166677",
            "trust": 0.7
          },
          {
            "db": "LENOVO",
            "id": "LEN-76573",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122212",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022042115",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022020815",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022010517",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022012731",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022012443",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021121651",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122726",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022060708",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122119",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022012730",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122018",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022010632",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122814",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022062006",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022032405",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022022126",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021121516",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022012501",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021123016",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022010325",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022012045",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022020602",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022010421",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022011034",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022011226",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021121720",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022072076",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022021429",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022060808",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2022030923",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122307",
            "trust": 0.6
          },
          {
            "db": "CS-HELP",
            "id": "SB2021122908",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "165649",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "165333",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "166676",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0332",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4257",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0086",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4187.6",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4295",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4186.3",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0247",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0199",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0240",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4186.4",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4302.3",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2021.4198.4",
            "trust": 0.6
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2022.0090",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2021-45046",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "169180",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165636",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "166673",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "175367",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "165650",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-45046"
          },
          {
            "db": "PACKETSTORM",
            "id": "169180"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "166673"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "175367"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          }
        ]
      },
      "id": "VAR-202112-0562",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.6178975933333334
      },
      "last_update_date": "2026-03-09T20:26:10.055000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "Apache Log4j Fixes for code issue vulnerabilities",
            "trust": 0.6,
            "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=175394"
          },
          {
            "title": "Debian CVElist Bug Report Logs: apache-log4j2: CVE-2021-45046: Incomplete fix for CVE-2021-44228 in certain non-default configurations",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=b88a8ce4fc53c3a45830bc6bbde8b01c"
          },
          {
            "title": "Debian Security Advisories: DSA-5022-1 apache-log4j2 -- security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=5ba53229ef5f408ed29126bd4f624def"
          },
          {
            "title": "Red Hat: Low: Red Hat JBoss Enterprise Application Platform 7.4.4 security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20221296 - Security Advisory"
          },
          {
            "title": "Red Hat: Low: Red Hat JBoss Enterprise Application Platform 7.4.4 security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20221299 - Security Advisory"
          },
          {
            "title": "Red Hat: Low: Red Hat JBoss Enterprise Application Platform 7.4.4 security update",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=red_hat_security_advisories\u0026qid=RHSA-20221297 - Security Advisory"
          },
          {
            "title": "Amazon Linux AMI: ALAS-2021-1553",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux_ami\u0026qid=ALAS-2021-1553"
          },
          {
            "title": "IBM: Security Bulletin: IBM Cloud Pak System is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046, CVE-2021-44228)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=c8b40ff47e1d31bee8b0fbdbdd4fe212"
          },
          {
            "title": "IBM: Security Bulletin: IBM Cloud Pak System is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-45046, CVE-2021-44228)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=654a4f5a7bd1fdfd229558535923710b"
          },
          {
            "title": "IBM: Security Bulletin: Apache log4j security vulnerability as it relates to IBM Maximo Scheduler Optimization \u00e2\u20ac\u201c Apache Log4j \u00e2\u20ac\u201c [CVE-2021-45105] (affecting v2.16) and [CVE-2021-45046] (affecting v2.15)",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ibm_psirt_blog\u0026qid=1239b8de81ba381055ce95c571a45bea"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1731",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1731"
          },
          {
            "title": "Amazon Linux 2: ALAS2-2021-1730",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=amazon_linux2\u0026qid=ALAS2-2021-1730"
          },
          {
            "title": "Omada-Ansible",
            "trust": 0.1,
            "url": "https://github.com/kdpuvvadi/Omada-Ansible "
          },
          {
            "title": "CVE-2021-45046",
            "trust": 0.1,
            "url": "https://github.com/tejas-nagchandi/CVE-2021-45046 "
          },
          {
            "title": "Log4Shell",
            "trust": 0.1,
            "url": "https://github.com/r00thunter/Log4Shell "
          },
          {
            "title": "log4j-exploit-server",
            "trust": 0.1,
            "url": "https://github.com/lwollan/log4j-exploit-server "
          },
          {
            "title": "log4j2-intranet-scan",
            "trust": 0.1,
            "url": "https://github.com/k3rwin/log4j2-intranet-scan "
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2021-45046"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-917",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.6,
            "url": "https://www.cve.org/cverecord?id=cve-2021-44228"
          },
          {
            "trust": 1.6,
            "url": "https://www.oracle.com/security-alerts/cpujan2022.html"
          },
          {
            "trust": 1.6,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/eokpqgv24rrbbi4tbzudqmm4meh7mxcy/"
          },
          {
            "trust": 1.6,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/sig7fzulmnk2xf6fzru4vwydqxnmugaj/"
          },
          {
            "trust": 1.6,
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "trust": 1.6,
            "url": "https://psirt.global.sonicwall.com/vuln-detail/snwlid-2021-0032"
          },
          {
            "trust": 1.6,
            "url": "https://www.kb.cert.org/vuls/id/930724"
          },
          {
            "trust": 1.6,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/18/1"
          },
          {
            "trust": 1.6,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/14/4"
          },
          {
            "trust": 1.6,
            "url": "http://www.openwall.com/lists/oss-security/2021/12/15/3"
          },
          {
            "trust": 1.6,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-661247.pdf"
          },
          {
            "trust": 1.6,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-714170.pdf"
          },
          {
            "trust": 1.6,
            "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00646.html"
          },
          {
            "trust": 1.6,
            "url": "https://logging.apache.org/log4j/2.x/security.html"
          },
          {
            "trust": 1.6,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-397453.pdf"
          },
          {
            "trust": 1.6,
            "url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
          },
          {
            "trust": 1.6,
            "url": "https://www.debian.org/security/2021/dsa-5022"
          },
          {
            "trust": 1.6,
            "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-apache-log4j-qruknebd"
          },
          {
            "trust": 1.6,
            "url": "https://www.oracle.com/security-alerts/alert-cve-2021-44228.html"
          },
          {
            "trust": 1.6,
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-479842.pdf"
          },
          {
            "trust": 1.2,
            "url": "https://access.redhat.com/security/cve/cve-2021-45046"
          },
          {
            "trust": 1.1,
            "url": "https://security.gentoo.org/glsa/202310-16"
          },
          {
            "trust": 1.0,
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=cve-2021-45046"
          },
          {
            "trust": 0.8,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45046"
          },
          {
            "trust": 0.6,
            "url": "https://listman.redhat.com/mailman/listinfo/rhsa-announce"
          },
          {
            "trust": 0.6,
            "url": "https://bugzilla.redhat.com/):"
          },
          {
            "trust": 0.6,
            "url": "https://access.redhat.com/security/team/contact/"
          },
          {
            "trust": 0.6,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/eokpqgv24rrbbi4tbzudqmm4meh7mxcy/"
          },
          {
            "trust": 0.6,
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/sig7fzulmnk2xf6fzru4vwydqxnmugaj/"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022060808"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022072076"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0086"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0240"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4186.4"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4186.3"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122212"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022012731"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4302.3"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/165649/red-hat-security-advisory-2022-0222-02.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122814"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/165645/red-hat-security-advisory-2022-0205-02.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021121720"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122018"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022010632"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022012730"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166676/red-hat-security-advisory-2022-1297-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0199"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022010517"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022020602"
          },
          {
            "trust": 0.6,
            "url": "https://vigilance.fr/vulnerability/apache-log4j-denial-of-service-via-thread-context-message-pattern-37075"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4257"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/165333/red-hat-security-advisory-2021-5106-04.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022012501"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022062006"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021123016"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/165343/red-hat-security-advisory-2021-5107-06.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122726"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021121516"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4295"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022010325"
          },
          {
            "trust": 0.6,
            "url": "https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20211215-01-log4j-cn"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122908"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022060708"
          },
          {
            "trust": 0.6,
            "url": "https://www.ibm.com/support/pages/node/6527436"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022011226"
          },
          {
            "trust": 0.6,
            "url": "https://www.ibm.com/support/pages/node/6528374"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022032405"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122119"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0332"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022030923"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4198.4"
          },
          {
            "trust": 0.6,
            "url": "https://www.ibm.com/support/pages/node/6527886"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022042115"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0090"
          },
          {
            "trust": 0.6,
            "url": "https://www.ibm.com/support/pages/node/6526750"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022022126"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021121651"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022021429"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2021.4187.6"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022020815"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2021122307"
          },
          {
            "trust": 0.6,
            "url": "https://support.lenovo.com/us/en/product_security/len-76573"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022012045"
          },
          {
            "trust": 0.6,
            "url": "https://packetstormsecurity.com/files/166677/red-hat-security-advisory-2022-1296-01.html"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022011034"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022012443"
          },
          {
            "trust": 0.6,
            "url": "https://www.cybersecurity-help.cz/vdb/sb2022010421"
          },
          {
            "trust": 0.6,
            "url": "https://www.auscert.org.au/bulletins/esb-2022.0247"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/cve/cve-2021-44832"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-45105"
          },
          {
            "trust": 0.5,
            "url": "https://access.redhat.com/security/cve/cve-2021-45105"
          },
          {
            "trust": 0.5,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44832"
          },
          {
            "trust": 0.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-4104"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/cve/cve-2021-4104"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/security/updates/classification/#low"
          },
          {
            "trust": 0.3,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_jboss_enterprise_application_platform/7.4/html-single/installation_guide/"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/vulnerabilities/rhsb-2021-009"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=securitypatches\u0026product=appplatform\u0026version=7.4"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/updates/classification/#moderate"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23307"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23302"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2022-23305"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23302"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23305"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/security/cve/cve-2022-23307"
          },
          {
            "trust": 0.2,
            "url": "https://issues.jboss.org/):"
          },
          {
            "trust": 0.2,
            "url": "https://access.redhat.com/articles/11258"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "https://security-tracker.debian.org/tracker/apache-log4j2"
          },
          {
            "trust": 0.1,
            "url": "https://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.7/updating/updating-cluster-cli.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-43527"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2021:5107"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-44228"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/updates/classification/#critical"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/cve/cve-2021-43527"
          },
          {
            "trust": 0.1,
            "url": "https://docs.openshift.com/container-platform/4.7/release_notes/ocp-4-7-release-notes.html"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2021-44228"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0216"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/solutions/6577421"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=securitypatches\u0026product=data.grid\u0026version=8.2"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.2/html-single/red_hat_data_grid_8.2_release_notes/index"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0205"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1299"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:1296"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/security/team/key/"
          },
          {
            "trust": 0.1,
            "url": "https://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "https://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/documentation/en-us/red_hat_integration/2022.q1"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/jbossnetwork/restricted/listsoftware.html?downloadtype=distributions\u0026product=red.hat.integration\u0026version"
          },
          {
            "trust": 0.1,
            "url": "https://access.redhat.com/errata/rhsa-2022:0223"
          }
        ],
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "169180"
          },
          {
            "db": "PACKETSTORM",
            "id": "165343"
          },
          {
            "db": "PACKETSTORM",
            "id": "165636"
          },
          {
            "db": "PACKETSTORM",
            "id": "165645"
          },
          {
            "db": "PACKETSTORM",
            "id": "166673"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "175367"
          },
          {
            "db": "PACKETSTORM",
            "id": "165650"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45046"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "VULMON",
            "id": "CVE-2021-45046",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "169180",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165343",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165636",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165645",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166673",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "166677",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "175367",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "165650",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2021-45046",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2021-12-14T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-45046",
            "ident": null
          },
          {
            "date": "2021-12-28T20:12:00",
            "db": "PACKETSTORM",
            "id": "169180",
            "ident": null
          },
          {
            "date": "2021-12-17T14:05:45",
            "db": "PACKETSTORM",
            "id": "165343",
            "ident": null
          },
          {
            "date": "2022-01-20T17:49:52",
            "db": "PACKETSTORM",
            "id": "165636",
            "ident": null
          },
          {
            "date": "2022-01-20T18:11:03",
            "db": "PACKETSTORM",
            "id": "165645",
            "ident": null
          },
          {
            "date": "2022-04-11T17:07:22",
            "db": "PACKETSTORM",
            "id": "166673",
            "ident": null
          },
          {
            "date": "2022-04-11T17:15:55",
            "db": "PACKETSTORM",
            "id": "166677",
            "ident": null
          },
          {
            "date": "2023-10-26T14:46:58",
            "db": "PACKETSTORM",
            "id": "175367",
            "ident": null
          },
          {
            "date": "2022-01-21T15:29:54",
            "db": "PACKETSTORM",
            "id": "165650",
            "ident": null
          },
          {
            "date": "2021-12-14T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202112-1065",
            "ident": null
          },
          {
            "date": "2021-12-14T19:15:07.733000",
            "db": "NVD",
            "id": "CVE-2021-45046",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2023-10-26T00:00:00",
            "db": "VULMON",
            "id": "CVE-2021-45046",
            "ident": null
          },
          {
            "date": "2023-06-28T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202112-1065",
            "ident": null
          },
          {
            "date": "2025-10-27T17:35:56.240000",
            "db": "NVD",
            "id": "CVE-2021-45046",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "166673"
          },
          {
            "db": "PACKETSTORM",
            "id": "166677"
          },
          {
            "db": "PACKETSTORM",
            "id": "175367"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "_id": null,
        "data": "Apache Log4j Code problem vulnerability",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          }
        ],
        "trust": 0.6
      },
      "type": {
        "_id": null,
        "data": "code problem",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202112-1065"
          }
        ],
        "trust": 0.6
      }
    }

    CERTFR-2026-AVI-0409

    Vulnerability from certfr_avis - Published: 2026-04-09 - Updated: 2026-04-09

    De multiples vulnérabilités ont été découvertes dans Sonicwall Secure Mobile Access. Elles permettent à un attaquant de provoquer une élévation de privilèges, une atteinte à la confidentialité des données et un contournement de la politique de sécurité.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Sonicwall Secure Mobile Access SMA1000 versions 12.5.0-x antérieures à 12.5.0-02624
    Sonicwall Secure Mobile Access SMA1000 versions 12.4.3-x antérieures à 12.4.3-03387
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "SMA1000 versions 12.5.0-x ant\u00e9rieures \u00e0 12.5.0-02624",
          "product": {
            "name": "Secure Mobile Access",
            "vendor": {
              "name": "Sonicwall",
              "scada": false
            }
          }
        },
        {
          "description": "SMA1000 versions 12.4.3-x ant\u00e9rieures \u00e0 12.4.3-03387",
          "product": {
            "name": "Secure Mobile Access",
            "vendor": {
              "name": "Sonicwall",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-4114",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4114"
        },
        {
          "name": "CVE-2026-4113",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4113"
        },
        {
          "name": "CVE-2026-4112",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4112"
        },
        {
          "name": "CVE-2026-4116",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-4116"
        }
      ],
      "initial_release_date": "2026-04-09T00:00:00",
      "last_revision_date": "2026-04-09T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0409",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-04-09T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        },
        {
          "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
        },
        {
          "description": "\u00c9l\u00e9vation de privil\u00e8ges"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Sonicwall Secure Mobile Access. Elles permettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et un contournement de la politique de s\u00e9curit\u00e9.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans Sonicwall Secure Mobile Access",
      "vendor_advisories": [
        {
          "published_at": "2026-04-08",
          "title": "Bulletin de s\u00e9curit\u00e9 SonicWall SNWLID-2026-0003",
          "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003"
        }
      ]
    }

    CERTFR-2026-AVI-0383

    Vulnerability from certfr_avis - Published: 2026-04-01 - Updated: 2026-04-01

    De multiples vulnérabilités ont été découvertes dans Sonicwall Email Security. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à l'intégrité des données et une injection de code indirecte à distance (XSS).

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Sonicwall Email Security Email Security versions antérieures à 10.0.35.8405
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "Email Security versions ant\u00e9rieures \u00e0 10.0.35.8405",
          "product": {
            "name": "Email Security",
            "vendor": {
              "name": "Sonicwall",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2026-3470",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3470"
        },
        {
          "name": "CVE-2026-3468",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3468"
        },
        {
          "name": "CVE-2026-3469",
          "url": "https://www.cve.org/CVERecord?id=CVE-2026-3469"
        }
      ],
      "initial_release_date": "2026-04-01T00:00:00",
      "last_revision_date": "2026-04-01T00:00:00",
      "links": [],
      "reference": "CERTFR-2026-AVI-0383",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2026-04-01T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Injection de code indirecte \u00e0 distance (XSS)"
        },
        {
          "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Sonicwall Email Security. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es et une injection de code indirecte \u00e0 distance (XSS).",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans Sonicwall Email Security",
      "vendor_advisories": [
        {
          "published_at": "2026-03-31",
          "title": "Bulletin de s\u00e9curit\u00e9 SonicWall SNWLID-2026-0002",
          "url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002"
        }
      ]
    }